locked
How to remove old Windows 2000 DC RRS feed

  • 問題

  • I have a small domain with one DC (Windows Server 2000), two Member Servers (Windows Server 2000) for database and WebServer and 10 client PCs (Windows XP & Windows 2000 Pro).

     

    Recently, I add a new machine as new DC (Windows Server 2003) and set it as GC, I would like to remove the old DC (Win2000).

     

    Before actual remove, I turn-off the Win2000 Server (haven't run dcpromo). However, my client cannot logon to the domain.

     

    Can any one help what is the step to remove the Win2000 DC from my domain?

     

    Thanks & regards,

     

     

     

    2008年9月26日 上午 02:57

解答

  • Dear Customer,

    Based on my research , the easiest way is to promote the new server as an additional DC and gradually make the old DC offline. I list the general steps of this process as below for your reference:

    1. Verify the new server's TCP/IP configuration has been pointed to current DNS server.

    Insert Windows Server 2003 Installation Disc in the new server.

    2. Run "dcpromo" on new server to promote it as an additional domain controller in existing Windows 2003 domain.

    3. Enable Global Catalog on new server.
    Please note: It will some time to replicate GC between DC, please wait some time with patience.

    Disable Global Catalog on old DC.

    About how to enable and disable GC:
    ========================
    Open Active Directory Sites and Services.

    In the console tree, click the domain controller where you want to enable or disable the global catalog.

    In the details pane, right-click NTDS Settings, and then click Properties.

    Select the Global Catalog check box to enable the global catalog.
    =============================

    4.Transfer FSMO to the new DCs

    You can refer to the following article to perform step.

    How to view and transfer FSMO roles in Windows Server 2003
    http://support.microsoft.com/kb/324801

    How to view and transfer FSMO roles in the graphical user interface
    http://support.microsoft.com/kb/255690

    Using Ntdsutil.exe to transfer or seize FSMO roles to a domain controller
    http://support.microsoft.com/kb/255504

    5. Install DNS component on new server and configure it as a new DNS Server (Active Directory Integrated-Zone is preferred). All the DNS configuration should be replicated to the new DNS server with Active Directory Replication.

    6. Make all the clients change TCP/IP configuration to point to new server as DNS.
    You may configure TCP/IP on all the clients, or adjust DHCP scope settings to make them use the new DNS server.

    7. If the old DC is also a DHCP server, please refer to the following steps to migrate DHCP:

    Install the DHCP server service on the new DC if necessary. Import the DHCP database to the new DHCP server

    Please refer to:

    How to move a DHCP database from a computer that is running Windows NT Server 4.0, Windows 2000, or Windows Server 2003 to a computer that is running Windows Server 2003
    http://support.microsoft.com/kb/325473

    Adjust DHCP scope settings to make them use the new DNS server.

    Unauthorized the old DHCP server and Authorize the new DHCP server and so that the new one can work normally within Active Directory.


    8. If everything works normally with the new server, you may run DCPROMO to demote it the old DC.

    Hope this helps.



    Sincerely


    Tom Zhang

    2008年9月26日 上午 06:57
    版主

所有回覆

  • Dear Customer,

    Based on my research , the easiest way is to promote the new server as an additional DC and gradually make the old DC offline. I list the general steps of this process as below for your reference:

    1. Verify the new server's TCP/IP configuration has been pointed to current DNS server.

    Insert Windows Server 2003 Installation Disc in the new server.

    2. Run "dcpromo" on new server to promote it as an additional domain controller in existing Windows 2003 domain.

    3. Enable Global Catalog on new server.
    Please note: It will some time to replicate GC between DC, please wait some time with patience.

    Disable Global Catalog on old DC.

    About how to enable and disable GC:
    ========================
    Open Active Directory Sites and Services.

    In the console tree, click the domain controller where you want to enable or disable the global catalog.

    In the details pane, right-click NTDS Settings, and then click Properties.

    Select the Global Catalog check box to enable the global catalog.
    =============================

    4.Transfer FSMO to the new DCs

    You can refer to the following article to perform step.

    How to view and transfer FSMO roles in Windows Server 2003
    http://support.microsoft.com/kb/324801

    How to view and transfer FSMO roles in the graphical user interface
    http://support.microsoft.com/kb/255690

    Using Ntdsutil.exe to transfer or seize FSMO roles to a domain controller
    http://support.microsoft.com/kb/255504

    5. Install DNS component on new server and configure it as a new DNS Server (Active Directory Integrated-Zone is preferred). All the DNS configuration should be replicated to the new DNS server with Active Directory Replication.

    6. Make all the clients change TCP/IP configuration to point to new server as DNS.
    You may configure TCP/IP on all the clients, or adjust DHCP scope settings to make them use the new DNS server.

    7. If the old DC is also a DHCP server, please refer to the following steps to migrate DHCP:

    Install the DHCP server service on the new DC if necessary. Import the DHCP database to the new DHCP server

    Please refer to:

    How to move a DHCP database from a computer that is running Windows NT Server 4.0, Windows 2000, or Windows Server 2003 to a computer that is running Windows Server 2003
    http://support.microsoft.com/kb/325473

    Adjust DHCP scope settings to make them use the new DNS server.

    Unauthorized the old DHCP server and Authorize the new DHCP server and so that the new one can work normally within Active Directory.


    8. If everything works normally with the new server, you may run DCPROMO to demote it the old DC.

    Hope this helps.



    Sincerely


    Tom Zhang

    2008年9月26日 上午 06:57
    版主
  • Thank you very much for your help!

    2008年9月26日 下午 03:37
  • Dear Customer,


    Thanks for replying back.

    If you have any questions regarding our products in the future, please feel free to let us know. We are always glad to be of further assistance.

    Tom Zhang

     

    2008年9月27日 上午 09:13
    版主