Introduce a Windows 2008 Server R2 DC to existing 2008 Windows Network
I have just recently upgraded my test network which was historically a 2008 network with 1 DC and transferred it to a 2008 R2 network with. I will just outline below the steps I took with the migration:
I used VMware workstation to conduct the migration.
I teamed up the existing 2008 server already in the test environment with another 2008 R2 server I already had and created a linked clone.
Ensured the 2 were part of the same virtual network, ensured network connectivity was pinging between the 2. Used ping with both DNS and IP address.
Inserted a 2008 R2 DVD onto the 2008 server and began the ADPrep process. The adprep utility can be found on the DVD under support and ADPrep folder.
Open a command prompt, navigate to the DVD and to the ADPrep folder.
You will need to prepare the forest as well as the domain and if you have Read only domain controllers these will need attention as well.
Run the following commands in this order:
adprep /domainprep /gpprep
Once the ADprep process has finished, you are now ready to promote the new 2008 r2 server. To do this run dcpromo on this server and active directory installation should begin.
I also raised the domain functional level to 2008 as it was previously set to 2003. To do this you need to open Active Directory Users and Computers and right click the domain and click ‘raise domain functional level’ Its optional if this is done but I would advise doing this step at some point during the transition.
At the same time I also raised the forest level to 2008. To do this open Active Directory Domain and Trusts, right click the top level (i.e. before the domain) and click on ‘raise forest functional level’
Once the new server has AD installed, I would test connectivity between the DC’s. Use Active Directory Sites and Services to confirm replication. I would also check users and computers to see if your objects are appearing for your domain AD structure. It may not happen straightaway so bear this in mind. A much larger network with lots of DC’s is likely to take longer.
My plan was to retire the old 2008 DC and soley run my AD infrastructure on the new R2 server. For me to do this I needed to transfer all the FSMO roles from the 2008 server to the R2 server. To do this I performed the following steps:
Confirmed that the server I thought was holding the FMSO roles was indeed the correct one.
In command prompt type: netdom query /domain:(domain name) fsmo
This will report back which server is holding the schema master, domain naming master, PDC, RID pool master and Infrastructure master roles.
RID, PDC and Infrastructure roles
The RID, PDC and infrastruture can be done with ease using AD Users and computers, you just need to right click the domain and select operations masters. You will need to connect to your new DC to transfer roles.
Schema Master Role
The schema master is a bit more difficult. You will need to register a dll first before you can view the schema MMC. Run the following in the run command:
Then go back to run and type MMC and go to add/remove snapins under the file menu.
You should see ‘Active Directory Schema’
Open this and you should be able to transfer the schema role to the new DC.
Domain Naming Operations Master Role
The above role can be found on the AD domains and trusts section, simply right click at the top level
select Operations Master.
All Roles should now be transferred to the new DC.
The old DC should now be safe to unpromote, and this can be done just by running dcpromo on that server.