Windows Server 2003 R2 域控迁移Windows Server 2012 R2

 

spacer.gif 

 


Prepared By:       Jason Wang

Date    :          November 5, 2016

Last updated by:   Jason Wang

Last updated on:   November 5, 2016

Version:           1.0

 

Maintenance Log:

 

Date

Modified By

Description

Version

November 20, 2016

Jason Wang

First Draft

1.0





















 

 

 

一、  Migration Considerations(迁移注意事项)

1)  域名(内外域名是否一致)

2)  公司域的逻辑架构拓扑图

3)  公司网络拓扑,公网带宽

4)  客户端操作系统及数量,是否加域

5)  域平台的应用:Exchange,基于域身份验证的应用

6)  环境部署是否使用虚拟化技术,高可用等

7)  当前域存在的问题

8)  预算的金额

9)  预计实施完成的时间

10)操作账号必须属于enterprise admin组 

二、Case topology(案例拓扑图)

image.png

三、  Ready to work(准备工作)

 

1)  Modify the computer name: SH-DC, DNS pointing PDC, joined tls.cn domain.(修改计算机名称:SH-DC, DNS指向PDC,加入tls.cn域.) 

image.png

image.png

image.png

2)Install the AD Domain Services component(安装AD域服务组件)

image.png

image.png

3)Create a BDC backup domain controller, and follow the wizard prompts(创建BDC备份域控,根据具向导提示操作)

image.png

  1. An error occurs that requires Windows Server 2003 R2 to raise the domain functional level, the forest functional level(出现错误,需要Windows Server2003 R2提升域功能级别,林功能级别)

    image.png

  2. Windows Server 2003 R2 Raises the domain functional level to Windows 2003 mode (Windows Server2003 R2提升域功能级别到Windows 2003模式)

    image.png

  3. Windows Server 2003 R2 Promotes the forest functional level to Windows 2003 mode(Windows Server2003 R2提升林功能级别到Windows 2003模式)

    image.png

  4. Follow the wizard prompts to enter the DSRM password and proceed to the next step(根据向导提示,输入DSRM密码,继续下一步)

    image.png

    下一步

    image.png

  5.     Select the domain controller that you want to replicate,Click Next(选择需要复制的域控制器,点击下一步)

    image.png

  6. Select the AD DS database storage path and click Next(选择AD DS数据库储存路径,点击下一步)

    image.png

  7. Prepare the options to complete and follow the wizard to prompt for the next step(准备选项完成,根据向导提示下一步)

    image.png

  8. After the prerequisite check is complete, click Install to create a backup domain controller(先决条件检查完成,点击安装创建备份域控)

    image.png

  9. The BDC is created successfully and checks whether the migration is normal (BDC创建成功,检查是否正常迁移)

image.pngimage.png

image.png

四、Take control of the master, complete the migration(夺取主控权限,完成迁移)

5)Windows Server 2012 R2 DNS指向自己,准备夺取主控权限

transfer in ma

image.png

transfer na ma

image.png

transfer pdc

image.png

transfer rid master

image.png

transfer schema master

image.png

image.png

image.png

image.png

五、  The domain control migration is complete(域控迁移完成)


命令:

dcpromo  域控制器升级\域控制器降级


net accounts 显示密码、登录限制和域信息的当前配置


netdom query fsmo 操作主控(fsmo)查看



域控夺权命令

ntdsutil


ntdsutil:roles


fsmo maintenance:connections


server conntections:connect to server SH-DC.tls.cn


server conntections:quit


fsmo maintenance:transfer in ma


fsmo maintenance:transfer na ma


fsmo maintenance:transfer pdc


fsmo maintenance:transfer rid master


fsmo maintenance:transfer schema master


fsmo maintenance:quit


ntdsutil:quit