Advice on moving from 2000 DC's to 2003 DC's

Discussion in 'Server Migration' started by Tony, Aug 16, 2007.

  1. Tony

    Tony Guest

    I have read the Microsoft notes on which steps to take when doing this, but
    I am struggling with it.



    We have three W2000 DC's on a single domain. My aim is to bring in a new
    2003 server, make it a DC (and promote two other 2003 servers we already
    have) AND somewhere in the process demote the W2k DC's to member servers.



    If someone would be so kind as to bullet point the key stages, to give me a
    logical framework to follow it would be much appreciated



    Tony
     
    Tony, Aug 16, 2007
    #1
    1. Advertisements

  2. Tony

    Myweb Guest

    Hello Tony,

    - is theire also an Exchange server on one of the 2000 DC's installed? Then
    check out this first:
    http://support.microsoft.com/default.aspx?scid=kb;en-us;314649 http://support.microsoft.com/?id=325379

    - on the 2000 DC's if not done, make DNS as Active directory integrated zone,
    easier for administration and replication

    - Install 2003 as a new server, point DNS only to one of the 2000 DNS servers

    - prepare the schema master from the 2000 machines for the new schema with
    adprep /forestprep adprep /domainprep form the 2003 installation cd with
    an account that is member of the schema admins

    - run dcpromo on the 2003 server, make it DNS server and check that DNS is
    active directory integrated, let it time for replication from DNS

    - if the new one is ready so far run dcdiag and netdiag against the new server
    to check for errors

    - if no errors make it a global catalog server
    Open Active directory site and services, go to Sites, default first site
    name, servers, choose the server, right click NTDS settings, open properties
    and checkmark Global catalog (check event viewer after it, in Directory
    service you must find event id 1110 and 1119)

    - move the 5 FSMO roles to the new 2003 machine, check in eventviewer>directory
    services for entries about success or failure
    http://support.microsoft.com/kb/324801

    - check again with dcdiag and netdiag for errors

    - change DNS settings from the new server to point to itself as primary server,
    change the 2000 machines to point to the new 2003 server as primary DNS server

    - give it some time and test that your environment it still running, web,
    shares, login etc. Also again dcdiag and netdiag

    - then install the 2 other machines, promote them as DC, make them also DNS
    server, during install pointing to the running 2003 DNS as primary DNS only

    - make them also Global catalog server's, then you have redundancy

    - do not forget to reconfigure your clients for the new DNS servers, either
    via DHCP (ofcourse you have to make also a new DHCP server on the 2003 machine)
    options or manually

    - if everything is ok, you can start demoting the old servers, do NOT delete
    them from AD, run dcpromo on the 2000 machines and follow the wizard, read
    carefully.



    Best regards

    Meinolf Weber (Myweb)
    Disclaimer: This posting is provided "AS IS" with no warranties, and confers
    no rights.
     
    Myweb, Aug 16, 2007
    #2
    1. Advertisements

  3. Hello Tony,

    Here also an article about DNS configuration, easier then write everything
    by hand from myself:
    http://support.microsoft.com/kb/825036

    Best regards

    Meinolf Weber (Myweb)
    Disclaimer: This posting is provided "AS IS" with no warranties, and confers
    no rights.
     
    Meinolf Weber (Myweb), Aug 16, 2007
    #3
  4. Jorge de Almeida Pinto [MVP - DS], Aug 17, 2007
    #4
  5. Tony

    Tony Guest

    Many thanks...

    Tony

    "Jorge de Almeida Pinto [MVP - DS]"
     
    Tony, Aug 20, 2007
    #5
  6. Tony

    Tony Guest

    Many thanks....

    Tony

     
    Tony, Aug 20, 2007
    #6
  7. Hello,

    I've done adprep /forestprep adprep /domainprep
    I've promoted my Windows 2003 server.
    Installed DNS server from add/remove programs in control panel.
    Now am stucked with DNS. I tried to run netdiag command. and I got warning
    in the middle of the log :

    [WARNING] Cannot find a primary authoritative DNS server for the name
    'Typhon.burgessfurniture.com.'. [ERROR_TIMEOUT]
    The name 'Typhon.burgessfurniture.com.' may not be registered in
    DNS

    I am trying to sort it out, but I am not sure where to start. Maybe I have
    to trasfer all the DNS records from my old windows 2000 server to windows
    2003 or I have to setup secondary zone.
    I tried doing that http://support.microsoft.com/kb/323383, but I got
    error - The zone cannot be created. The zone allready exists.


    If you could possibly give me any directions about DNS setup.

    Regards
     
    Donatas Grasys, Sep 14, 2007
    #7
  8. Hello Donatas,

    Please post an ipconfig /all
    How do you run DNS, as Active directory integrated zone?

    Best regards

    Meinolf Weber
    Disclaimer: This posting is provided "AS IS" with no warranties, and confers
    no rights.
     
    Meinolf Weber, Sep 14, 2007
    #8
  9. Hello,

    Yes my new DC is Active directory integrated.
    I' ve pasted ipcofig data.
    Could you possibly have a look.


