Re: adding client machines to active directory after changing DC

From: scottohiocomp (scottohiocomp_at_discussions.microsoft.com)
Date: 07/30/04 

Date: Fri, 30 Jul 2004 06:07:02 -0700

the situation didn't allow me to follow "best practices". does anyone have any suggestions on ways to do what i want to do in my situation, instead of ways i should have done what is already behind me?

"anonymous@discussions.microsoft.com" wrote:

> Agreed with the first response about having at least a 2nd
> dc for a replicated environment.
>
> Do you have backup? The answer better be Yes. If you do,
> you may be able to perform an authoritative restore and
> that may work also.
>
> If you don't have a backup, add this to your list of best
> practices.
>
> You can automate joining the domain by using NETDOM that
> is in the support tools. Please see
> http://support.microsoft.com/default.aspx?scid=kb;en-
> us;329721
>
> best of luck
> >-----Original Message-----
> >>I had a windows 2000 server domain controller that was
> dying from old age.
> >We bought a new server, installed and >configured Windows
> 2000 server and
> >exchange 2000 with the exact computer name, domain name,
> tcp/ip settings,
> >>everything the same as the old server. We recreated
> users in active
> >directory. After configuring, we simply disconnected
> >the old domain
> >controller from the network and connected the newly
> configured box.
> >
> >What you did was create a NEW domain. Even if you name it
> the same and
> >replicate TCP/IP settings, it is still seen as a new
> domain by the computers
> >because the SID is different.
> >
> >A better way to do it would have been to add the new DC
> to the existing
> >domain, transfer the FSMO roles and Global Catalog, set
> up DNS on the new
> >DC, point your AD clients to the new DNS server then
> demote the original DC.
> >Since you started off by adding the new DC to the
> existing domain the domain
> >SID will be replicated to the new DC and it will be seen
> as in the same
> >domain. No need to worry about resetting user profiles.
> >
> >One of the "best practices" for a domain is to have a
> second DC in the
> >domain in case the first DC crashes, the second DC will
> continue to hold all
> >domain/user info (SID).
> >
> >What you are going to have to do is go to each computer
> and add them to the
> >NEW domain.
> >
> >You see how much work has to be done if your original DC
> crashes, I would
> >suggest setting up a second DC on your new domain now.
> >
> >hth
> >DDS W 2k MVP MCSE
> >
> >"scottohiocomp" <scottohiocomp@discussions.microsoft.com>
> wrote in message
> >news:4B4EA11B-5D33-4007-B084-5F549A61467E@microsoft.com...
> >> Here is the situation: I had a windows 2000 server
> domain controller that
> >was dying from old age. We bought a new server,
> installed and configured
> >Windows 2000 server and exchange 2000 with the exact
> computer name, domain
> >name, tcp/ip settings, everything the same as the old
> server. We recreated
> >users in active directory. After configuring, we simply
> disconnected the
> >old domain controller from the network and connected the
> newly configured
> >box. Everything worked fine. The only problem is, is
> that none of the
> >users computers show in active directory, which creates
> problems with global
> >policy and such. I know we can go to each clients pc,
> and go through my
> >computer and run the network identification wizard, and
> then their computer
> >will show in active directory, but then I have to
> reconfigure all of their
> >desktop settings.
> >>
> >> Does anyone know of a easier way to get all of these
> computers to appear
> >in active directory. When I browse the network, it still
> shows all of the
> >computers, just not in active directory.
> >>
> >> Thanks
> >> Scott
> >
> >
> >.
> >
>

Relevant Pages

  • Re: Domain!
    ... > means that my personal computer is a part of a network. ... > I log in to my Windows 2000 Pro system using 'Adminstrator' as the ... "In Windows 2000 and Active Directory, a collection of computers defined ...
    (microsoft.public.win2000.general)
  • Re: Problem with an XP machine seeing the network
    ... One of our XP workstations does not see any of the computers on the domain ... when you click on "Network Places". ... The XP machine is using the same dns servers that everyone else ... DNS is using an Active Directory Integrated using Allowing for Dynamic ...
    (microsoft.public.windows.server.active_directory)
  • Re: VPN user unable to browse domain shares
    ... Obtaining access into each of the computers shown in the ... Active Directory can in fact be relevant. ... effect how the Microsoft Windows Network is displayed in Network Places. ... When a machine is part of a workgroup, it will send out an announcement to ...
    (microsoft.public.windows.server.general)
  • Re: Unable to create a LAN connection from a Win 98-based network to a Win2000 PC
    ... Here is a reply to another post I just made and may help on configuring IP addresses. ... other computers. ... For instance your typical class c network may use 192.168.1.xxx as the network ... > I have a small LAN connection between two Windows 98 PCs ...
    (microsoft.public.win2000.networking)
  • Re: allowing users from selected computers
    ... The operating system can not distinguish general network use based on user logged on. ... You can however restrict which domain computers a domain user can logon to by ... configuring their account properties in AD Users and Computers. ...
    (microsoft.public.win2000.security)
Loading