Hello folks
I have done a fair amount of research on how to add/replace a 2003 Active Directory Domain Controller. I intend to add a second domain controller (DC2), then after I am sure it is working as it should, I will demote the original DC (DC1), and remove it from the network. However, there are a couple of areas which I do not quite understand and would be grateful for some comments.
My first query regards Group Policy. Will replication automatically deal with group policy or will I need to backup the original from DC1, then restore to DC2 to make sure that GP will run as expected?
Also, with regards to the Operations Masters Roles, will transferring all of them to DC2 be sufficient? What I mean is, are there any other steps I should take to ensure that DC2 holds and runs these roles?
My plan of attack is as follows:
Install and configure 2003 standard edition
Join to domain
Run DCPROMO and create an additional Domain Controller
Create new Global Catalog Server
Create secondary DNS Server
Create 100/100 DHCP failover Server
Transfer all 5 FSMO's
Either rely on replication or backup/restore GPO
My main worry is regarding the transfer of the FSMO's - essentially, I want the original DC to be 100% redundant and the replacement DC to be 100% authoritative should the original fail/when the original is removed.
Many thanks in advance for any help with this.
I have done a fair amount of research on how to add/replace a 2003 Active Directory Domain Controller. I intend to add a second domain controller (DC2), then after I am sure it is working as it should, I will demote the original DC (DC1), and remove it from the network. However, there are a couple of areas which I do not quite understand and would be grateful for some comments.
My first query regards Group Policy. Will replication automatically deal with group policy or will I need to backup the original from DC1, then restore to DC2 to make sure that GP will run as expected?
Also, with regards to the Operations Masters Roles, will transferring all of them to DC2 be sufficient? What I mean is, are there any other steps I should take to ensure that DC2 holds and runs these roles?
My plan of attack is as follows:
Install and configure 2003 standard edition
Join to domain
Run DCPROMO and create an additional Domain Controller
Create new Global Catalog Server
Create secondary DNS Server
Create 100/100 DHCP failover Server
Transfer all 5 FSMO's
Either rely on replication or backup/restore GPO
My main worry is regarding the transfer of the FSMO's - essentially, I want the original DC to be 100% redundant and the replacement DC to be 100% authoritative should the original fail/when the original is removed.
Many thanks in advance for any help with this.
