MCSA Learning Channel: Active Directory Migration from WindowsServer 2008 R2 to Windows Server 2012 R2

Upgrading in-place to Windows Server 2012

YES – You can upgrade domain controllers that run 64-bit versions of Windows Server 2008 or Windows Server 2008 R2 to Windows Server 2012.

NO - You cannot upgrade domain controllers that run Windows Server 2003 or 32-bit versions of Windows Server 2008.

Functional Levels Considerations

- Windows Server 2012 requires a Windows Server 2003 forest functional level or higher.

- Before you can add a DC that runs Windows Server 2012 to an existing AD forest, the forest functional level must be Windows Server 2003 or higher.

- If the forest functional level is Windows 2000, the installation is also blocked.

Operation Master Roles Considerations

Some new features in Windows Server 2012 that affect operations master roles:

- The PDC emulator must be running Windows Server 2012 to support cloning virtual domain controllers.

- The Relative Identifier (RID) Master has new RID issuance and monitoring functionality. The improvements include better event logging and more appropriate limits.

- New security principals are created when the PDC emulator runs Windows Server 2012.

Active Directory Considerations – New Features

- CUI-based command-line installations are performed by using the ADDSDeployment Module in Windows PowerShell.

- GUI-based promotions are performed in Server Manager using a completely new Active Directory Domain Services Configuration Wizard.

Active Directory – Tool changes

There are some tool changes related to AD DS:

1. Deprecation of Adprep32.exe
There is only one version of Adprep.exe: It can be ran as needed on 64-bit domain controllers that run Windows Server 2008 or later. The system determines this.

2. Deprecation of Dcpromo.exe: It can still be run with an answer file and through PowerShell.

Prerequisites

1. Download Windows Server 2012 R2. You also have the ability to complete this Step-By-Step in a virtual lab by downloading Hyper-V Server 2012 for free.

2. As a precaution, complete a full backup of your existing server.

3. Check the Schema version of AD DS (Before adprep) by running regedit, navigating to Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NTDS\Parameters and noting the current Schema version.

Model Solutions

Step 1: Raise Forest Functional Level (DCSrv2008)

1. On Run, type domain.msc and press enter.

2. Right click Active Directory Domains and Trusts and select Raise Forest Functional Level... in the sub menu.

3. Ensure that the forest functional level is Windows Server 2003 or higher.

Step 2: Preparing your existing forest via the adprep command

1. On run, type regedit and press enter.

2. Check the Schema version of AD DS (Before adprep) by running regedit, navigating to Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NTDS\Parameters and noting the current Schema version.

3. Insert the Windows Server 2012 DVD into the DVD drive of the Windows Server 2008 R2 AD DS.

4. On run, type cmd and press enter.

5. On command prompt, type D: and press enter then type cd support\adprep and press enter (D: DVD drive of DCSrv2008)

6. Type adprep /forestprep and press enter.

7. Type C and press enter.

8. After 3-5 minutes, type adprep /domainprep and press enter.

9. Check the Schema version of AD DS (after adprep) by running regedit, navigating to Compute \HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NTDS\Parameters and noting the current Schema version.

Step 3: Adding additional Domain Controller (Windows Server 2012)

1. Logon DCSrv2012 by Administrator domain account.

2. Open Server Manager, click Manage then click Add Roles and Features.

3. In the Before You Begin window, click next.

4. In the Select installation type window, select Role-based or feature-based installation then click next.

5. In the Select destination server window, click Select a server from the server pool and click next.

6. In the Select Server Roles window, select Active Directory Domain Services and click next.

7. In the Add features that are required for Active Directory Domain Services window, click Add Features.

8. In the Select features window, click next.

9. In the Active Directory Domain Services window, click next.

10. In the Confirm installation selections window, select Restart the destination server automatically if required then click Install

11. In the Installation progress window, click Close.

12. On Server Manager, click Notifications and then click Promote this server to a domain controller.

13. In the Deployment Configuration window, click Add a domain controller to an existing domain. Specify the domain information for this operation Domain: minhtuan.local and then click Next.

14. In the Domain Controller Options windows, ensure that both the Domain Name System (DNS) server and Global Catalog (GC) check boxes are selected. Confirm that Site Name: is set to Default-First-Site-Name. Under Type the Directory Services Restore Mode (DSRM) password, type in both text boxes and then click Next.

