My goal is to take the in-place upgraded PDC offline to rebuild it, and in the interim, use the second and third
freshly built 2003 DCs to handle services. Questions: - Is there any relevance to the primary or secondary 'role' in AD integrated DNS? I didn't think so but was not sure. - Has anyone had any problems with removing a DC from a domain and trying to re-add it with the same name at a later date? - What pitfalls am I potentially looking at with this scenario?
If a DNS Zone is Active Directory integrated, it can neither be primary or secondary for the zone. With AD Integrated all DNS servers are peers.
Yes, you will have a problem if you do not follow some specific procedures:
- Move all of the Flexible Single Master Operations Roles (FSMO Roles) from the NT PDC upgraded machine to one of the other DCs.
- Demote the PDC Upgraded machine to be only a member server
- Remove the PDC upgraded machine from the domain and reboot. It is now a stand-alone server.
- Rebuild the system
- Add to domain
- Upgrade to a DC in the Domain
- Move FSMOs back if you desire.
Follow the procedure and there should not be any pitfalls. The best way to move FSMOs is by using NTDSUTIL from the SUPPORT TOOLS. http://support.microsoft.com/default.aspx?scid=kb;en-us;255504
Dig deeper on Microsoft Active Directory Design and Administration
Related Q&A from Paul Hinsberg
One admin wants to know if he can run DCPROMO on a Windows Server 2003 machine while the root domain is on Windows 2000.continue reading
A new admin's Active Directory is in utter chaos. Here's what our expert suggests.continue reading
Here's what to do if experiencing drive mapping problems in Windows 2000 server.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.