Win server AD upgrade to win server 08R2 AD (i)

Windows Server 2003 AD upgrade to Windows Server 2008R2 AD

Nuzhihai

Operating system version	Server role	IP Address
windows Server 2003r2	primary ad	192.168.1.10
windows Server 2003r2	secondary ad	192.168.1.20
windows Server 2008R2	primary ad	192.168.1.30
Windows Server 2008R2	Secondary AD	192.168.1.40

Pre-upgrade Environment:

dc03:ad001 (Windows 2003r2 SP2 AD, DNS, five roles)

dc04:ad002 (Windows 2003r2 SP2 AD, DNS)

Post-upgrade Environment:

dc08:ad008 (Windows 2008R2 SP1 AD, DNS, five roles)

dc09:ad009 (Windows 2008R2 SP1 AD, DNS)

Upgrade steps:

1. Backup AD001 server, prevent upgrade failure can restore backup;

2. Upgrade the Server 2003 AD schema Forest schema (ADPREP.EXE/FORESTPREP);

3. Upgrade the Server 2003 AD schema domain schema (adprep.exe/domainprep);

4. Update Group Policy object permissions (ADPREP.EXE/DOMAINPREP/GPPREP);

5. Update AD support for RODC read-only domain controllers (ADPREP.EXE/RODCPREP);

6. Demote the AD002 to the back domain;

7. Install the Windows Server 2008r2 operating system again to add domain and promote to an additional domain controller;

8. Pass the FSMO host role to the Windows Server 2008R2 AD (AD008) server;

9. Demote the original AD001 and retire the domain;

10. Install the Windows Server 2008r2 operating system in this domain and promote it to an additional domain controller;

11. Upgrading the Windows Server 2008r2 domain functional level;

12. Upgrading the Windows Server 2008r2 forest functional level;

13. 
    

1, install 2003 CD-ROM \support\tools\suptools.msi;

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/83/FF/wKiom1eDLgDgJmAPAAD4CPgTK4w523.jpg "/>

2. Use the command "netdom query FSMO" To view the network domain five roles on which ad controller, if not on the same controller, transfer all to the host controller.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/FE/wKioL1eDLgGi_T4YAACGpwAhoJo650.jpg "/>

3, the Windows Server 2008r2 CD into the AD003 server, here in the test environment, the disc drive letter is D drive;

4, in the beginning to run CMD into the command line interface, the directory to switch to D:\support\adprep\;

5, upgrade AD003 forest structure, enter "Adprep.exe/forestprep" (if 32-bit system runs "Adprep32.exe", if 64-bit system runs directly "Adprep.exe") See prompt input: C, and then press: Enter, Waiting for the extension of the domain tree system to complete and confirm;

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/FF/wKiom1eDLgGTGTtYAACVjPEo71E571.jpg "/>

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/FE/wKioL1eDLgKxy7dzAAEWht5ngDA258.jpg "/>

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/FF/wKiom1eDLgKQgpsvAAEyBoalHO0950.jpg "/>

6. Upgrade AD003 AD Schema domain schema (ADPREP.EXE/DOMAINPREP) The following prompt appears (please configure the domain to run in native mode and rerun the DomainPrep) The workaround is as follows:

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/FE/wKioL1eDLgPxnlVoAAB6rnP5kjE845.jpg "/>

Open Active Directory domain and trust relationships, right-click "Raise Domain Functional Level" Select Windows 2000 native mode click "Promote"

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/FE/wKioL1eDLgPgISmjAACeyotTxGo407.jpg "/>

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/FF/wKiom1eDLgSBbsI2AACGr8VrzHU829.jpg "/>

The re-execution (Adprep.exe/domainprep) interface indicates that the domain schema update was successful;

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/FF/wKiom1eDLgTjA0_UAADcJDVZ0wc790.jpg "/>

7. Update Group Policy object permissions (ADPREP.EXE/DOMAINPREP/GPPREP)

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/83/FE/wKioL1eDLgXhGrNXAABp3Zt0JG0393.jpg "/>

8. Update AD support for RODC read-only domain controllers (adprep.exe/rodcprep)

This article from "Nuzhihai" blog, reproduced please contact the author!

Win server AD upgrade to win server 08R2 AD (i)