    Old DC ipconfig:


    Microsoft Windows 2000 [Version 5.00.2195]
    (C) Copyright 1985-2000 Microsoft Corp.

    C:\Documents and Settings\morpheus>ipconfig /all

    Windows 2000 IP Configuration

    Host Name . . . . . . . . . . . . : MORPHEUS
    Primary DNS Suffix . . . . . . . : burgessfurniture.com
    Node Type . . . . . . . . . . . . : Hybrid
    IP Routing Enabled. . . . . . . . : No
    WINS Proxy Enabled. . . . . . . . : No
    DNS Suffix Search List. . . . . . : burgessfurniture.com

    Ethernet adapter Burgess:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Intel(R) PRO/100+ Server Adapter
    (PI
    LA8470B)
    Physical Address. . . . . . . . . : 00-02-B3-5B-47-BF
    DHCP Enabled. . . . . . . . . . . : No
    IP Address. . . . . . . . . . . . : 192.1.1.156
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 192.1.1.113
    DNS Servers . . . . . . . . . . . : 192.1.1.156
    Primary WINS Server . . . . . . . : 192.1.1.156

    C:\Documents and Settings\morpheus>



    New DC ipconfig:



    C:\Documents and Settings\Typhon>ipconfig /all

    Windows IP Configuration

    Host Name . . . . . . . . . . . . : Typhon
    Primary Dns Suffix . . . . . . . : burgessfurniture.com
    Node Type . . . . . . . . . . . . : Unknown
    IP Routing Enabled. . . . . . . . : No
    WINS Proxy Enabled. . . . . . . . : No
    DNS Suffix Search List. . . . . . : burgessfurniture.com

    Ethernet adapter Local Area Connection 3:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
    Physical Address. . . . . . . . . : 00-10-18-2F-2D-0B
    DHCP Enabled. . . . . . . . . . . : Yes
    Autoconfiguration Enabled . . . . : Yes
    Autoconfiguration IP Address. . . : 169.254.221.236
    Subnet Mask . . . . . . . . . . . : 255.255.0.0
    Default Gateway . . . . . . . . . :

    Ethernet adapter Local Area Connection 4:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
    #2
    Physical Address. . . . . . . . . : 00-10-18-2F-2D-08
    DHCP Enabled. . . . . . . . . . . : Yes
    Autoconfiguration Enabled . . . . : Yes
    Autoconfiguration IP Address. . . : 169.254.139.39
    Subnet Mask . . . . . . . . . . . : 255.255.0.0
    Default Gateway . . . . . . . . . :

    Ethernet adapter Local Area Connection:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE
    (NDIS
    VBD Client)
    Physical Address. . . . . . . . . : 00-1C-23-BC-91-90
    DHCP Enabled. . . . . . . . . . . : No
    IP Address. . . . . . . . . . . . : 192.1.1.176
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 192.1.1.176
    DNS Servers . . . . . . . . . . . : 192.1.1.156

    Ethernet adapter Local Area Connection 2:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE
    (NDIS
    VBD Client) #2
    Physical Address. . . . . . . . . : 00-1C-23-BC-91-92
    DHCP Enabled. . . . . . . . . . . : Yes
    Autoconfiguration Enabled . . . . : Yes
    Autoconfiguration IP Address. . . : 169.254.151.211
    Subnet Mask . . . . . . . . . . . : 255.255.0.0
    Default Gateway . . . . . . . . . :

    C:\Documents and Settings\Typhon>



     
    Donatas Grasys, Sep 17, 2007
    #9
  10. Hello Donatas,

    Please do not multipost. In the moment people read/work in 2000 dns, server
    dns and migration NG's. Just choose one, so everybody can read the whole
    story also from the other answering people.

    Best regards

    Meinolf Weber
    Disclaimer: This posting is provided "AS IS" with no warranties, and confers
    no rights.
     
    Meinolf Weber, Sep 17, 2007
    #10
  11. Hello,

    Regarding the configuration on the new DC, I have the following suggestions:
    1. There are 4 network adapters, please disable 2-4 Local Area Connection.
    2. Correct Default Gateway, set to 192.1.1.113.
    3. Run Ipconfig /flushdns command to clean local cache of DNS.
    4. Ping 192.1.1.156, to see if the connection is fine.
    5. Go to old DC, check if DNS enable "Dynamic Update" on
    burgessfurniture.com zone.

    Hope this helps.

    Mike Luo

    Microsoft Online Partner Support
    Get Secure! - www.microsoft.com/security

    =====================================================
    When responding to posts, please "Reply to Group" via your newsreader so
    that others may learn and benefit from your issue.
    =====================================================
    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Mike Luo [MSFT], Sep 20, 2007
    #11
  12. How's everything going?

    I'm wondering if the suggestion has helped or if you have any further
    questions. Please feel free to respond to the newsgroups if you need any
    additional help.

    Mike Luo

    Microsoft Online Partner Support
    Get Secure! - www.microsoft.com/security

    =====================================================
    When responding to posts, please "Reply to Group" via your newsreader so
    that others may learn and benefit from your issue.
    =====================================================
    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Mike Luo [MSFT], Sep 24, 2007
    #12
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.