Need some help migrating DC's

Methodman85 · Jul 22, 2008

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

Hello Everyone,

I've recently been assigned the project of migrating our 2 corporate domain controllers to new hardware (currently our main's running on a PII system, and the backup on a PIII)

Strangely enough the MCDST doesn't cover such a procedure

I know this probably isn't something I should be attemping at my level but I don't really have a choice.

I know there's a whole wealth of knowledge here, and people who could do this in their sleep so I was hoping to get some help. Especially things to watch out for.

Thanks!

Boycie · Jul 22, 2008

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

I would say (more experience to follow )

Well worth watching the podcasts - they make a domain from scratch.

1. Join the new server to the domain as a member.
2. Run DCPROMO
3. Transfer the roles.
4. Make new server a GC
5. Setup any services such as DHCP, WINS, DNS

Courtesy of ITidots.

Hope this helps.

Simon

Edit; Tried dcpromo'ing down a DC with Exchange on VMWare - it won't! You need to sort Exchange out first, then dcpromo if appropriate.

Methodman85 · Jul 22, 2008

Thanks Boyce,
Is there any way to "Transfer" DNS and DHCP, or do you have to re-set them up manually?
Thankfully Exchange isn't running on my DC's.

hippy · Jul 22, 2008

you can export and import dhcp, but ive not needed to do this for DNS. How is the DNS set out in the company? (someone will ask this later

Sparky · Jul 22, 2008

Done this a few times now, the first time I had to migrate 3 domains into one which was fun and games!
I assume you are running a server 2003 domain just now? If so that should make things slightly easier.

1)Add the servers to the domain as member servers.
2)After the reboot add DNS with add\remove components.

3)Give the servers suitable IP addresses.
4)Run dcpromo (follow the on screen instructions to add a DC to an existing domain)

5)Reboot and then configure the DNS (in the properties of the NIC) to point at itself
6)Wait a few minutes and go into the DNS console. There should be a full copy of the AD integrated zone.

7)You now need to migrate all the FSMO roles onto the DC. This article explains how to do it. http://support.microsoft.com/kb/324801
After that you need to configure the new server as a global catalogue server. This article should help.. http://www.petri.co.il/configure_a_new_global_catalog.htm
If you are running one domain then all DCs can host a global catalogue.

9)On the new DC install the Server support tools http://support.microsoft.com/kb/892777 and the open the support command line shortcut and type netdom query fsmo. All of the roles should now be listed as being hosted on your new DC.
10)Add the second DC in the same way but no need to worry about FSMO rolls.

You may need to migrate other roles off your DC such as DHCP. To push DNS traffic to the new DCs change the primary and secondary DNS entries to point at the new DCs in the DHCP scope.

11)On the old domain controllers run DCPROMO and then demote the servers. You will get a warning that they are global catalogue servers but no need to worry as your new DCs are hosting it now.

Hope this helps!

NightWalker · Jul 22, 2008

Sparky said: ↑

Done this a few times now, the first time I had to migrate 3 domains into one which was fun and games!
I assume you are running a server 2003 domain just now? If so that should make things slightly easier.

1)Add the servers to the domain as member servers.
2)After the reboot add DNS with add\remove components.

3)Give the servers suitable IP addresses.
4)Run dcpromo (follow the on screen instructions to add a DC to an existing domain)

5)Reboot and then configure the DNS (in the properties of the NIC) to point at itself
6)Wait a few minutes and go into the DNS console. There should be a full copy of the AD integrated zone.

7)You now need to migrate all the FSMO roles onto the DC. This article explains how to do it. http://support.microsoft.com/kb/324801
After that you need to configure the new server as a global catalogue server. This article should help.. http://www.petri.co.il/configure_a_new_global_catalog.htm
If you are running one domain then all DCs can host a global catalogue.

9)On the new DC install the Server support tools http://support.microsoft.com/kb/892777 and the open the support command line shortcut and type netdom query fsmo. All of the roles should now be listed as being hosted on your new DC.
10)Add the second DC in the same way but no need to worry about FSMO rolls.

You may need to migrate other roles off your DC such as DHCP. To push DNS traffic to the new DCs change the primary and secondary DNS entries to point at the new DCs in the DHCP scope.

11)On the old domain controllers run DCPROMO and then demote the servers. You will get a warning that they are global catalogue servers but no need to worry as your new DCs are hosting it now.

Hope this helps!
Click to expand...

Excellent post.

Methodman85 · Jul 22, 2008

Sparky you are the man!
We're actually still on a 2000 domain though.
Any extra steps required because of this?

Sparky · Jul 22, 2008

Methodman85 said: ↑

Sparky you are the man!
We're actually still on a 2000 domain though.
Any extra steps required because of this?
Click to expand...

Yeah, you need to run forestprep and domainprep in the root DC before you start.

Linky:
http://www.petri.co.il/windows_2003_adprep.htm

After that just follow the steps I already posted above.

Any probs just let me know.

Sparky · Jul 22, 2008

One other thing, if you dont have a note of the directory services restore password then reset it on the 2k DCs before starting.

This is a link for 2003 but I think its the same in 2k

http://support.microsoft.com/kb/322672

Methodman85 · Jul 25, 2008

Awesome,

Believe me you'll be seeing a frantic desperate post by me on here if there's any issues. Things work in slow motion here though, it'll probably take my manager 2 months just to get around to reading the migration plan I'm drawing up.

Thanks again Sparky!

Log in or Sign up

Need some help migrating DC's

Methodman85 Byte Poster

Boycie Senior Beer Tester

Methodman85 Byte Poster

hippy Kilobyte Poster

Sparky Zettabyte Poster Moderator

NightWalker Gigabyte Poster

Methodman85 Byte Poster

Sparky Zettabyte Poster Moderator

Sparky Zettabyte Poster Moderator

Methodman85 Byte Poster

Share This Page

Navigation

Popular Forums

Useful Links

Log in or Sign up

Need some help migrating DC's

Methodman85 Byte Poster

Boycie Senior Beer Tester

Methodman85 Byte Poster

hippy Kilobyte Poster

Sparky Zettabyte Poster Moderator

NightWalker Gigabyte Poster

Methodman85 Byte Poster

Sparky Zettabyte Poster Moderator

Sparky Zettabyte Poster Moderator

Methodman85 Byte Poster

Share This Page

Useful Searches