AD/DNS/DHCP - Upgrading Windows 2000 to Windows 2003

Discussion in 'Server Migration' started by Gene Varah, Jan 15, 2008.

  1. Gene Varah

    Gene Varah Guest

    Hi ya guys, any suggestions how to get this done. Actions to take and in
    which order? Thanks and I really appreciate it. Greetz, Gen
     
    Gene Varah, Jan 15, 2008
    #1
    1. Advertisements

  2. Hello Gene,

    Is also Exchange installed on it?

    - On the old server open DNS management console and check that you are running
    Active directory integrated zone (easier for replication, if you have more
    then one DNS server)

    - run dcdiag and netdiag on the old machine to check for errors, if you have
    some post the complete output from the command here or solve them first

    - run adprep /forestprep and adprep /domainprep from the 2003 installation
    disk against the 2000 server, with an account that is member of the Schema
    admins, to upgrade the schema to the new version

    - Install the new machine as a member server in your existing domain

    - configure a fixed ip and set the preferred DNS server to the old DNS server
    only

    - run dcpromo and follow the wizard to add the 2003 server to an existing
    domain

    - if you are prompted for DNS configuration choose Yes (also possible that
    no DNS preparation occur), then install DNS after the reboot

    - for DNS give the server time for replication, at least 15 minutes. Because
    you use Active directory integrated zones it will automatically replicate
    the zones to the new server. Open DNS management console to check that they
    appear

    - if the new machine is domain controller and DNS server run again dcdiag
    and netdiag on both domain controllers

    - if you have no errors, make the new server GLobal catalog server, open
    Active directory Sites and Services and then double-click sitename, double-click
    Servers, click your domain controller, right-click NTDS Settings, and then
    click Properties, on the General tab, click to select the Global catalog
    check box (http://support.microsoft.com/?id=313994)

    - Transfer, NOT seize the 5 FSMO roles to the new Domain controller (http://support.microsoft.com/kb/324801)

    - you can see in the event viewer that the roles are transferred, also give
    it some time

    - reconfigure the DNS configuration on your NIC of the 2003 server, preferred
    DNS itself, secondary the old one

    - if you use DHCP do not forget to reconfigure the scope settings to point
    to the new installed DNS server

    Best regards

    Meinolf Weber
     
    Meinolf Weber, Jan 16, 2008
    #2
    1. Advertisements

  3. Hello Gene,

    Thank you for posting here.

    According to your description and my experience, the issue seems a little
    complicated since there may be 2 scenarios.

    Scenario A
    ===========

    There is only one server and it holds DNS/DHCP/AD roles. We may do
    in-place-upgrade existing windows 2000 domain to windows 2003 domain. The
    key operation is to extend schema of forest.

    General steps:

    1. Make a system state backup of the server with "NTBACKUP" utility.

    Please refer to:

    How To Use the Backup Program to Back Up and Restore the System State in
    Windows 2000
    http://support.microsoft.com/kb/240363

    2. Extend the Windows 2000 forest and domain schema with the adprep utility.

    Please refer to:

    Operations that are performed by the Adprep.exe utility when you add a
    Windows Server 2003 domain controller to a Windows 2000 domain or forest
    http://support.microsoft.com/kb/309628

    3. Perform in-place-upgrade the existing Windows 2000 domain to Windows
    server 2003 domain.

    Please refer to:

    "Overview: Upgrading Windows 2000 domain controllers to Windows Server
    2003" in KB 325379

    How to upgrade Windows 2000 domain controllers to Windows Server 2003
    http://support.microsoft.com/kb/325379

    Scenario B
    ==============

    There are two servers. One is the existing Windows 2000 DC and the other is
    a Windows Server 2003 computer which will be a new DC.

    General steps:

    1. Make a system state backup of the server with "NTBACKUP" utility.

    Please refer to:

    How To Use the Backup Program to Back Up and Restore the System State in
    Windows 2000
    http://support.microsoft.com/kb/240363

    2. Extend the Windows 2000 forest and domain schema with the "ADprep"
    utility.

    Please refer to:

    Operations that are performed by the Adprep.exe utility when you add a
    Windows Server 2003 domain controller to a Windows 2000 domain or forest
    http://support.microsoft.com/kb/309628

    3. Join the Windows Server 2003 based computer as a member server of the
    existing domain.

    4. Promote the new Windows Server 2003 member to an additional domain
    controller in existing Windows 2000 domain.

    Please refer to:

    This part "Installing an Additional Domain Controller for an Existing
    Domain" in KB 238369
    How to promote and demote domain controllers in Windows 2000
    http://support.microsoft.com/kb/238369
    (It should also works with Windows Server 2003)

    5. Please Enable Global Catalog on new server and manually Check
    Replication Topology and afterwards manually trigger replication (Replicate
    Now) to synchronize Active Directory database between 2 replicas.

    Note: It will some time to replicate GC between DC, please wait some time
    with patience.

