can a W2K root dc be repaired

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

I have a problem. There are conflicting opinions on how to proceed and I want
to make sure that I get this clarified before implementing our plan (which is
the first opinion).

Our domain:
We have 3 W2K DCs - dc1, dc2, and dc3. dc1 is the first dc (root dc), it has
all FSMO roles and global catalog, and AD integrated DNS. Dc2 and dc3 have AD
integrated DNS and global catalog. We have a single domain with no child
domains.

We have Exchange 2000 on a separate W2K member server.

The problem is dc1 is running out space because the previous server person
made the partition 10GB. We have moved everything that we can off of the c:
drive to keep the c: from running out of space. In the future we would like
to do an inplace upgrade to Windows 2003 server but there is not enough
space. The previous person did not use the whole hard disk so there is more
space on the physical hard disk that we can use. We would like to install a
fresh copy of W2K because of the past mistakes by the previous person.

This is where the conflict starts.The first opinion is we have 3 dcs and we
should be able to transfer the FSMO roles to dc2, dcpromo dc1 out of the
domain, re-partition dc1, install a fresh copy of W2K server, dcpromo it back
into the domain with the same name xxx.com and everything else as before, and
allow AD replication to populate dc1.

The other opinion is that we cannot mess around with the first dc in a W2K
domain because if we lose the first dc, the domain would die. In this case,
we would need to shutdown all dcs and the Exchange server, repartition dc1,
restore dc1 from tape backup (we cannot use a fresh copy of W2K), verify that
dc1 is running properly, and start up the other dcs and the Exchange server.

We do not want to lose our domain. I have read almost everything about
restoring a failed dc (which in my mind is a similar situation) on the
newsgroups. We will have full backups of all the servers in the domain before
implementing any process.

Which of these opinions are correct? Can someone point me to other resources?

Thank you for your time.
.

Relevant Pages

  • RE: Firewall Rule Set not allowing access to DNS servers?
    ... # Allow out access to my ISP's Domain name server. ... Firewall Rule Set not allowing access to DNS servers? ... but I never said dc1 was my inside nic. ...
    (freebsd-questions)
  • Re: 2k3 keep hanging?
    ... Verifying that the local machine DC1, ... Connecting to directory service on server DC1. ... Latency information for 1 entries in the vector were ignored. ... The File Replication Service SYSVOL ready test ...
    (microsoft.public.windows.server.general)
  • Re: Domain controllers wont replicate
    ... reside on dc1 and so you are going to have to force the demotion of dc2. ... Server DNS name: dc1.domain.local ... Security Permissions check for all NC's on DC dc1. ...
    (microsoft.public.windows.server.active_directory)
  • Re: Netlogon not working when one DC is down..
    ... Verifying that the local machine dc1, ... Connecting to directory service on server dc1. ... Latency information for 6 entries in the vector were ignored. ... The File Replication Service SYSVOL ready test ...
    (microsoft.public.windows.server.active_directory)
  • Re: dcdiag errors
    ... Yes, we did have an old DC crash, which we replaced with dc1 and we ... DC2 is not a DNS server. ... Meinolf Weber wrote: ...
    (microsoft.public.win2000.active_directory)