only 1 DC, need to rebuild. how?

[cipher]

i have an AD domain with only one DC. we need to completely redo this
server. so my question is this: if i temporarily log a user out of the
domain and instead log them on to their local computer, will they be able to
log back onto the domain if when they try there is a "new" domain
controller? the domain and server name will be the same and the user will
have an account in the new AD. also a computer account will have been
created for them.

 

[Herb Martin]

i have an AD domain with only one DC. we need to completely redo this
server. so my question is this: if i temporarily log a user out of the
domain and instead log them on to their local computer, will they be able to
log back onto the domain if when they try there is a "new" domain
controller?

Yes, but when "logged into their machine" they will not be "themselves" --
they
will be a DIFFERENT user IF you create an account for them on the machine.

the domain and server name will be the same and the user will
have an account in the new AD.
also a computer account will have been created for them.

And if you create a NEW domain, they won't be the same as EITHER of
the above users -- they will be someone ELSE new.

Why do it this way? Why not create a NEW DC in THIS domain; transfer
the master roles and the GC to the new DC and then (if necessary) retire
the old DC (or keep it around for fault tolerance.)