G
Guest
I have a client that’s really having some AD / DNS problems with their domain. The goal here is to get them up to Windows 2003 and Exchange 2003, they are NOT running Exchange at all now, this will be important for you to know later in the post. First of all, their original admin setup the domain as a single label domain, with an underscore as well. Let’s use the examples domain_name as their domain name and a server name of ServerName for this post. Ok, so now the client is having DDNS issues with XP clients and the domain controller, there’s only one at this point, running Windows 2000 w/ SP4. I’ve read KB article 300684 over and over and have implemented the reg changes on the clients and the DC, but there are still DNS errors when I run DCDIAG and NETDIAG, even after many reboots. I was able to resolve most of the DCDIAG errors today by manually adding SRV records to their DNS zone, one error remains. The DCDIAG error that I’m still getting is below, all other tests pass
Starting test: kcceven
* The KCC Event log tes
An Warning Event occurred. EventID: 0x8000044
(Event String could not be retrieved
ServerName failed test kcceven
Ok, I don’t have all the netdiag errors in front of me right now but let me get to my real question. I feel this domain should be renamed. It’s in Windows 2000 Native mode so I know the NT PDC option to rename is out. Downtime and loosing accounts, profiles, and printers is not an option, this is a world wide business and I was told I could only have 20 minutes of downtime…not much. So here’s my suggestion, please comment
Get a server identical to the DC for testing, and GHOST a copy of the current DC server to a file and re-apply that GHOST image to the “test†server. This will give me an exact replica of the current DC and its state…errors and all. I could then bring the test server up, off the production LAN of course, so I can try a few things. My idea was to try an upgrade to Windows 2003, and then use the rendom.exe utility to fix the single label domain issue. There’s no Exchange server yet, so I can avoid that rendom caveat. Then if all goes well, try this in production
One main concern I have is how the rendom utility will affect the domain SIDs. Meaning, I don’t want to have to remove and add servers or workstations back to the domain, all PCs are XP and all member servers are 2000 or 2003. I guess my question here is how does the rendom utility affect SIDs, user accounts, machine accounts, and user profiles. Printers are a concern too, as well as Terminal Services…this customer has TS users all over the world. Is the rendom utility pretty seamless to the users or is profile and account info screwed up in some way? Are all the SIDs left alone and unchanged
Any help with this would be great. Once I can get all this resolved, I’ll definitely propose the idea of more domain controllers, there’s no redundancy right now
Thanks!!
Starting test: kcceven
* The KCC Event log tes
An Warning Event occurred. EventID: 0x8000044
(Event String could not be retrieved
ServerName failed test kcceven
Ok, I don’t have all the netdiag errors in front of me right now but let me get to my real question. I feel this domain should be renamed. It’s in Windows 2000 Native mode so I know the NT PDC option to rename is out. Downtime and loosing accounts, profiles, and printers is not an option, this is a world wide business and I was told I could only have 20 minutes of downtime…not much. So here’s my suggestion, please comment
Get a server identical to the DC for testing, and GHOST a copy of the current DC server to a file and re-apply that GHOST image to the “test†server. This will give me an exact replica of the current DC and its state…errors and all. I could then bring the test server up, off the production LAN of course, so I can try a few things. My idea was to try an upgrade to Windows 2003, and then use the rendom.exe utility to fix the single label domain issue. There’s no Exchange server yet, so I can avoid that rendom caveat. Then if all goes well, try this in production
One main concern I have is how the rendom utility will affect the domain SIDs. Meaning, I don’t want to have to remove and add servers or workstations back to the domain, all PCs are XP and all member servers are 2000 or 2003. I guess my question here is how does the rendom utility affect SIDs, user accounts, machine accounts, and user profiles. Printers are a concern too, as well as Terminal Services…this customer has TS users all over the world. Is the rendom utility pretty seamless to the users or is profile and account info screwed up in some way? Are all the SIDs left alone and unchanged
Any help with this would be great. Once I can get all this resolved, I’ll definitely propose the idea of more domain controllers, there’s no redundancy right now
Thanks!!