re: DCPROMO demotion and DNS

2010-01-14 Thread Juned Shaikh 
If you want to have the server to be demoted continue to work as DNS Server, 
you can get the zone from AD integrated to file based. 

Other than that if you demote a DC, it will definately stopped doing any 
function which was integrated as part of its former role.




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: DCPROMO demotion and DNS

2010-01-14 Thread Jon Harris 
Down clients could be handled by DHCP as far as the DNS but I would have all
of them go through a restart after the changes are made to DHCP just to
force things to work.  Servers I would put on the new DNS servers before
anything else just to get them done but that assumes you are statically
assigning IP addresses for them.  Once all of them are reporting to the new
DNS servers dump the old DNS servers.

Jon

On Thu, Jan 14, 2010 at 2:29 PM, Christopher Bodnar <
christopher_bod...@glic.com> wrote:

>  Your DNS servers will remain DNS servers after you DCPROMO them to remove
> AD. You will need to uninstall the DNS service from the servers to remove
> it, if you fee it’s necessary. You have a few options available to you
> depending on how you have restructured your new environment. You can choose
> to keep these as AD-integrated DNS servers for the new domain. You can chose
> to remove the DNS service, but keep in mind that you will need to
> reconfigure clients to point to the new DNS servers first if you do this.
>
>
>
>
>
>
>
> Chris Bodnar, MCSE
> Sr. Systems Engineer
> Infrastructure Service Delivery
> Distributed Systems Service Delivery - Intel Services
> Guardian Life Insurance Company of America
> Email: christopher_bod...@glic.com
> Phone: 610-807-6459
> Fax: 610-807-6003
>  --
>
> *From:* richardmccl...@aspca.org [mailto:richardmccl...@aspca.org]
> *Sent:* Thursday, January 14, 2010 2:24 PM
> *To:* NT System Admin Issues
> *Subject:* DCPROMO demotion and DNS
>
>
>
>
> Greetings!
>
> Our network and AD structure have been in the process of being "moved",
> "renamed", "merged", "whatevered" for the past few weeks.  All the
> workstations and laptops are now a part of the new domain.  Next come all
> servers...
>
> Question - We have AD-integrated DNS through our DCs.  What becomes of the
> DNS functions if the DC is demoted to a member server?  Does it become a
> "secondary" DNS server getting its information from a remaining DC?  Become
> a static DNS server (manual entries, etc but functioning on the information
> it had at the time of demo)?  Cease any and all DNS services (but can be
> made a secondary DNS server later if desired)?  One chooses what becomes of
> DNS at the time of demo?
>
> Any good links to a site that does not require registering for a
> blog/forum?
>
> Thanks!
> --
> Richard D. McClary
> Systems Administrator, Information Technology Group
> *ASPCA®*
>
>
>
>
>
>
>
>
>
>  --
>
> *This message, and any attachments to it, may contain information that is
> privileged, confidential, and exempt from disclosure under applicable law.
> If the reader of this message is not the intended recipient, you are
> notified that any use, dissemination, distribution, copying, or
> communication of this message is strictly prohibited. If you have received
> this message in error, please notify the sender immediately by return e-mail
> and delete the message and any attachments. Thank you. *
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: DCPROMO demotion and DNS

2010-01-14 Thread Christopher Bodnar 
Your DNS servers will remain DNS servers after you DCPROMO them to remove
AD. You will need to uninstall the DNS service from the servers to remove
it, if you fee it's necessary. You have a few options available to you
depending on how you have restructured your new environment. You can
choose to keep these as AD-integrated DNS servers for the new domain. You
can chose to remove the DNS service, but keep in mind that you will need
to reconfigure clients to point to the new DNS servers first if you do
this. 

 

 

 

Chris Bodnar, MCSE
Sr. Systems Engineer
Infrastructure Service Delivery
Distributed Systems Service Delivery - Intel Services
Guardian Life Insurance Company of America
Email: christopher_bod...@glic.com
Phone: 610-807-6459
Fax: 610-807-6003

  _  

From: richardmccl...@aspca.org [mailto:richardmccl...@aspca.org] 
Sent: Thursday, January 14, 2010 2:24 PM
To: NT System Admin Issues
Subject: DCPROMO demotion and DNS

 


Greetings! 

