Building a second AD

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I have a primary AD set on a windows 2000 server.
I like to build a temporary machine with windows server 2003 and have it
duplicate all the users and computers just incase the primary AD machine
crashes.

I beleive I simply need to run DCPROMO on the windows 2003 machine and add
to an exisiting domain; asfter that the replucation will be done
automatically?

Will the first proimary AD be alsomt my default promary one?
Please let me know if I need to consider anything else.

Thanks
 
Hi,
I beleive I simply need to run DCPROMO on the windows 2003 machine
and add
to an exisiting domain; asfter that the replucation will be done
automatically?
Click to expand...

first, you must be use ADPREP with /FORESTPREP and /DOMAINPREP
from the 2003 CD on your 2000 Schemamaster to prepare the Schema to
2003.
In the TCP/IP Settings from the 2003 Server you type an 2000 Server
who has
installed DNS, as one and only DNS Server in the 2003 Settings.
After DCPROMO the Computer- and Useraccounts replicate
automatically.

http://www.petri.co.il/windows_2003_adprep.htm
http://support.microsoft.com/kb/325379/en-us
http://blogs.dirteam.com/blogs/jorge/archive/2005/11/19/110.aspx

If you have Exchange, look at this
http://support.microsoft.com/kb/314649/de
 
KD said:
I have a primary AD set on a windows 2000 server.
I like to build a temporary machine with windows server 2003 and have it
duplicate all the users and computers just incase the primary AD machine
crashes.
Click to expand...

What you really need is two (or more) ONLINE DCs all of the time.
I beleive I simply need to run DCPROMO on the windows 2003 machine and add
to an exisiting domain; asfter that the replucation will be done
automatically?
Click to expand...

That would be true except that this is your FIRST Win2003 DCs.

Yusuf has already covered (elsewhere this thread) the need for
using ADPrep.
Will the first proimary AD be alsomt my default promary one?
Click to expand...

In most real senses there is NO "primary" AD DC. They are all
equal for most purposes.

There are some special roles, including the "PDC Emulator" but
those roles are NEVER moved automatically by installing another
DC. (They MIGHT be automatically moved if you were to DEMOTE
the existing role holder but don't count on it.)

There is also a job called "Global Catalog Server" which is
run on some or many DCs. The GC is never moved or copied for
you.

If you have 2 DCs in one domain, you can just make them both GCs.
Please let me know if I need to consider anything else.
Click to expand...

Having TWO (or more) DCs all of the time.
 
Back
Top