Resolving Active Directory server issues by migrating 3-transferring domain controller roles to a staging server

Source: Internet
Author: User
Tags domain server in domain



2 transferring the domain controller role to the staging server

We introduce the role of "transit" server, in the process of migration, the original "problematic" Active Directory domain user information "transferred" to the transit server, and so on after the original domain server reinstall and then "migrate" back, in this section will do the following actions:

    • Install the "brokered" server with the same operating system as the problematic Active Directory server system you are migrating (preferably an operating system patch).

    • Join the staging server to an existing domain and become an "additional domain controller."

    • Migrating the Active Directory role, from the original domain controller to the "brokered" server, makes the brokered server a "primary" domain controller, replacing the original domain controller.

    • Modify the original domain controller's IP address to another address (release the IP address), add this IP address to the transit server, in lieu of domain name resolution and other services.

First upgrade the "brokered" server to an "additional domain controller" for an existing domain, which requires that you install Windows Server R2, set the IP address, and upgrade to an additional domain controller on the "brokered" server, as planned above. In the following procedure, we will describe the main or critical steps, if not specifically stated, select the default value of Deng. The main steps are as follows.

(1) Set the IP address to 172.16.20.110, set the DNS for the Active Directory server as shown in address 172.16.20.1,2-1.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/72/DA/wKioL1Xu0-awP7GEAAH9VrddP24944.jpg "/>

Figure 2-1 Setting the IP address

(2) Modify the computer name to Dcbackup (of course, set other names can also, this can be set according to their own needs), 2-2 shows.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/72/DE/wKiom1Xu0bvxnXSxAAF1JCLASO0422.jpg "/>

Figure 2-2 Modifying the computer name

(3) Open Server Manager, and in manage, click Add Roles and features, as shown in 2-3.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/72/DA/wKioL1Xu0-bRM00vAAGcQAtjkRA233.jpg "/>

Figure 2-3 Adding roles and features

(4) In Select Server role, select Active directory Domain Services, as shown in 2-4.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/72/DA/wKioL1Xu0-fykpeyAAIlp4WVH2c914.jpg "/>

Figure 2-4 Active Directory Domain Services

(5) in "Installation Progress", click the "promote this server to a domain controller" link, as shown in 2-5.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/72/DE/wKiom1Xu0bzTKd81AAHh2ZBeIqo211.jpg "/>

Figure 2-5 Promoting this server to a domain controller

(6) In the Deploy Configuration dialog box, select the deployment action to add a domain controller to an existing domain, enter the DNS name for the domain now in the domain, or click the Select button to browse to the current domain, and then enter the administrator account and password for the existing domain in the Change button (in Domain name \ domain Administrator account mode input), as shown in 2-6.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/72/DA/wKioL1Xu0-fTD5bNAAF3_VkK5qA725.jpg "/>

Figure 2-6 Deployment Configuration

(7) In the Domain Controller Options dialog box, select Domain Name System (DNS) server and global Catalog (GC), and set the password for the directory Restore mode, as shown in 2-7.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/72/DE/wKiom1Xu0byjlWLFAAGY1tQJ7X8873.jpg "/>

Figure 2-7 Domain controller options

(8) In DNS options, ignore the warning, and click the Next button, as shown in 2-8.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/72/DA/wKioL1Xu0-fz94txAAFXNLwYLU8164.jpg "/>

Figure 2-8 DNS Options

(9) In "Other options", in the "Copy from" dialog box, browse to select an existing domain controller as shown in Dcser.heinfo.local,2-9. In your actual network, the domain controller name may not be the same as in this example, please choose according to the actual situation.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/72/DE/wKiom1Xu0b2gINOKAAE_YsFwJuA585.jpg "/>

Figure 2-9 Other options

(10) In the Prerequisite Check dialog box, click the Install button, as shown in 2-10.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/72/DA/wKioL1Xu0-iBH16jAALQEATtUlA523.jpg "/>

Figure 2-10 Starting the installation

After the Active Directory Upgrade Wizard starts the installation, the computer automatically logs off and restarts after the installation is complete, again entering the system and becoming an additional domain controller.

After you upgrade the brokered server to an additional domain controller, you need to upgrade this additional domain controller to the primary domain controller and use this server to temporarily replace the original domain controller for external service. If you want this server to be a DNS server at the same time, you need to add the 172.16.20.1 IP address to this server, and the original a server's address will be changed to a free address in the network such as 172.16.20.109.

(1) on a D server named Dcbackup, open "DNS server" to check for the presence of heinfo.local DNS zone, as shown in 3-1. If the area does not exist, you need to create it vividly.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/72/DE/wKiom1Xu0b2De83cAALXUrRI8P4971.jpg "/>

Figure 3-1 Check if the DNS service exists

(2) Then, in Active directory services and Computers, change the RID, PDC, and infrastructure master to Dcbackup. Right-click the heinfo.local domain name and select "Change Domain Controller" in the Pop-up dialog box, as shown in 3-2.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/72/DE/wKiom1Xu0b3D5ix4AAJTexPOTHc242.jpg "/>

Figure 3-2 Changing the domain controller

(3) In the Change Domain Controller dialog box, select the name of the computer for which you want to transfer the host role, as shown in dcbackup.heinfo.local,3-3.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/72/DA/wKioL1Xu0-nRaBEeAAG4tokE3cQ344.jpg "/>

Figure 3-3 Changing the directory server

(4) Return to Active directory Users and Computers, right-click the domain controller name, and select "Operations Master" from the shortcut menu that appears, as shown in 3-4.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/72/DE/wKiom1Xu0b7gZ8ELAAJREvYQ1bs376.jpg "/>

Figure 3-4 Operations master

(5) In the Operating System dialog box, you need to turn the RDI host, the PDC master, The infrastructure master role is passed to the newly selected server dcbackup.heinfo.local, and the current hosts are shown in the first domain controller dcser.heinfo.local,3-5. First, in the RID tab, click the Change button, as shown in the traditional RID master role, 3-5.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/72/DA/wKioL1Xu0-nwI2GdAAGbilHc3mw398.jpg "/>

Figure 3-5 Changing the RID master role

In the Active Directory Domain Services dialog box that pops up, click the Yes button to confirm the delivery operations master role, as shown in 3-6.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/72/DE/wKiom1Xu0b7zKNhWAAB9cB0yxrA136.jpg "/>

Figure 3-6 Confirming the transfer master role

(6) Then on the PDC tab, click the Change button to pass the PDC master role, as shown in 3-7.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/72/DA/wKioL1Xu0-nBmBujAAGV467WEx0751.jpg "/>

Figure 3-7 Changing the PDC master role

(7) Finally, in the Infrastructure tab, change the infrastructure master to the newly installed domain controller computer, as shown in 3-8.

650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/72/DA/wKioL1Xu0-nDbkaFAAGIvOtklOE042.jpg "/>

Figure 3-8 Basic structure


This article is from the "Wang Chunhai blog" blog, make sure to keep this source http://wangchunhai.blog.51cto.com/225186/1692871

Resolving Active Directory server issues by migrating 3-transferring domain controller roles to a staging server

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.