step-by-step_ active directory migration from windows server 2003 to windows server 2012 r2 -...

8/11/2019 Step-By-Step_ Active Directory Migration From Windows Server 2003 to Windows Server 2012 R2 - Canadian IT Pr

1/5

20/8/2014 Step-By-Step: Active Directory Migration from Windows Server 2003 to Windows Server 2012 R2 - Canadian IT Professionals - Site Home - TechNet

http://blogs.technet.com/b/canitpro/archive/2014/04/02/step-by-step-active-directory-migration-from-windows-server-2003-to-windows-server-2012.aspx 1/5

Step-By-Step: Active DirectoryMigration from Windows Server

2003 to Windows Server 2012R26Anthony Bartolo 1 Apr 2014 10:04 PM

Withthe end of support for Windows XP, Office 2003 and Exchange 2003 now upon us, April 8th 2014 to be exact,

attention now turns to Windows Server or specifically Windows Server 2003. End of support for Windows Server

2003 is currently slated for July 14th 2015 and a great many organizations still utilize said offering as the

cornerstone to their infrastructure to this day. One question to keep in mind though is that with the move on the

client end to Windows 8.1, will Windows Server 2003 or 2003 R2 be robust enough to properly enable employees

and provide secure access to the plethora of devices in a world now dominated by BYOD? Alternatively an IT

administrator might ponder on the further enablement invoked via the deployment of Windows Server 2012 R2

should it be deployed in said organization. Lets explore this possibility via the cornerstone of access enablementoffered via Windows Server by investigating the evolution of the Active Directory offering now found in Windows

Server 2012 R2

As you may know, Active Directory provides authentication and authorization mechanisms as well as framework

from within other related services that can be deployed. As an LDAP compliant database, it commonly contains the

most used objects such as users, computers, and groups organized into organizational units or OUs by any

number of logical or business needs. Group Policy Objects or GPOs are then linked to OUs to centralize the settings

for various users or computers across an organization. Part of the quandaries that IT professionals face is taking

advantage of nuances provided in Active Directory in newer server offerings such as Windows Server 2012. As

detailed in Pierre's post, "Windows Server 2012 Active Directory Whats New?", Active Directory provided in

Windows Server 2012 R2 is provided impactful enhancements. Yet some organizations choose not to migrate dueto reasons of uncertainty.

This S tep-By-Step has been created to assist with that uncertainty and provide guidance for IT professionals

looking to migrate their organizations Active Directory offering from Windows Server 2003 to 2012 R2.
http://blogs.technet.com/cfs-file.ashx/__key/communityserver-blogs-components-weblogfiles/00-00-00-48-12/WindowsServer2012R2.pnghttp://blogs.technet.com/cfs-file.ashx/__key/communityserver-blogs-components-weblogfiles/00-00-00-48-12/WindowsServer2012R2.pnghttp://social.technet.microsoft.com/profile/Anthony%20Bartolohttp://blogs.technet.com/b/canitpro/archive/2014/04/02/step-by-step-active-directory-migration-from-windows-server-2003-to-windows-server-2012.aspx#commentshttp://blogs.technet.com/b/canitpro/archive/2013/05/21/windows-server-2012-active-directory-what-s-new.aspxhttp://blogs.technet.com/cfs-file.ashx/__key/communityserver-blogs-components-weblogfiles/00-00-00-48-12/WindowsServer2012R2.pnghttp://social.technet.microsoft.com/profile/Anthony%20Bartolohttp://blogs.technet.com/b/canitpro/archive/2014/04/02/step-by-step-active-directory-migration-from-windows-server-2003-to-windows-server-2012.aspx#comments


2/5



Prerequisites

1. Download Windows Server 2012 R2and create your lab environment. (Instructions can be found here)

2. Complete Step-By-Step: Adding a Windows Server 2012 R2 Domain Controller to an Existing Windows

Server 2003 network

Transferring the Flexible Single Master Operations (FSMO) Role

1. Open theActive Directory Users and Computersconsole on your new Windows Server 2012

R2 computer.

2. Right clickyour domain and select Operations Mastersin the sub menu.

3. In the Operations Masters window, ensure the RID tab is selected.

4. Selectthe Changebutton.

5. SelectYeswhen asked about transferring the operations master role.

6. Once the operations master role has successfully transferred, clickOKto continue.7. Ensure the Operations Master box now shows your new 2012 R2 Windows Server.

8. Repeat steps 4 to 6 for the PDCand Infrastructuretabs.

9. Once completed, clickCloseto close the Operations Masterswindow.

10. Close theActive Directory Users and Computerswindow.

Changing the Active Directory Domain Controller

1. Open theActive Directory Domains and Trustsconsole on your new Windows Server 2012

R2 computer.

2. Right clickyour domain and select Change Active Directory Domain Controller... in the sub menu.3. In the Change Directory Serverwindow, selectThis Domain Controller or AD LDS instance.

