Re: network replacement
- From: "Paul Bergson [MVP-DS]" <pbergson@xxxxxxxxxxxxxxxxx>
- Date: Wed, 31 Jan 2007 11:29:01 -0600
It sounds much more convoluted once the whoel details are provided. I guess
I would go with a new domain and setup a trust and migrate using ADMT.
--
Paul Bergson
MVP - Directory Services
MCT, MCSE, MCSA, Security+, BS CSci
2003, 2000 (Early Achiever), NT
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.
"Dido" <xx@xxxxxx> wrote in message
news:%23uDdcvURHHA.464@xxxxxxxxxxxxxxxxxxxxxxx
Thanks for the info. I did not say I would only have one DC in the new
domain; I would have two for fault tolerance. In fact I will have two DNS
and WINS servers as well. I didn't explain in detail why I thought that it
would be better to start afresh but here goes. There are infact two
domains and a workgroup running; one domain NT4 and one 2000 AD using PC's
as servers with a trust between the two. There are only one hundred users.
Most of the users are on the NT4 domain; some on AD. Most users use the
same logins; some have there own logins. Some of the computers are on AD;
some on NT4; some in a workgroup. There are no Groups, OU's, Sites, login
scripts, or policies set up for either domain. Shares have no security
attached and are open to everyone. There is no DNS or WINS so that
elements can't find each other (they have a old pc as a gateway and DNS
server with a large host file on it). There is a pop3 mail server sited
outside the network which is used for external mail and a Microsoft mail
post office for internal mail. The existing PC servers are old and not
worth saving as servers. There are other problems which I could list. It
would not just be a case of promoting to new hardware. Frankly I can't see
how much less work it would be to try and sort out the AD than it would be
to create a new one. However if you still think that's the best option
I'll give it a go.
"Paul Bergson [MVP-DS]" <pbergson@xxxxxxxxxxxxxxxxx> wrote in message
news:%234yFU2TRHHA.4844@xxxxxxxxxxxxxxxxxxxxxxx
Why do you have to start over? Can't you just promote another dc and
then migrate the fsmo roles over and then demote the current dc? If you
are just installing a single dc you have no fault tolerance and you may
want to keep one of these other workstations as a dc in the vent the main
dc dies. If you have only a single dc running and you lose it how will
anybody be able to authenticate except for cached credentials to logon
locally.
I have an article on decommissioning a dc at:
http://www.pbbergs.com
Select articles and click on Decommision a DC
If you choose to start new then you will need to create a trust and
migrate the users across but from what it sounds like just promoting to
new hardware should work fine.
--
Paul Bergson
MVP - Directory Services
MCT, MCSE, MCSA, Security+, BS CSci
2003, 2000 (Early Achiever), NT
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no
rights.
"Dido" <xx@xxxxxx> wrote in message
news:OnJOsBSRHHA.3592@xxxxxxxxxxxxxxxxxxxxxxx
I have just stared at a new company. The network and active directory
structure was extremely badly set up on PC's rather than real servers. I
think the best thing would be to start from scratch on new equipment. I
have purchased new 2003 sp2 32+64 bit boxes for AD, Exchange 2007, SQL,
File and print etc. I intend to migrate everyone over to the new
structure.
Is it best to set up the new structure using the same name e.g.
mydomain.com then move everyone across or to use a new name e.g.
mydomain.net and have a trust relationship between the two and then
migrate resources across. We have both names registered to us. The old
structure isn't worth saving.
.
- References:
- network replacement
- From: Dido
- Re: network replacement
- From: Paul Bergson [MVP-DS]
- Re: network replacement
- From: Dido
- network replacement
- Prev by Date: Re: FRS Replication problems after Seizure
- Next by Date: Adding multiple UO's in AD tree
- Previous by thread: Re: network replacement
- Next by thread: Re: network replacement
- Index(es):
Relevant Pages
|
