none
Adding Windows 2008 member servers to Windows 2000 domain

    Pergunta

  • Hi,

    We have a windows 2000 domain with two DC. The properties window of AD Domain and Trusts console says Domain Operation Mode is "Native Mode(no pre-Windows 2000 DC)

    Can we add a new Windows 2008 member server to this domain?
     
    We are  NOT planning to upgrade any DC to Windows 2008 at this stage.

    But, I am not sure about the impacts of adding a new 2008 member server on other domain members and AD infrastructure.

    Do we need to raise to domain/forest functional level?

    Is schema extended as a result of this process?


    Thanks in advance for your valuable comments.
    sexta-feira, 8 de agosto de 2008 01:46

Respostas

  •     Yes, you can add a 2008 server as a member server to a W2k or W2k3 domain. You would  need to update the schema if you wished to promote the 2008 server to a DC.
      
    You cannot really raise the functional level above windows 2000 native mode if you still have a windows 2000 dc.

    Bill
    sexta-feira, 8 de agosto de 2008 02:17
  • Yes, As Bill said,  if you want to add a server with Windows server 2008 as addtion DC, you need to upgrade schema. If you just need it to be a member server, you don't need to do it.

    For fuction level, in order to support windows server 2008, it should be at least Windows server 2000 native. And, windows server 2000 SP4 is requested.

    Here is general steps of promting Windows server 2008 as addtion DC in windows server 2000 domain for your reference:

    ====

     

    1. Verify the new server's TCP/IP configuration has been pointed to the current DNS server.

     

    2. Make the new server become a member server of the current Windows Server 2000 domain first.

     

    3. Upgrade the Windows Server 2000 forest schema to Windows Server 2008 schema with the "adprep /forestprep" command on old server.

     

    Please run the "adprep.exe /forestprep" command from the Windows Server 2008 installation CD on the schema master. For example:

     

    Drive:\CMPNENTS\R2\ADPREP\adprep.exe /forestprep

     

    4. Upgrade the Windows 2000 domain schema with the "adprep /domainprep" command on old server.

     

    Drive:\CMPNENTS\R2\ADPREP\adprep.exe /domainprep

     

    5. Run "dcpromo" on new server to promote it as an additional domain controller in existing Windows 2000 domain, afterwards you may verify the installation of Active Directory.

     

    6. Verify the new server's TCP/IP configuration has been pointed to current DNS server.

     

    7.  Insert Windows Server 2008 Installation Disc in the new server.

     

    8. Run "dcpromo" on new server to promote it as an additional domain controller in existing Windows 2000 domain, afterwards you may verify the installation of Active Directory.

     

    9. Enable Global Catalog on new server and manually Check Replication Topology and afterwards manually trigger replication (Replicate Now) to synchronize Active Directory database between 2 replicas.

     

    Please note: It will some time to replicate GC between DC, please wait some time with patience.

     

    10. Disable Global Catalog on DC2.

     

    11. Verify that the old DNS Server Zone type is Active Directory-Integrated. If not, please refer to:

     

    How To: Convert DNS Primary Server to Active Directory Integrated

    http://support.microsoft.com/kb/816101

     

    Note: Active Directory Integrated-Zone is available only if DNS server is a domain controller.

     

    12. Install DNS component on new server and configure it as a new DNS Server (Active Directory Integrated-Zone is preferred). All the DNS configuration should be replicated to the new DNS server with Active Directory Replication.

     

    13. Make all the clients change TCP/IP configuration to point to new server as DNS.

     

    14. You may configure TCP/IP on all the clients, or adjust DHCP scope settings to make them use the new DNS server.

     

    Hope this helps.

    sexta-feira, 8 de agosto de 2008 09:17
    Moderador

Todas as Respostas

  •     Yes, you can add a 2008 server as a member server to a W2k or W2k3 domain. You would  need to update the schema if you wished to promote the 2008 server to a DC.
      