Our network and AD structure have been in the process of being "moved",
"renamed", "merged", "whatevered" for the past few weeks.  All the
workstations and laptops are now a part of the new domain.  Next come all
servers... 

Question - We have AD-integrated DNS through our DCs.  What becomes of the
DNS functions if the DC is demoted to a member server?  Does it become a
"secondary" DNS server getting its information from a remaining DC?
Become a static DNS server (manual entries, etc but functioning on the
information it had at the time of demo)?  Cease any and all DNS services
(but can be made a secondary DNS server later if desired)?  One chooses
what becomes of DNS at the time of demo? 

Any good links to a site that does not require registering for a
blog/forum? 

Thanks!
-- 
Richard D. McClary 
Systems Administrator, Information Technology Group 
ASPCAR 

 

 



-
This message, and any attachments to it, may contain information
that is privileged, confidential, and exempt from disclosure under
applicable law.  If the reader of this message is not the intended
recipient, you are notified that any use, dissemination,
distribution, copying, or communication of this message is strictly
prohibited.  If you have received this message in error, please
notify the sender immediately by return e-mail and delete the
message and any attachments.  Thank you.
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: DCPROMO demotion and DNS

2010-01-14 Thread Michael B. Smith 
This is a path to problems.

I recommend that after you demote a DC, and BEFORE CLICKING THE REBOOT BUTTON, 
go and remove DNS Server. Reboot. Go clean up DNS on another DC in the same or 
a covering site ASAP.

After you have run all of your demotions, use dcdiag and dnslint and netdiag to 
ensure that everything is clean.

Social.forums.microsoft.com requires registration, but it's free.

However, you've got plenty of technical talent on this forum right here, IMHO.

From: richardmccl...@aspca.org [mailto:richardmccl...@aspca.org]
Sent: Thursday, January 14, 2010 2:24 PM
To: NT System Admin Issues
Subject: DCPROMO demotion and DNS


Greetings!

Our network and AD structure have been in the process of being "moved", 
"renamed", "merged", "whatevered" for the past few weeks.  All the workstations 
and laptops are now a part of the new domain.  Next come all servers...

Question - We have AD-integrated DNS through our DCs.  What becomes of the DNS 
functions if the DC is demoted to a member server?  Does it become a 
"secondary" DNS server getting its information from a remaining DC?  Become a 
static DNS server (manual entries, etc but functioning on the information it 
had at the time of demo)?  Cease any and all DNS services (but can be made a 
secondary DNS server later if desired)?  One chooses what becomes of DNS at the 
time of demo?

Any good links to a site that does not require registering for a blog/forum?

Thanks!
--
Richard D. McClary
Systems Administrator, Information Technology Group
ASPCA(r)





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: DCPROMO demotion and DNS

2010-01-14 Thread RichardMcClary 
Anticipated first question-

Windows 2003 "standard" with AD at "Windows 2003" functional level.  DCs 
are NOT R2.  All are at SP2.

Only one location (for the current AD domain).
--
RMc

richardmccl...@aspca.org wrote on 01/14/2010 01:23:34 PM:

> 
> Greetings! 
> 
> Our network and AD structure have been in the process of being 
> "moved", "renamed", "merged", "whatevered" for the past few weeks. 
> All the workstations and laptops are now a part of the new domain. 
> Next come all servers... 
> 
> Question - We have AD-integrated DNS through our DCs.  What becomes 
> of the DNS functions if the DC is demoted to a member server?  Does 
> it become a "secondary" DNS server getting its information from a 
> remaining DC?  Become a static DNS server (manual entries, etc but 
> functioning on the information it had at the time of demo)?  Cease 
> any and all DNS services (but can be made a secondary DNS server 
> later if desired)?  One chooses what becomes of DNS at the time of demo? 

> 
> Any good links to a site that does not require registering for a 
blog/forum? 
> 
> Thanks!
> -- 
> Richard D. McClary 
> Systems Administrator, Information Technology Group 
> ASPCA® 
> 
> 
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~