Re: Windows 2000 to 2008 AD upgrade.

Discussion in 'Server Migration' started by Meinolf Weber [MVP-DS], Nov 10, 2009.

  1. Hello Drew,

    It is possible to use Exchange 2003 with 2008 DCs, at least Exchange 2003
    SP2 must be installed, so your information is wrong/old:

    For the upgrade to 2008 Domain:


    - On the old server open DNS management console and check that you are running
    Active directory integrated zone (easier for replication, if you have more
    then one DNS server)

    - run replmon from the run line or repadmin /showreps(only if more then one
    DC exist), dcdiag and netdiag from the command prompt on the old machine
    to check for errors, if you have some post the complete output from the command
    here or solve them first. For this tools you have to install the support\tools\suptools.msi
    from the 2000 installation disk.

    - run adprep /forestprep and adprep /domainprep and adprep /domainprep /gpprep
    and adprep /rodcprep from the 2008 installation disk against the 2000 schema
    master(forestprep) / infrastructure master(domainprep/rodcprep), with an
    account that is member of the Schema/Enterprise/Domain admins, to upgrade
    the schema to the new version (44) or 2008 R2 (47)

    - you can check the schema version with "schupgr" or "dsquery * cn=schema,cn=configuration,dc=domainname,dc=local
    -scope base -attr objectVersion" without the quotes in a command prompt

    - Install the new machine as a member server in your existing domain

    - configure a fixed ip and set the preferred DNS server to the old DNS server
    only, think about disabling IPv6 if you are not using it, some known problems
    exist with it. Follow (
    to disable it

    - run dcpromo and follow the wizard to add the 2008 server to an existing
    domain, make it also Global catalog and DNS server.

    - for DNS give the server time for replication, at least 15 minutes. Because
    you use Active directory integrated zones it will automatically replicate
    the zones to the new server. Open DNS management console to check that they

    - if the new machine is domain controller and DNS server run again replmon,
    dcdiag on both domain controllers. For using netdiag.exe on 2008, NOT 2008
    R2, you have to download and install (,
    ignore the compatibility warning, or extract netdiag.exe only and copy it

    - Transfer, NOT seize the 5 FSMO roles to the new Domain controller (
    applies also for 2008/2008R2), FSMO should always be on the newest OS DC

    - after transfer of the PDCEmulator role, configure the NEW PDCEmulator to
    an external timesource and reconfigure the old PDCEmulator to use the domainhierarchie
    now. Therefore run on the NEW "w32tm /config /manualpeerlist:pEERS /syncfromflags:manual
    /reliable:yes /update" where PEERS will be filled with the ip address or
    server( and on the OLD one run "w32tm /config /syncfromflags:domhier
    /reliable:no /update" and stop/start the time service on the old one. All
    commands run in an elevated command prompt without the quotes.

    - you can see in the event viewer (Directory service) that the roles are
    transferred, also give it some time

    - reconfigure the DNS configuration on your NIC of the 2008 server, preferred
    DNS itself, secondary the old one

    - if you use DHCP do not forget to reconfigure the scope settings to point
    to the new installed DNS server

    Demoting the old DC(if needed)

    - reconfigure your clients/servers that they not longer point to the old
    DC/DNS server on the NIC

    - to be sure that everything runs fine, disconnect the old DC from the network
    and check with clients and servers the connectivity, logon and also with
    one client a restart to see that everything is ok

    - then run dcpromo to demote the old DC, if it works fine the machine will
    move from the DC's OU to the computers container, where you can delete it
    by hand. Can be that you got an error during demoting at the beginning, then
    uncheck the Global catalog on that DC and try again

    - check the DNS management console, that all entries from the machine are
    disappeared or delete them by hand if the machine is off the network for ever

    - also you have to start AD sites and services and delete the old servername
    under the site, this will not be done during demotion

    Best regards

    Meinolf Weber
    Disclaimer: This posting is provided "AS IS" with no warranties, and confers
    no rights.
    ** Please do NOT email, only reply to Newsgroups
    ** HELP us help YOU!!!

    > Environment:
    > We have an AD, Native Mode 2000 domain in a hub-n-spoke configuration.
    > There are 60 "spoke" offices, each with their own 2000 DC/GC Server.
    > These servers also each host Exchange 2003.
    > All 800 or so clients are 2000 and XP.
    > Goal:
    > Would like to turn the 2000 DC/GCs into 2008 DC/GCs (2000 > 2008
    > Domain), but still host Exchange 2003, which I've read is NOT
    > possible. Thought about getting an Exchange Enterprise license and
    > hosting all mailboxes on a non-DC server at the hub, but most of the
    > 60 offices use DSL and I'm concerned about latency, which most
    > assuredly would be a problem.
    > If anyone could point me to a good article or offer up some advice,
    > I'd appreciate it.
    > Drew
    Meinolf Weber [MVP-DS], Nov 10, 2009
    1. Advertisements

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.
Similar Threads
  1. Vincent
    Nov 8, 2006
  2. AlanF
    Sep 22, 2004
  3. Dave Nickason [SBS MVP]

    Re: Difference between Windows Server 2008 / SBS 2008 / EBS 2008 / SBS 2003

    Dave Nickason [SBS MVP], May 6, 2009, in forum: Windows Small Business Server
    Dave Nickason [SBS MVP]
    May 6, 2009
  4. Little Help Please...
    Little Help Please...
    Mar 5, 2009
  5. jenson
    Miha Pihler [MVP]
    Dec 31, 2005
  6. Steve Halvorson
    John Chen [MSFT]
    Feb 13, 2006
  7. Meinolf Weber [MVP-DS]

    Re: Windows 2000 to 2008 AD upgrade.

    Meinolf Weber [MVP-DS], Nov 10, 2009, in forum: Server Migration
    Meinolf Weber [MVP-DS]
    Nov 10, 2009
  8. john doe
    Chris Puckett [MSFT]
    Dec 28, 2009