a good source is here
http://stevejenkins.com/blog/2010/01/migrating-an-active-directory-domain-controller-from-windows-2000-to-windows-2008-r2/
here is what I did
- I am not quite there is No official support upgrading from w2000 DC to w2008 R2 DC; as windows 2008 R2's minimum function level is windows 2000 native. so it must be a supported migration path
- install windows 2008 R2
- give it static IP on the domain
- join the domain
- extend the schema on the windows 2000 PDC and extend the domain ( I wonder I need extend the group policy as well)
- in my case, I need raise the domain function level to windows 2000 native (it was on mixed mode, which means NT4 DC allowed)
- add AD DS role, eventually run DC promo, follow the on-screen intructions, namely join to the existing forest, current domain, make sure this is a DC+GC
- eventually you will restart the new server
- after restart, check the log, make sure AD replicated properly
- then transfer 5 FSMO roles over, in ADUC and AD forest trust , connect to the other DC, click change
- run netdom /query fsmo to make sure the roles are transferred over to the new domain controller (see I am not a new bee)
- overall, there should be 6 roles on the new server -- 5 FSMOs + Global Catalogue
- I left this running over nite
- on the second day, checks log again on both server, it looks normal
- stop the dhcp service on the old w2k server
- re-configure dns and dhcp entries to use only the new server
- run dcpromo on the windows 2000 DC to demote it to a member server
- copy files over to the new server
- modify login scripts to point shares to the new server
- ahhh, the NAP-RASMGMT is a pain
http://stevejenkins.com/blog/2010/01/migrating-an-active-directory-domain-controller-from-windows-2000-to-windows-2008-r2/
here is what I did
- I am not quite there is No official support upgrading from w2000 DC to w2008 R2 DC; as windows 2008 R2's minimum function level is windows 2000 native. so it must be a supported migration path
- install windows 2008 R2
- give it static IP on the domain
- join the domain
- extend the schema on the windows 2000 PDC and extend the domain ( I wonder I need extend the group policy as well)
- in my case, I need raise the domain function level to windows 2000 native (it was on mixed mode, which means NT4 DC allowed)
- add AD DS role, eventually run DC promo, follow the on-screen intructions, namely join to the existing forest, current domain, make sure this is a DC+GC
- eventually you will restart the new server
- after restart, check the log, make sure AD replicated properly
- then transfer 5 FSMO roles over, in ADUC and AD forest trust , connect to the other DC, click change
- run netdom /query fsmo to make sure the roles are transferred over to the new domain controller (see I am not a new bee)
- overall, there should be 6 roles on the new server -- 5 FSMOs + Global Catalogue
- I left this running over nite
- on the second day, checks log again on both server, it looks normal
- stop the dhcp service on the old w2k server
- re-configure dns and dhcp entries to use only the new server
- run dcpromo on the windows 2000 DC to demote it to a member server
- copy files over to the new server
- modify login scripts to point shares to the new server
- ahhh, the NAP-RASMGMT is a pain
No comments:
Post a Comment