Results 1 to 8 of 8

Thread: Adding a Server 2008 DC.

  1. #1
    Gonzo District BOFH westin's Avatar
    Join Date
    Jan 2006
    Location
    SW MO
    Posts
    1,187

    Adding a Server 2008 DC.

    I am looking to add a Server 2008 domain controller to my network. Currently I have 3 server 2003 DCs on the network. From what I have read, all I need to do to prep the network, is run the following on the 2003 DC that houses the schema operations master:

    Code:
    adprep /forestprep
    adprep /domainprep
    adprep /domainprep /gpprep
    Let it replicate to the other DCs, and then install server 2008 on the new server, and promote it to DC.

    Does anyone know of anything else I need to do the the network to prepare it for a server 2008 domain controller?

    Any comments/suggestions will be greatly appreciated.
    \"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"

    -HST

  2. #2

    That is my understanding

    That is my understanding of what needs to be done (only addition is making sure you run the AD prep commands from the 2008 Server install source, obvious to some, maybe not to others).
    The relevant technet articles are here:

    http://technet.microsoft.com/en-us/l.../cc733027.aspx

  3. #3
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    Posts
    4,325
    Well, you have to make sure you're domain and forest functional levels are not in 2K mixed mode. I think you can be in 2K native or 2K3. You can't have any NT boxes on your domain. 2K and above only. See the following for more info. http://technet.microsoft.com/en-us/l.../cc754918.aspx

    That's all that I had to do. I'm in the process from migrating from Netware to AD but 2K3 was my first DC. Then I added two other 2K8 DCs using the same process above. You're gonna love 2K8. I'm already hating 2K3 after having used 2K8. GP extensions are great!
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

  4. #4
    Gonzo District BOFH westin's Avatar
    Join Date
    Jan 2006
    Location
    SW MO
    Posts
    1,187
    Hey guys,

    Thanks for the quick replies. You have given me a bit of confidence going into this.

    I don't believe we are in mixed mode. I kind of fell into this network, so I am still figuring things out, but I am pretty sure that we don't have any machines that are pre-XP. All of our Windows servers are 2003. So I think we will be ok.

    phishphreek do I need to install anything on the XP machines to be able to use the 2008 GP extensions? I have been reading that it may be necessary to install client side extensions on those machines. I could be way off in my understanding here...

    Thanks again for the replies.
    \"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"

    -HST

  5. #5
    Some Assembly Required ShagDevil's Avatar
    Join Date
    Nov 2002
    Location
    SC
    Posts
    718
    You're gonna love 2K8. I'm already hating 2K3 after having used 2K8. GP extensions are great!
    You suck! I'm stuck with (3) 2003 Servers and no budget dammit. I also heard that 2008 has a nice NAC option. Is this true? I was hoping to extend my control over machines joining the domain.
    The object of war is not to die for your country but to make the other bastard die for his - George Patton

  6. #6
    AO's Filibustier Cheap Scotch Ron's Avatar
    Join Date
    Nov 2008
    Location
    Swamps of Jersey
    Posts
    378
    I also heard that 2008 has a nice NAC option. Is this true?
    Yup.

    http://www.cisco.com/en/US/solutions...07-491725.html
    In God We Trust....Everything else we backup.

  7. #7
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    Posts
    4,325
    Westin: Sorry it's been some time since I could reply. I just moved into a new house and didn't have internet there except for my painfully slow aircard. After having a 15/15 FIOS connection for so long, DSL speeds really do feel like dial up! I guess I got spoiled...

    You will need to install the client side extensions on the XP clients. Although, I'm pretty sure they are part of MS's normal updates or something you can at least push out using WSUS.

    ShagDevil: I'm not up to speed on the 2K8 NAC option. Actually, they call it NAP, but either way. I never like to put all the controls under one vendor. That is especially true for me with it comes to M$. I'd trust the Cisco NAC or even Symantec's Endpoint Protection NAC feature first. Though... if the price is right (free), I'd use the 2K8 NAP. Not sure about it though.
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

  8. #8
    Gonzo District BOFH westin's Avatar
    Join Date
    Jan 2006
    Location
    SW MO
    Posts
    1,187
    [b]Phish[/] - Thanks for the response. I got the DC up and running, I have not looked at the XP client side extensions, but we do use WSUS, so hopefully it will push them out automatically. I will have to do some reading on that.

    Once again thanks to all who replied. Everything went pretty well, and was extremely straight-forward.
    \"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"

    -HST

Similar Threads

  1. Windows Error Messages
    By cheyenne1212 in forum Miscellaneous Security Discussions
    Replies: 7
    Last Post: February 1st, 2012, 02:51 PM
  2. Covert Channels
    By hatebreed2000 in forum The Security Tutorials Forum
    Replies: 1
    Last Post: March 22nd, 2005, 09:31 AM
  3. A Learning Experience.......
    By Tiger Shark in forum Network Security Discussions
    Replies: 11
    Last Post: August 24th, 2004, 12:59 AM
  4. Update Cisco CRWS via TFTP
    By phishphreek in forum Other Tutorials Forum
    Replies: 0
    Last Post: May 25th, 2004, 04:30 AM
  5. secure my server
    By free-fall in forum Newbie Security Questions
    Replies: 2
    Last Post: December 20th, 2002, 05:44 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •