Sunday, April 17, 2011

HOW TO PROMOTE ADDITIONAL DOMAIN TO PRIMARY DOMAIN WITHOUT THE PRESENT OF THE PRIMARY ( WINDOWS 2003 )

1- use ntdsutil to sieze all 5 fmso roles
    -->cmd
    -->ntdsutil
    -->role
    -->connect
    -->connect to server "additionserver"
    -->q    (to back one step
    -->help    (to see possible roles to seize)
    -->xxx    (see in help and type the same for any roles)

2- hklm\system\currentcontrolset\services\ntds\parameters
create DWORD named "Global Catalog Promotion Complete" with values = 1
--> restart to take affect
(to make the domain became Global Catalog server)


3- hklm\system\currentcontrolset\services\netlogon\parameters
change the value of "SysvolReady" to 1 --> restart service Netlogon to take affect
(to make service Domain controller ready)

4- verify all dns ip in tcp/ip setting is correct.

5- change some configuration in DNS server record related with GC ( global catalog )

========================================

TESTING
=======

1- create user in each domain, if no error means the GC is work

2- create new child domain, if no error means DC is work

3- login each user in the forest (all domain) means all domain work

========================================

No comments:

Post a Comment