Re: Transfer forest root role to another DC?

Hello Raimundas,

There is no forest/domain root DC in your case. All DCs are the same, differences are the FSMO roles. So with moving them to the other DC, this part is done.

Make sure the second DC is also Global catalog server and DNS server (choose AD integrated zones, if not done).

In your case i would install a 3rd DC/GC/DNS as VM before demoting the older one, so you have still 2 DCs before you remove the old one.

Then check with dcdiag /v, netdiag /v and repadmin /showrepl to check for errors. If no errors exist you can start demoting the other DC.

What you have to keep in mind is that you should NEVER use the snapshots to restore a DC, this is a not supported backup operation, which will result in USN rollback.
http://support.microsoft.com/kb/875495

Also check this ones before about using DC on VM:
http://support.microsoft.com/kb/888794

http://www.microsoft.com/downloads/details.aspx?FamilyId=64DB845D-F7A3-4209-8ED2-E261A117FC6B&displaylang=en

http://support.microsoft.com/kb/897614/en-us

Demoting the old DC

- reconfigure your clients/servers that they not longer point to the old DC/DNS server on the NIC

- to be sure that everything runs fine, disconnect the old DC from the network and check with clients and servers the connectivity, logon and also with one client a restart to see that everything is ok

- then run dcpromo to demote the old DC, if it works fine the machine will move from the DC's OU to the computers container, where you can delete it by hand. Can be that you got an error during demoting at the beginning, then uncheck the Global catalog on that DC and try again

- check the DNS management console, that all entries from the machine are disappeared or delete them by hand if the machine is off the network for ever

- also you have to start AD sites and services and delete the old servername under the site, this will not be done during demotion

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


It's single domain, let's say it's domain.local, dc's are
dc1.domain.local and dc2.domain.local. Dc1.domain.local was installed
as first dc for new forest and domain, so i'm worried if i demote
dc1.domain.local it may be some problems to my AD, like i wont be able
to create new domains or extend schema or something like that.

"Meinolf Weber [MVP-DS]" <meiweb(nospam)@gmx.de> wrote in message
news:ff16fb6627dde8cbbe2d7e045391@xxxxxxxxxxxxxxxxxxxxxxx

Hello Raimundas,

I am not sure what your forest/domain is built. Do you have
domain.com as root and sub.domain.com or only domain.com?

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and
confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
Currently i have single windows 2003 domain in my organization,
there is two domain controllers in domain, first domain controller
is physical server, second dc is a virtual machine which is on
VMware ESXi host. Physical server which is forest and domain root dc
operates with old hardware and i want to move it to the ESXi host
too. I have already transfered all FSMO roles to second dc. Is there
any specific ways to transfer forest root and domain root dc? Maybe
i need to backup system state of the first dc and then install new
windows 2003 server and restore from that backup?

Thanks in advance



.

Relevant Pages

  • Re: Transfer forest root role to another DC?
    ... There is no forest/domain root DC in your case. ... Make sure the second DC is also Global catalog server and DNS server ... In your case i would install a 3rd DC/GC/DNS as VM before demoting the older one, so you have still 2 DCs before you remove the old one. ... Physical server which is forest and domain root dc ...
    (microsoft.public.windows.server.active_directory)
  • Re: 2008 migration issue
    ... In my test lab I have an empty forest root with 1 dc and a domain tree ... after the promotion I install DNS and make them a DNS Server. ... If so, in each domain in a multi-domain forest, the DC holding the IM FSMO can't be a GC. ...
    (microsoft.public.windows.server.active_directory)
  • Re: Transfer forest root role to another DC?
    ... There is no forest/domain root DC in your case. ... Make sure the second DC is also Global catalog server and DNS server ... If no errors exist you can start demoting the other DC. ... Physical server which is forest and domain root ...
    (microsoft.public.windows.server.active_directory)
  • Re: Single Forest Multiple Domains
    ... DNS issues. ... without enterprise/forest implication and move it into the new forest. ... site1 but should be considered what you would call the root. ... no root equipment such as a server to establish domain.org. ...
    (microsoft.public.windows.server.active_directory)
  • Re: Protected Forest with One Child domain
    ... The forest is in native mode. ... so your child DNS servers can resolve both their ... INTERNAL zone on every DNS server using AD-Integrated Forest ...
    (microsoft.public.windows.server.dns)
Loading