Just one comment on that. Isn't the /gpprep switch unnecessary if you are using the latest version of ADPREP, that should be included with any newer distribution of W2K3 SP2 with or without R2? That's my take on it from this KB:
http://support.microsoft.com/kb/324392 I thought you only needed to run the /gpprep switch if you had a pre sp1 version of the OS, or had already run it with a pre SP1 version of ADPREP. Chris Bodnar, MCSE Sr. Systems Engineer Distributed Systems Service Delivery - Intel Services Guardian Life Insurance Company of America Email: [email protected] Phone: 610-807-6459 Fax: 610-807-6003 _____ From: [email protected] [mailto:[email protected]] Sent: Tuesday, July 07, 2009 12:30 PM To: NT System Admin Issues Subject: RE: Win2003 DC on Win2000 domain So 1. Install a 2003 box 2. Run adprep /forestprep (update schema) 3. Run adprep /domainprep (update domain NC) 4. Run adprep /domainprep /gpprep (update group policy ACLs) 5. Dcpromo the 2003 box in 6. Mark it as a global catalog 7. Transfer FSMO roles 8. Repoint any clients using the old box as DNS, WINS, whatever 9. Dcpromo the 2000 box down Thanks, Brian Desmond [email protected] c - 312.731.3132 Active Directory, 4th Ed - <http://www.briandesmond.com/ad4/> http://www.briandesmond.com/ad4/ Microsoft MVP - <https://mvp.support.microsoft.com/profile/Brian> https://mvp.support.microsoft.com/profile/Brian From: Erik Goldoff [mailto:[email protected]] Sent: Tuesday, July 07, 2009 8:54 AM To: NT System Admin Issues Subject: Win2003 DC on Win2000 domain Client wants to bring in two new servers ( forklift new hardware ) into their current Windows 2000 domain, but wants to upgrade Active Directory to 2003 ... two new servers will ultimately replace two existing 2000 servers which are File/Print/DC and Exchange/DC My normally cautious method would be to bring in a temp 2000 box, promote it to DC in the 2000 domain, move FSMOs to it, then demote existing DCs... upgrade OS on temp box to 2003, then promote new 2003 servers to DC, moving FSMOs to one of them. Question : Is there an unreasonable risk to promoting a 2003 server to DC on the 2000 domain with 2000 DCs in place when there is no plan ( or license ) to upgrade the OS on the 2000 boxes to 2003 ? Erik Goldoff IT Consultant Systems, Networks, & Security ----------------------------------------- This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
