I am running my network in mixed mode with a very old domain controller (DC) that I want to remove. It is the primary DC for pre-Win2000 PCs right now. I thought that all I had to do was change the roles in the operations master to make the change. However, after doing this and shutting down the old DC as a test, I found that no one could log into the network, let alone pre-2000 machines. What did I do wrong or forget?
When troubleshooting Active Directory, your first step should be to determine whether name resolution is functioning correctly. Do your DNS servers contain SRV records for the DC that you transferred the FSMO roles to? Can your clients ping the new DC by its hostname? You should also verify that you have a functioning Global Catalog server on your network, since no client will be able to log on without one – in Active Directory Sites & Services, check the NTDS Settings --> Properties sheet of your active domain controllers, and make sure that at least one of them has a check-mark next to "Global Catalog Server."
Dig deeper on Storage Area Network (SAN) Management for Windows
Active Directory expert Laura E. Hunter offers some advice for changing the IP addresses of domain controllers.continue reading
An admin has two domains and two Active Directories. He wants to know how to join the Active Directories so that internal staff can access both, but ...continue reading
An admin needs to grant user access rights for those needing to traverse directory trees. Our server management expert explains how to use Group ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.