Hi,

We are in the process of moving NT domain to Windows 2003 domain.

I have upgraded PDC to Windows 2003 DC. Now I want to remove the this
DC and install a new DC. I have installed one Windows 2003 member
server in this domain.
Since DNS is also configure on the First DC, what all steps one has to
do on this member server to make it DC and move the DNS server from
first DC to the New DC. and phase out the first DC.

what the best way out?


Thanks,
-Saket

Hi,

Once you have a member server (make sure that it has all the latest patches
and security updates), run a DCPROMO on this server and select "Additional
domain controller for existing domain". You can install DNS server before or
after. Windows 2003 domain DNS servers are by default configured to have
"Active Directory integrated zones" which means they will replicate together
with other information to all other domain controllers inside domain.

You can check this if you open DNS MMC and under Forward Lookup Zones right
click on your domain name and select properties. Check to see what "Type" of
zone you have (it should be "Active Directory-Integrated".
Once you setup your new domain controller and DNS on your new domain
controller, check to see if you can see DNS zones of your domain. Note that
this can take few minutes before showing up on your new domain controller.

There are few other things you have to move over to new domain controller
before you decide to remove first domain controller.
* make your new domain controller also a global catalog
* move FSMO roles to new server
* your first domain controller hold private key for EFS data recovery agent
(DRA). If you will support EFS in your environment, export the keys or
assign new DRA. If you do not want to support EFS, disable it using group
policy.

How To Create or Move a Global Catalog in Windows 2000
http://support.microsoft.com/?kbid=313994

How to view and transfer FSMO roles in Windows Server 2003
http://support.microsoft.com/?id=324801

Using Ntdsutil.exe to seize or transfer FSMO roles to a domain controller
http://support.microsoft.com/kb/255504

DNS settings on domain controller (preferred DNS under TCP/IP) should either
point to another Active Directory DNS or back to itself.

--
Mike
Microsoft MVP - Windows Security


<saketbadola@gmail.com> wrote in message
news:1107781000.563050.175340@l41g2000cwc.googlegr oups.com...

Hi Mike,

Thanks for the Help.

I have one question. When you install DNS server and configure it on
the New DC, should the new DNS server be the secondary Server or the
Primary primary.

Is ther any document for the same?

thanks
-Saket

Make it primary and integrated with AD, if it's AD integrated it will follow
AD replication config.

Regards,
/Jimmy
--
Jimmy Andersson, Q Advice AB
Microsoft MVP - Directory Services
---------- www.qadvice.com ----------


<saketbadola@gmail.com> wrote in message
news:1107783560.286909.10520@l41g2000cwc.googlegro ups.com...

Hi,

My advice is to go with Active Directory Integrated zones. It is usually
more practical then Primary and Secondary zones. All DNS related information
is then replicated to e.g. all domain controllers inside your domain.

http://freeweb.siol.net/mpihler/dns1.jpg
http://freeweb.siol.net/mpihler/dns2.jpg
http://freeweb.siol.net/mpihler/dns3.jpg

Understanding DNS
http://www.microsoft.com/resources/d...nd_topnode.asp

Deploying DNS
http://www.microsoft.com/resources/d...s_overview.asp

Windows Server 2003 DNS Server Role
http://www.microsoft.com/technet/pro...r/default.mspx

Feel free to post back with any additional questions that you might have.

--
Mike
Microsoft MVP - Windows Security

<saketbadola@gmail.com> wrote in message
news:1107783560.286909.10520@l41g2000cwc.googlegro ups.com...

Sorry, I really need to re-read my posts before hitting send....
Disregard the "primary and..." part of my previous post. It should say "Make
it integrated with AD..."

Regards,
/Jimmy
--
Jimmy Andersson, Q Advice AB
Microsoft MVP - Directory Services
---------- www.qadvice.com ----------


"Jimmy Andersson [MVP]" <jimmy_NO_SPAM_@mvps.org> wrote in message
news:O$4EC6RDFHA.2032@tk2msftngp13.phx.gbl...

Hi,
Thanks to All. I was able to successfully remove the first Domain
Cotroller from the forest.

-Saket

Hi ,
After removing the first server I want to merge the two forest.

Presently we have two Office. Our Head office(HO) have ther own Windows
2003 forest with exchange 2003 server and ther email address siffix is
@company.com.
Our branch office(BO) is Windows NT 4.0 domain with exchange server 5.5
and are in the process of migrating to Windows 2003 ADS. and they are
using email suffix @country.company.com

We want to remove the Forest at our HO and mergre it with BO Forest,as
the number of user at HO are less compared to our BO.

My question are if BO migrates to own Windows 2003 forest and installs
Exchange 2003 server:

1) Can we integrate the two Forest and have only one Forest.

2) If yes what is the correct process and what precation on has to
take.

3) Do we have rebuild the Exchange server in order to have one forest.

4) What is the best practise for installing Exchange 2003 server:
Is it to install on DC or on a member server.

5) Can we have common email suffix @company.com afer merging the two
forest and the exchange server at both site ,
if is possible what is the best way out and how to do it.

Thanks

-Saket

<INLINE>

--
Hope it helps...........

dw

Don Wilwol
Blog - http://spaces.msn.com/members/wilwol/
Web - http://capital.net/~wilwol/dw.htm
DonWilwol@yahoo.com

"Saket" <saketbadola@gmail.com> wrote in message
news:1108360978.299269.285420@g14g2000cwa.googlegr oups.com...
Yes - and you probably should.
You will need to perform a migration.
ADMT can be used.
http://www.microsoft.com/downloads/d...displaylang=en
Migrate to the exchange org. Org to org migrations are a bit complicated,
and will require some client work.
Best practice is to install on a memeber server.
yes, add it to the reciepient policy.