Escolar Documentos
Profissional Documentos
Cultura Documentos
As you may know, Active Directory provides authentication and authorization mechanisms as well as framework from within other related services that can be deployed. As an LDAP compliant database, it contains most commonly used objects such as users, computers, and groups which can be organized into organizational units or OUs by any number of logical or business needs. Group Policy Objects or GPOs are then linked to OUs to centralize the settings for various users or computers across an organization. Part of the quandaries that IT professionals face is taking advantage of nuances provided in Active Directory in newer server offerings such as Windows Server 2012. As detailed in Pierre's post, "Windows Server 2012 Active Directory Whats New?", Active Directory provided in Windows Server 2012 is provided impactful enhancements. Yet some organizations choose not to migrate due to reasons of uncertainty.
Page 1
This Step-By-Step, suggestion online via the IT Professionals Community of Greater Toronto, is to help deal with that uncertainty and provide guidance for IT professionals looking to migrate their organizations Active Directory offering from Windows Server 2003 to 2012.
Prerequisites
1.
Download Windows Server 2012. If you plan on completing this Step-By-Step in a virtual lab, it is recommended to download the FREE Hyper-V Server 2012 first. Complete Step-By-Step: Adding a Windows Server 2012 Domain Controller to an Existing Windows Server 2003 network
2.
Open the Active Directory Users and Computers console on your new Windows Server 2012 computer.
2. 3.
Right click your domain and select Operations Masters in the sub menu.
In the Operations Masters window, ensure the RID tab is selected.
Page 2
4.
5. 6.
Select Yes when asked about transferring the operations master role. Once the operations master role has successfully transferred, click OK to
continue. Ensure the Operations Master box now shows your new 2012 Windows Server. Repeat steps 4 to 6 for the PDC and Infrastructure tabs. Once completed, click Close to close the Operations Masters window. Close the Active Directory Users and Computers window.
7. 8. 9. 10.
2.
3.
Open the Active Directory Domains and Trusts console on your new Windows Server 2012 computer. Right click your domain and select Change Active Directory Domain Controller... in the sub menu. In the Change Directory Server window, select This Domain Controller or AD LDS instance.
Page 3
4.
5. 6.
Click OK to continue.
Back in the Active Directory Domains and Trusts window, hover over the Active Directory Domains and Trusts found in the folder tree on the left hand side to ensure the server now reflects your new 2012 Windows server. Right click Active Directory Domains and Trusts found in the folder tree and select Operations Manager... in the sub menu. In the Operations Master window, click Change to transfer the domain naming master role to the 2012 Windows Server. When asked if you are sure you wish to transfer the operations master role to a different computer,click Yes. Once the operations master is successfully transferred, click OK to continue. Click Close to close the Operations Master window. Close the Active Directory Domains and Trusts console.
7.
8.
9.
2.
Open a command prompt in administration view on your new Windows Server 2012 computer. On the command prompt window, enter regsvr32 schmmgmt.dll and hit enter.
Page 4
3.
4.
Open a MMC console on your new Windows Server 2012 computer. Click File > Add/Remove Snap-in... In the Add or Remove Snap-ins window, select Active Directory Schema and click the Add >button.
Page 5
4.
Click OK to continue.
2.
3. 4. 5.
In the same MMC console, right click Active Directory Schema and select Change Active Directory Domain Controller... in the sub menu. In the Change Directory Server window, select This Domain Controller or AD LDS instance. Select your new 2012 Windows Server.
Click OK to continue.
A warning will appear stating that the Active Directory Schema snap-in in not connected. Click OK to continue. Hover over the Active Directory Schema folder in the folder tree to ensure the new Windows Server 2012 computer is shown. Now right click Active Directory Schema and select Operations Master... in the sub menu.
Page 6
6.
7.
8.
9.
In the Change Schema Master window, click Change to transfer the schema master role to the 2012 Windows Server. When asked if you are sure you wish to transfer the schema master role to a different computer, clickYes. Once the schema master is successfully transferred, click OK to continue. Click Close to close the Change Schema Master window. In the MMC, click File > Exit.
Once completed, open the Active Directory Users and Computers console to verify that the Active Directory database successfully replicated to your new Windows Server 2012 computer. Be aware that the database replication may take some time depending on the number of objects in Active Directory.
Removing the 2003 Windows Server from the Global Catalog Server
1.
Open Active Directory Sites and Services on your new Windows Server 2012 computer.
2.
3.
4. 5. 6.
7. 8. 9.
10.
Page 7
under the Alternate DNS server should it currently be pointed to the old 2003 Windows Server.
All that's left is to demote the old 2003 Windows server by first adding the new 2012 Windows Server as the Primary DNS, followed by running DCPROMO to demote the old 2003 Windows server.
Page 8