Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

Domain Controllers

How to migrate to a new domain controller by 58sniper
Posted: 5 Aug 10 (Edited 16 May 12)

Here are the basic steps needed to replace a domain controller.

  1. Backup the existing Domain Controller
  2. Test existing DC and resolve ALL issues
    1. DCDiag
      1. http://technet.microsoft.com/en-us/library/cc773199(WS.10).aspx
      2. http://technet.microsoft.com/en-us/library/cc776854(WS.10).aspx
      3. DCDIAG /v /c /d /e
    2. NetDiag
      1. http://technet.microsoft.com/en-us/library/cc783438(WS.10).aspx
      2. netdiag /v
  3. Check replication health (if more than one DC exists)
    1. repadmin /showreps
    2. http://technet.microsoft.com/en-us/library/cc778305(WS.10).aspx
  4. Install OS on new server and patch to current level
  5. Add new server to domain
  6. Verify server is in correct AD site
    1. nltest /dsgetsite
  7. Add DNS role to new server
  8. Enable DNS Zone Transfer on the existing DC and include the IP address of the new server.
    1. http://technet.microsoft.com/en-us/library/cc782181(WS.10).aspx
  9. Make necessary schema changes (if upgrading to new version of OS that requires schema changes)
    1. http://technet.microsoft.com/en-us/library/cc753437(WS.10).aspx
  10. run DCPROMO on new server and select "additional domain controller for an existing domain" option.
    1. http://technet.microsoft.com/en-us/library/cc732887(WS.10).aspx
    2. http://msdn.microsoft.com/en-us/library/ee797379(CS.10).aspx
  11. Wait for replication (20-30 minutes)
    1. repadmin /showreps
    2. http://technet.microsoft.com/en-us/library/cc778305(WS.10).aspx
  12. Check DNS on the new server
    1. Have the Zone details replicated?
    2. Are the forwarders setup correctly?
      1. http://technet.microsoft.com/en-us/library/cc754941.aspx
  13. Is the event log clear of errors?
  14. Add the Global Catalogue role to the new Domain Controller
    1. http://support.microsoft.com/kb/313994
  15. Transfer the FSMO roles to the new Domain Controller
    1. http://support.microsoft.com/kb/324801
  16. Verify FSMO Roles
    1. Netdom query FSMO
  17. Verify the Primary DNS IP address
  18. Run DCDIAG on both Domain Controllers - fix any issues
  19. Run NetDiag on both Domain Controllers - fix any issues
  20. Configure the new Domain Controller to use an external time source
  21. Transfer file server functionality (if used)
    1. http://www.microsoft.com/windowsserver2008/en/us/fsmt.aspx
  22. Transfer print server functionality (if used)
    1. http://technet.microsoft.com/en-us/library/cc722360.aspx
  23. Transfer DHCP functionality (if used)
    1. http://support.microsoft.com/kb/962355/
    2. Update DHCP scope with new server/DNS information
  24. Transfer any other server roles, features (if used)
  25. Update Exchange (if used)
    1. http://www.msexchange.org/tutorials/Exchange-System-Manager-Domain-Controller-Selection.html
  26. Transfer other applications (if used)
    1. Running other apps like SQL, Exchange, etc. on a Domain Controller is NOT recommended
  27. Update logon scripts
  28. Update Group Policy Objects (GPOs)
  29. Backup the new server
  30. Stop old Domain Controller for 2 days - continue only if no issues
  31. Remove the Global Catalog role from the old Domain Controller
  32. Run DCPROMO on the OLD server to demote to a member server
  33. Remove OLD server from domain
  34. Make sure all references to the old server name are removed from DNS
  35. If an unsucessful removal occurs, cleanup Active Directory
    1. http://support.microsoft.com/kb/216498

Back to Microsoft: Windows servers FAQ Index
Back to Microsoft: Windows servers Forum

My Archive

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close