Dual Domain Controllers

  • Thread starter Thread starter alexbf
  • Start date Start date
A

alexbf

Hello,

We have a network configured with a Primary Domain Controller
(Win2000) and an Exchange server on another machine (Win2003). The
machine on which the PDC is installed is kinda old and is starting to
have disk problems.

Before everything comes down, I would like to install another PDC on
another machine, copy the objects of the old PDC Active Directory to
the new PDC and move the Exchange server from one domain to the other.

I have limited knowledge in domain administration so I would like to
know what is the best way to proceed?

Thanks a lot,
Alex
 
Hello (e-mail address removed),

Install the new computer in your domain, run dcpromo on it and make it a
second dc. In 2000/2003 theire is no longer a pdc/bdc concept. Then you can
move the FSMO roles by hand to the new dc. Also make it DNS server and global
catalog. If everything is installed so far, run dcdiag and netdiag on the
new dc, to check everything is running without error. After that reconfigure
the clients to use the new dc as DNS server.

Best regards

Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
 
Great, thanks a lot I'll try that.

But after that, do I have to move my exchange server to the new DC or
it'll be automatic? If I have to move it, how do I proceed?

Also, Is it a good idea to have my Exchange server promoted as the new
DC or I should install another machine?

Thanks,
Alex
 
Hello alexbf,

You talk about a new domain. So did you have a real new domain name or will
you use the old domain name like before? If you just use the old domain name,
the exchange server is still a member of the existing domain, that's all.

Best regards

Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
 
Hello,

the easiest, the better for me. If I can keep the same domain but
"change" my PDC, I'd rather do that.

So if I understand correctly :

- Install a new Win2003 Server in the existing domain
- run dcpromo
- move FSMO roles from the old DC to the new DC (How?)
- make new Win2003 server DNS and global catalog (How?)
- run dcdiag and netdiag
- shut down old DC

Is it correct?

Should I use a separate machine or it's a good idea to run dcpromo on
my existing Exchange server?

Thanks,
Alex
 
Thanks a lot, everything seems to work now... the only thing I have
left to do is remove the old machine from the domain controllers
list... so my new one become the only DC in the domain.

How can I do that?

Thanks,
Alex
 
Hello alexbf,

see inline

Best regards

Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
Hello,

the easiest, the better for me. If I can keep the same domain but
"change" my PDC, I'd rather do that.

So if I understand correctly :

- Install a new Win2003 Server in the existing domain
yes

- run dcpromo
Click to expand...

before dcpromo you have to run adprep /forestprep and adprep /domainprep
from the 2003 install disc on your old dc to upgrade the schema for 2003
http://technet2.microsoft.com/Windo...a8d7-4761-b38a-e207baa734191033.mspx?mfr=true
If you get any error here, post it completely that we can find a solution
- move FSMO roles from the old DC to the new DC (How?)
Click to expand...

http://support.microsoft.com/kb/324801 (applies also to windows 2000)
- make new Win2003 server DNS and global catalog (How?)
Click to expand...

open Active directory site and services, go to Sites, default first
site name, servers, choose the new one, right click NTDS settings, open properties
and checkmark Global catalog (check event viewer after it, in Directory service
you must find event id 1110 and 1119)
- run dcdiag and netdiag
Click to expand...

not only run, also check carefully for errors
- shut down old DC
Click to expand...

NO, you have to demote the old server, that it will be removed correctly
from the domain, otherwise you get a lot of replication errors in the event
viewer. To demote it, just run dcpromo on the old dc and follow the wizard,
read carefully!!!
 
Hello alexbf,

MS recommends to NOT run exchange on a domain controller.

Best regards

Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
 
Hello alexbf,

You're welcome.

Best regards

Myweb
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
 
alexbf said:
Thanks a lot, everything seems to work now... the only thing I have
left to do is remove the old machine from the domain controllers
list... so my new one become the only DC in the domain.

How can I do that?

Thanks,
Alex
Click to expand...
It's worth pointing out that it's not a good idea to have only one DC.
If that machine crashes, you have no domain. It's a good idea to have
two DC's.

I'd strongly recommend you get new hard drive(s) for the old DC and set
it up as the second DC. Make it a GC and a DNS server as well. Leave the
other FSMOs on the new server. This will give you some breathing room in
the event the first DC has problems...

--

Regards,
Hank Arnold
Microsoft MVP
Windows Server - Directory Services
 
Back
Top