15. On the DNS Options page, click Next.

16. On the Additional Options page, select DCSrv2008.minhtuan.local in the Replicate from drop-down box.

17. On the Paths windows, click Next.

18. On the Review Options windows, click Next.

19. On the Prerequisites Check windows, confirm that there are no issues, and then click Install.

20. Installation Process begins.. and server will automatically reboot after Installation Finished.

21. Open Active Directory Users and Computers, expand minhtuan.local and click Domain Controller OU .Verify DCSrv2012 Server is listed.

22. Open DNS Manager, right-click on minhtuan.local and select Properties and then click Name Servers Tab. Verify that DCSrv2012.minhtuan.local is listed in Name Servers: lists.

23. Open Active Directory Sites and Services; verify that DCSrv2012 is listed in Servers under Default-First-Site-Name.

Step 4: Transfer FSMO roles to the Windows Server 2012 Domain Controller: (solution A)

1. Log on DCSrv2012 new domain controller, Open the Command Prompt and type netdom query fsmo. Verify the FSMO Roles on Windows Server 2008 R2 Server(DCSrv2008) before we transfers FSMO roles to new Windows Server 2012 Server( DCSrv2012)

2. In the command prompt, type ntdsutil and press enter.

3. Type roles and press Enter. The prompt will display “fsmo maintenance:”

4. Type connections and press Enter. The prompt will display “server connections:”

5. In the “server connections: “, type connect to server DCSrv2012.minhtuan.local and press enter ( where DCSrv2012 is the name of the target Windows Server 2012)

6. Type quit and press enter. The prompt will display “fsmo maintenance:”

7. In the “fsmo maintenance:” type “?” for help

8. In the “fsmo maintenance: “ , type transfer schema master and Press enter and Click Yes On Role Transfer Confirmation Dialog box to confirm the Operations Master change.

9. Result

10. Do the same process for: transfer naming master, transfer PDC, transfer RID master and transfer infrastructure master.

11. Type quit and press enter; the type quit and press enter again to exit the ntdsutil

12. Verify the FSMO Roles on new Windows Server 2012 Domain Controller, DCSrv2012.

Step 4: Transfer FSMO roles to the Windows Server 2012 Domain Controller: (solution B)

1. On Run, type powershell and press enter.

2. On command prompt, type Move-ADDirectoryServerOperationMasterRole –Identity DCSrv2012 –OperationMasterRole SchemaMaster, DomainNamingMaster, PDCEmulator, RIDMaster, InfrastructureMaster and press enter.

Step 5: Remove the legacy domain controller

1. On DCSrv2008, Click Start, Click Run, type dcpromo and then click OK.

2. On the Welcome to the Active Directory Installation Wizard page, click Next.

3. On the Delete the Domain page, leave Delete the domain because this server is the last domain controller in the domain.

4. On the Administrator Password Page, type Password in both password textboxes and click Next.

5. On the Summary page, click Next. Wait for the process to complete and then click Finish.

6. On the Completing the Active Directory Domain Services Installation Wizard, click Finish.

7. On the Active Directory Domain Services Installation Wizard page, click Restart Now to Restart the server.

8. After restart the server, DCSrv2008 computer account will automatically move from Domain Controller OU to Computers OU because now DCSrv2008 is only the member server.

9. Lastly disjoin Windows Server 2008 R2 (DCSrv2008) from the domain to a workgroup and remove any unnecessary record from Active Directory Sites and Services.

10. Click Yes

Summary:

Finally, we successfully Migrated Active Directory Domain Controller from Windows Server 2008 R2 to Windows Server 2012, which is an easy process. I hope this article will help you in the near future when you are Active Directory Domain Controller from Windows Server 2008 R2 to Windows Server 2012.

▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬

► Download this video, lesson for FREE

► MP4 link: updating...

► PDF link: http://adf.ly/1n3zg9

  ► Youtube: https://www.youtube.com/watch?v=BhlM4jglQ-s
  ► Alternate link: http://fas.li/THCFr
► Alternate link: http://viid.me/qWYPZo
► Alternate link: http://linkshrink.net/7U39Rm
                                            ► Alternate link: http://cpmlink.net/DCwDAA
► Alternate link: http://www.linkbucks.com/BDBIL

▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬

MCSA Learning Channel

Pages

Monday, March 6, 2017

Active Directory Migration from WindowsServer 2008 R2 to Windows Server 2012 R2

No comments:

Post a Comment

Blog Archive