Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Moving from NT 4.0 domain to server 2003

Status
Not open for further replies.
TeknikL

TeknikL

IS-IT--Management
Feb 15, 2006
6
Is there any way to avoid having to move the 50 workstations off the NT 4.0 domain and onto the server 2003?

can I join the server 2003 machine to the NT 4.0 domain and then make it the "pdc" and then turn off the nt 4.0 machine?
 
Sort by date Sort by votes
Have a good look on the Microsoft website for domain migration. They actually have quite good documentation.
 
Upvote 0 Downvote
Is there any way to avoid having to move the 50 workstations off the NT 4.0 domain and onto the server 2003?
Click to expand...
50 Machines is not a big deal. The answer to your question is no.
can I join the server 2003 machine to the NT 4.0 domain and then make it the "pdc" and then turn off the nt 4.0 machine?
Click to expand...
No, NT 4.0 domain controllers cannot be DC's in an Active Directory. What you are asking is a nice thought, but it is not possible.
Your environment does not seem that large and relatively speaking would be an easy upgrade. I would do what ntinlin suggests, go to MS web-site for more info. If you are uncomfortable with the steps, build a test environment using either VMWare or MS VirtualServer and practice the upgrade. senerio.

Jesse Hamrick
 
Upvote 0 Downvote
No, NT 4.0 domain controllers cannot be DC's in an Active Directory
Click to expand...

Sorry Jesse but this is incorrect. I wrote the migration docs from NT4 to 2003 for Microsoft's Small to Medium IT prescriptive guidance. This happens all the time.

Teknikl,

The correct answer here is that the PDC must be upgraded to Windows 2003 before any other 2003 machines may be introduced as a DC. Your NT4 BDC will continue to authenticate, however they will not hold AD and cannot host AD Integrated DNS.

What most people do in your situation is what is called a Swing Server Upgrade.

Install a fresh machine as an NT4 BDC. Install SP6a. Promote it to PDC. Then perform the upgrade to Windows 2003. The install will create the basic AD structure for you. The domain will be running in Mixed Mode which allows for NT4 domain controllers.

Next you should install a fresh WIndows 2003 server on new hardware. THis time, unlike the NT4 which had limitations for the OS partition, you will now be able to set a decent size partition. I suggest between 12-24GB. Install SP2. Run DCPROMO to make this new server a DC. Wait 15 minutes for AD to fully replicate. Make the server a Global Catalog.

Next you need to transfer all of the FSMO roles from the swing server. After you verify all 5 roles have successfully transfered, you can run DCPROMO on the swing server to uninstall AD from it. After that gracefully remove the server from the domain by joining it to a workgroup. Verify there are no records for it in DNS, if there are delete them.

You now have a clean install of Windows Server 2003 running as PDC emulator, as the main DC for AD while still having NT4 domain controllers servicing logon requests.

I suggest fully upgrading servers to 2003 after that and when all NT4 domain controllers are removed you can elevate the domain functional level to Windows 2003. Note that you can elevate to 2003 mode while still having NT4 member servers. You just can't have DCs that would be NT4 at that point.

As was suggested, visit the Microsoft.com website and download a copy of the upgrade docs which go over all of the individual steps. What I have posted above is just an overview of what needs to be done.

Specifically refer to the pilot program implementation in the following:

I hope you find this post helpful.

Regards,

Mark

Check out my scripting solutions at
Work SMARTER not HARDER. The Spider's Parlor's Admin Script Pack is a collection of Administrative scripts designed to make IT Administration easier! Save time, get more work done, get the Admin Script Pack.
 
Upvote 0 Downvote
Thanks Mark, I guess I was not clear on that. I agree with the upgrade procedure you described. To be more clear, from the question I quoted, you can not promote a 2003 member server of an NT 4.0 domain to a domain controller for that NT 4.0 domain. As you stated, the NT 4.0 PDC has to be upgraded first, then you can add other 2003 DCs. And I understand that the Domain runs in mixed-mode until all DCs are upgraded from NT 4.0.

Jesse Hamrick
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MaioMaio
  • Locked
  • Question
Server Remote Desktop License
Replies
0
Views
420
MaioMaio
MaioMaio
goombawaho
  • Locked
  • Question
Domain join from wifi connected laptop
Replies
4
Views
774
goombawaho
goombawaho
Aquiles Vidal
  • Locked
  • Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
511
Aquiles Vidal
Aquiles Vidal
rzammit82
  • Locked
  • Question
Windows Server 2016 - DNS/AD problem
Replies
1
Views
670
suncit
suncit
antonio_dsanchez
  • Locked
  • Question
post-installation WSUS windows server 2016
Replies
0
Views
425
antonio_dsanchez
antonio_dsanchez

Part and Inventory Search

Sponsor

Back
Top