    You cannot really raise the functional level above windows 2000 native mode if you still have a windows 2000 dc.

    Bill
    sexta-feira, 8 de agosto de 2008 02:17
  • Yes, As Bill said,  if you want to add a server with Windows server 2008 as addtion DC, you need to upgrade schema. If you just need it to be a member server, you don't need to do it.

    For fuction level, in order to support windows server 2008, it should be at least Windows server 2000 native. And, windows server 2000 SP4 is requested.

    Here is general steps of promting Windows server 2008 as addtion DC in windows server 2000 domain for your reference:

    ====

     

    1. Verify the new server's TCP/IP configuration has been pointed to the current DNS server.

     

    2. Make the new server become a member server of the current Windows Server 2000 domain first.

     

    3. Upgrade the Windows Server 2000 forest schema to Windows Server 2008 schema with the "adprep /forestprep" command on old server.

     

    Please run the "adprep.exe /forestprep" command from the Windows Server 2008 installation CD on the schema master. For example:

     

    Drive:\CMPNENTS\R2\ADPREP\adprep.exe /forestprep

     

    4. Upgrade the Windows 2000 domain schema with the "adprep /domainprep" command on old server.

     

    Drive:\CMPNENTS\R2\ADPREP\adprep.exe /domainprep

     

    5. Run "dcpromo" on new server to promote it as an additional domain controller in existing Windows 2000 domain, afterwards you may verify the installation of Active Directory.

     

    6. Verify the new server's TCP/IP configuration has been pointed to current DNS server.

     

    7.  Insert Windows Server 2008 Installation Disc in the new server.

     

    8. Run "dcpromo" on new server to promote it as an additional domain controller in existing Windows 2000 domain, afterwards you may verify the installation of Active Directory.

     

    9. Enable Global Catalog on new server and manually Check Replication Topology and afterwards manually trigger replication (Replicate Now) to synchronize Active Directory database between 2 replicas.

     

    Please note: It will some time to replicate GC between DC, please wait some time with patience.

     

    10. Disable Global Catalog on DC2.

     

    11. Verify that the old DNS Server Zone type is Active Directory-Integrated. If not, please refer to:

     

    How To: Convert DNS Primary Server to Active Directory Integrated

    http://support.microsoft.com/kb/816101

     

    Note: Active Directory Integrated-Zone is available only if DNS server is a domain controller.

     

    12. Install DNS component on new server and configure it as a new DNS Server (Active Directory Integrated-Zone is preferred). All the DNS configuration should be replicated to the new DNS server with Active Directory Replication.

     

    13. Make all the clients change TCP/IP configuration to point to new server as DNS.

     

    14. You may configure TCP/IP on all the clients, or adjust DHCP scope settings to make them use the new DNS server.

     

    Hope this helps.

    sexta-feira, 8 de agosto de 2008 09:17
    Moderador
  • Hi Bill and Morgan,

    Thanks alot for your comments.

    Yes, I was just trying to ensure that adding a new Windows server 2008 as a member server to a Windows 2000 AD would not cause any problems for our prod environment.

    Thanks again..

    Cheers; 

    terça-feira, 26 de agosto de 2008 05:17
  • Hi Guys,

    I'm also in the same boat, I did everything that you mensioned but the difference is I shifted all the roles to the 2008 R2 DC.

    Now the problem is I cannot replicate from the 2008 machine to the 2000 DC (comes up with dns lookup and kcc errors) in the same subnet but the 2000 machine can replicate to the 2008 DC.

    What could I be missing?

    Please help

    Alpheus

    terça-feira, 25 de maio de 2010 07:54
  • Hi Margan che,

    We are adding the windows server 2008 additional domain controller to windows 2000 server. What ports are required to add the additional domain controller or any member system? And before transpiring FSMO rolls to new windows 2008 server, what we have to check and install in windows 2000 server.

    Regards

    Shivappa Hosamani


    quarta-feira, 25 de maio de 2011 05:08