4. Select your new 2012 R2 Windows Server.
http://blogs.technet.com/cfs-file.ashx/__key/communityserver-blogs-components-weblogfiles/00-00-00-48-12/7183.MigAD2003to2012a.pnghttp://blogs.technet.com/b/canitpro/archive/2013/05/05/step-by-step-adding-a-windows-server-2012-domain-controller-to-an-existing-windows-2003-network.aspxhttp://blogs.technet.com/b/canitpro/archive/2013/04/15/step-by-step-building-your-lab-on-windows-server-2012.aspxhttp://aka.ms/WS2012R2CAN


3/5



5. ClickOKto continue.

6. Back in theActive Directory Domains and Trustswindow, hover over theActive Directory Domains

and Trusts found in the folder tree on the left hand side to ensure the server now reflects your new 2012

R2 Windows server.

7. Right clickActive Directory Domains and Trusts found in the folder tree and select Operations

Manager... in the sub menu.

8. In the Operations Masterwindow, clickChangeto transfer the domain naming master role to the 2012

R2 Windows Server.

9. When asked if you are sure you wish to transfer the operations master role to a different

computer, clickYes.

10. Once the operations master is successfully transferred, clickOKto continue.

11. ClickCloseto close the Operations Master window.

12. Close theActive Directory Domains and Trustsconsole.

Changing the Schema Master

1. Open a command prompt in administration view on your new Windows Server 2012 R2 computer.

2. On the command prompt window, enterregsvr32 schmmgmt.dlland hit enter.

3. Once completed successfully, clickOKto close the RegSvr32window.

4. Close the command prompt.
http://blogs.technet.com/cfs-file.ashx/__key/communityserver-blogs-components-weblogfiles/00-00-00-48-12/1830.MigAD2003to2012c.png


4/5



Add the Active Directory Schema Console from MMC

1. Open a MMC console on your new Windows Server 2012 R2 computer.

2. Click File>Add/Remove Snap-in...

3. In theAdd or Remove Snap-inswindow, selectActive Directory Schemaand clicktheAdd >button.


Change the Schema Master

1. In the same MMC console, right clickActive Directory Schemaand selectChange Active Directory

Domain Controller...in the sub menu.

2. In the Change Directory Serverwindow, selectThis Domain Controller or AD LDS instance.

3. Select your new 2012 R2 Windows Server.


5. A warning will appear stating that the Active Directory Schema snap-in in not connected. ClickOKto

continue.

6. Hover over theActive Directory Schema folder in the folder tree to ensure the new Windows Server

2012 R2 computer is shown.

7. Nowright clickActive Directory Schemaand selectOperations Master... in the sub menu.

8. In the Change Schema Masterwindow, clickChangeto transfer the schema master role to the 2012 R2

Windows Server.

9. When asked if you are sure you wish to transfer the schema master role to a different computer, clickYes.

10. Once the schema master is successfully transferred, clickOKto continue.

11. ClickCloseto close the Change Schema Masterwindow.

12. In the MMC,clickFile> Exit.13. When asked to save the console, clickNo.

Once completed, open the Active Directory Users and Computers console to verify that the Active Directory

database successfully replicated to your new Windows Server 2012 R2 computer. Be aware that the database
http://blogs.technet.com/cfs-file.ashx/__key/communityserver-blogs-components-weblogfiles/00-00-00-48-12/2313.MigAD2003to2012d.png


5/5



replication may take some time depending on the number of objects in Active Directory.

Removing the 2003 Windows Server from the Global Catalog Server

1. OpenActive Directory Sites and Serviceson your new Windows Server 2012 R2 computer.

2. Expandthe Sitesfolder, then the Default-First-Site-Namefolder, then the Serversfolder.

3. Expand both listed servers. One should be your new 2012 Windows Server and one should be you 2003

Windows Server.

4. Right clickNTDS Settingsfound under your old 2003 Windows Server.

5. In the sub menu, selectProperties.

6. Under the General Tab, unselectGlobal Catalogand then clicktheApplybutton.


8. Close theActive Directory Sites and Services window.

9. Verify that your new 2012 R2 Windows Server is running the FSMO role by opening the command prompt

in Administrative view and running the following command: Netdom query fsmo.

10. In the Network and Sharing Center, be sure to change the Preferred DNS server to match the Alternate

DNS server, then delete the IP address listed under the Alternate DNS server should it currently be pointed

to the old 2003 Windows Server.

All that's left is to demote the old 2003 Windows server by first adding the new 2012 R2 Windows Server as the

Primary DNS, followed by running DCPROMO to demote the old 2003 Windows server. Be sure to also visit

Microsoft Virtual Academy created to further enable IT professionals in regards task such as migrating to Windows

Server 2012 R2.
http://www.microsoftvirtualacademy.com/training-courses/migrating-to-windows-server-2012-training

step-by-step_ active directory migration from windows server 2003 to windows server 2012 r2 -...

Documents