    6. Transfer FSMO roles if needed:

    How to view and transfer FSMO roles in the graphical user interface
    http://support.microsoft.com/kb/255690

    7. Migrate DNS configuration to the new DNS server.

    Please refer to:
    How to migrate an existing DNS infrastructure from a BIND-based server to a
    Windows Server 2003-based DNS
    http://support.microsoft.com/kb/323419

    8. Migrate DHCP Configuration from existing DHCP server to the new one.

    Please refer to:
    How to move a DHCP database from a computer that is running Windows NT
    Server 4.0, Windows 2000, or Windows Server 2003 to a computer that is
    running Windows Server 2003
    http://support.microsoft.com/kb/325473

    9. You may configure TCP/IP on all the clients, or adjust DHCP server
    option settings to make them use the new DNS server.

    Please refer to:
    How to Configure Your DHCP Server Scope
    http://support.microsoft.com/kb/139904

    10. Please unauthorize the old DHCP server and Authorize the new DHCP
    server and so that the new one can work normally with Active Directory.

    Please refer to:

    How to Use Netsh.exe to Authorize, Unauthorize and List DHCP Servers in
    Active Directory
    http://support.microsoft.com/kb/303351

    Hope all the infomation will help you.If you have any unclear about my
    description, please feel free to let me know.

    I'm looking forward to your reply.

    Thank you for your time.


    David Shen
    Microsoft Online Partner Support
    Microsoft Global Technology Support Center
     
    David Shen [MSFT], Jan 16, 2008
    #3
  4. Gene Varah

    Gene Varah Guest

    Hello Meinolf,

    Thanks for your answer and yes we have Exchange 2000. Considerate another
    scenario?

    Kind regards, Gene-
     
    Gene Varah, Jan 17, 2008
    #4
  5. Gene Varah

    Gene Varah Guest

    Hi David,

    Thanks for both scenario and I will visualize them on paper too because of
    both solution will fit.

    This is great!
     
    Gene Varah, Jan 17, 2008
    #5
  6. Hello Gene,

    Is the exchange installed on the Domain controller or is it a member server?
    BTW how many DC's do you have? And do you have the option if exchange ios
    on a DC to install it on a member server? Will you also upgrade exchange
    to 2003?

    Best regards

    Meinolf Weber
     
    Meinolf Weber, Jan 17, 2008
    #6
  7. Gene Varah

    Gene Varah Guest

    Hi Meinolf,

    Exchange is a member now and in total we got 2 DCs (AD,DNS,DHCP). The first
    step is to get 2003 DC up and running and then we will do the Exchange
    upgrade. Wowww fast reply.

    Kind regards, Gene
     
    Gene Varah, Jan 17, 2008
    #7
  8. Hello Gene,

    Ok, so because Exchange has also installed some objects to the schema during
    installation you have to check this one before starting:
    http://support.microsoft.com/?id=314649

    Best regards

    Meinolf Weber
     
    Meinolf Weber, Jan 17, 2008
    #8
  9. Hello Gene,

    I'm happy to hear that my suggestions of the two scenarios are helpful for
    you.

    As you said, you have an Exchange 2000 server as a member and totally have
    2 DCs (AD, DNS, DHCP) in your system environment. It's recommended that you
    upgrade the system in the order of Active Directory/DNS/DHCP. You may
    upgrade Exchange 2003 Server afterwards.

    Moreover, we mainly focus on Windows server migration related issues here
    in this microsoft.public.windows.server.migration newsgroup.

    Since the issue is related to Exchange upgrading, in order to ensure that
    you are best served, I would like to suggest that you open a new thread in
    our Exchange queue.

    microsoft.public.exchange

    The engineers and newsgroup members there are more experienced on related
    issues, and should be able to provide you with suggestions on this kind of
    issue.

    I hope all my description will help you. You are always welcome to
    newsgroup at your convenience.

    Thanks for your time.


    David Shen
    Microsoft Online Partner Support
    Microsoft Global Technology Support Center
     
    David Shen [MSFT], Jan 17, 2008
    #9
  10. Gene Varah

    Gene Varah Guest

    Meinolf thanks a lot for your help!

     
    Gene Varah, Jan 17, 2008
    #10
  11. Gene Varah

    Gene Varah Guest

    Thank you very much for your help. Very good solutions and suggestion !
    Gene-
     
    Gene Varah, Jan 17, 2008
    #11
  12. Hi Gene,

    I'm glad to hear that the solutions help.

    If you have any question about windows server, please feel free to post
    here.

    Thanks a lot.

    David Shen
    Microsoft Online Partner Support
    Microsoft Global Technology Support Center
     
    David Shen [MSFT], Jan 18, 2008
    #12
  13. Hello Gene,

    You're welcome, would be nice to hear if you got it running.

    Best regards

    Meinolf Weber
     
    Meinolf Weber, Jan 18, 2008
    #13
  14. Gene Varah

    windowsfirst Guest

  15. Dear Customer,

    Thanks for your knowledge sharing.

    David Shen
    Microsoft Online Partner Support
     
    David Shen [MSFT], Feb 25, 2008
    #15
  16. Dear Customer,

    Thanks for your knowledge sharing.

    David Shen
    Microsoft Online Partner Support
     
    David Shen [MSFT], Feb 25, 2008
    #16
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.