ISSUES
I have added new 2008 server to the existing 2003 domain As I mentioned ,
all the FSMO roles was in 2003 primary domain. I installed the new 2008 by
selecting the options DNS,GC.Now Before transferring the roles to the new
server. When I am checking the current FSMO role status the Schema master
role automatically comes on the new 2008 server. All other roles in the same
existing 2003 server.
SOLUTION
Before making a server 2008 machine your FSMO, you need to make your domain ready.
Start by installing ALL of the latest security patches and service packs on your Server 2003 systems.
Next make sure your domain in running in Server 2003 native mode. If not, upgrade it now.
ADPREP.exe on the Windows Server 2008 installation disc in the sources adprep folder will get you started. If your existing servers are 32 bit you will need the ADPREP.exe from a 32 bit version of server 2008. If your existing servers are 64 bit you will need the ADPREP.exe from a 64 bit version of server 2008.
ADPREP must be run under an elevated privileges command prompt -Start, right-click Command Prompt, and then click Run as administrator
On the Server 2003 Forest Schema Master using credentials of someone in the Schema Admins and Enterprise Admins groups run
ADPREP /forestprep
Follow the on screen instructions.
On the Server 2003 Infrastructure Master using the credentials of someone in the Domain Admins group run
ADPREP /domainprep
Follow the on screen isntructions.
ONLY If you upgraded your domain from a 2000 to a 2003 domain and before you install a Server 2008 DC be sure to run this command from the 2003 Infrastructure Master.
adprep /domainprep /gpprep
.
Before proceeding to install AD on your Server 2008 system, be sure that all of the changes you have made are fully replicated.
Now install ADS on the Server 2008 system run
DCPROMO
In your case, it sounds like you are replacing the Server 2003 systems and all roles will be on the 2008 system as a FSMO. If that is the case, be sure to choose Windows 2008 native as the functional level when prompted for the forest and domain. It would also be a good idea to add the DNS roll when prompted at this point.
Reboot when prompted.
The final step is transferring or seizing roles. There is an important distinction here. Transferring and Seizing are two different processes. Seizing the roles is done if the original FSMO is offline or not available. Instead let's address transferring.
There is a command line method using Ntdsutil that will transfer all FSMO rolls quickly. I do not recommend this for your first transfer. If done incorrectly, you can loose some or all of your AD infrastructure.
First, on the Server 2008 system transfer the Domain-Specific RID Master, PDC Emulator, and Infrastructure Master FSMO Roles:
Right-click the Active Directory Users and Computers icon again and press Operation Masters. Select the appropriate tab for the role you wish to transfer and press the Change button. Press OK to confirm the change. Press OK all the way out.
Now Transfer the Domain Naming Master Role:
Open the Active Directory Domains and Trusts snap-in from the Administrative Tools folder. Right-click the Active Directory Domains and Trusts icon again and press Operation Masters. Press the Change button. Press OK to confirm the change. Press OK all the way out.
Next Transfer the Schema Master Role:
RUN :
regsvr32 schmmgmt.dll
Press OK. You should receive a success confirmation. From the Run command open an MMC Console by typing MMC. On the Console menu, press Add/Remove Snap-in. Press Add. Select Active Directory Schema. Press Add and press Close. Press OK. Press Specify .... and type the name of the new role holder. Press OK. Right-click right-click the Active Directory Schema icon again and press Operation Masters. Press the Change button. Press OK all the way out.
Now wait for the roles transfer and replication to complete.
Subscribe to:
Post Comments (Atom)