Please Read: Significant Update Planned, Migrating Forum Software This Month

See more
See less

Migrate Forest Root Domain DC to Second DC

  • Filter
  • Time
  • Show
Clear All
new posts

  • Migrate Forest Root Domain DC to Second DC


    DC1 (the only one in the domain) hardware is aging. Need to migrate to new hardware.

    Build second DC in new hardware. Configure it as both DC and DNS server. Second DC points to itself as primary DNS server and no secondary DNS. During bootup, the server stops at "preparing network connections" for a long time.

    Event ID: 3096 -
    The primary Domain Controller for this domain could not be located.
    Source: Netlogon

    Event ID: 40960 -
    The Security System detected an authentication error for the server ldap/ATHQSVR02.attamwil.local. The failure code from authentication protocol Kerberos was "There are currently no logon servers available to service the logon request. (0xc000005e)".
    Source: LSASRV

    Event ID: 2088
    Active Directory could not use DNS to resolve the IP address of the source domain controller listed below. To maintain the consistency of Security groups, group policy, users and computers and their passwords, Active Directory successfully replicated using the NetBIOS or fully qualified computer name of the source domain controller.

    Invalid DNS configuration may be affecting other essential operations on member computers, domain controllers or application servers in this Active Directory forest, including logon authentication or access to network resources.

    You should immediately resolve this DNS configuration error so that this domain controller can resolve the IP address of the source domain controller using DNS.
    Source: NTDS Replication

    Is this normal? Can I safely shutdown and reformat DC1?


  • #2
    Re: Migrate Forest Root Domain DC to Second DC

    I would recommend doing this:

    Add the first DC as secondary DNS on the second DC.

    Wait for replication to ocurr

    Run DCPROMO on the first DC. This will transfer the FSMO roles to the second DC