Active Directory Upgrade - cisco.com · PDF fileActive Directory Upgrade •...

Click here to load reader

  • date post

    15-Sep-2018
  • Category

    Documents

  • view

    214
  • download

    0

Embed Size (px)

Transcript of Active Directory Upgrade - cisco.com · PDF fileActive Directory Upgrade •...

  • Active Directory Upgrade

    Migrate Active Directory and DNS, page 1

    Upgrade Active Directory and DNS, page 5

    Migrate Active Directory and DNSMigrate the existing Active Directory from Windows Server 2008 R2 to a new Windows Server 2012 R2.

    Preparing existing forest via the adprep command

    Procedure

    Step 1 Insert the Windows Server 2012 DVD into the DVD drive of the Windows Server 2008 R2 AD DS andnavigate to the adprep directory.

    Step 2 Run the command adprep /forestprep.Step 3 Run the command adprep /domainprep.

    Install Active Directory on New Domain Controller

    Procedure

    Step 1 Select Start > Run, enter dcpromo and click OK.Step 2 When the Active Directory Wizard opens, click Next.Step 3 Under Domain Controller Type, select Additional Domain Controller for an Existing Domain.Step 4 On the Network Credentials screen, enter the domain administrator username and password.

    The Additional Domain Controller screen should already be filled in with the FQDN (Fully Qualified DomainName).

    Cisco Unified Contact Center Enterprise Installation and Upgrade Guide, Release 11.0(1) 1

  • Step 5 Accept the database and log location defaults.Step 6 Accept the shared System Volume defaults.Step 7 Enter the same Restore Mode Admin password that you used for the root domain controller.Step 8 Check Summary Settings. Active Directory is not configured through NETLOGON.Step 9 Reboot after the Active Directory installation is complete.Step 10 Repeat these steps for a new alternate domain controller if necessary.

    Configure Active Directory sites on new domain controller

    Procedure

    Move the new domain controller to the correct sites.

    Move Flexible Single Master Operation roles

    Procedure

    Step 1 On the Active Directory Domain Controller that is hosting the role to be moved, open AD Users andComputers, and connect to the domain controller from which the role needs to be moved.

    Step 2 Right-click under the domain name and select Operations Masters.Step 3 Under the required FSMO role tab, change the Operations Master to the designated domain controller.

    Transfer Schema Master role

    Procedure

    Step 1 Open Command Prompt in administrative mode and type regsvr32 schmmgmt.dll.Step 2 Open Microsoft Management Console,mmc.Step 3 Click File then click Add/Remove Snap-in... .Step 4 From the left side, under Available Snap-ins, click on Active Directory Schema, then click Add and then

    click OK.Step 5 Right click Active Directory Schema, then click Change Active Directory Domain Controller....Step 6 From the listed Domain Controllers, click on the domain controller that you want to be the schema master

    role holder and then click OK .

    Cisco Unified Contact Center Enterprise Installation and Upgrade Guide, Release 11.0(1)2

    Active Directory UpgradeConfigure Active Directory sites on new domain controller

  • From the listed Domain Controllers, click on the domain controller that you want to be the schema masterrole holder and then click on OK .

    Step 7 In the console tree, right clickActive Directory Schema [DomainController.DomainName], and then clickOperations Master... .

    Step 8 On theChange SchemaMaster page, the current schemamaster role holder will be displayed and the targetedschema holder as well. Change, the schemamaster holder to the newly addedDomain Controller, clickChange.

    Step 9 Click Yes to confirm the role transfer.Step 10 The role will be transferred and a confirmation message will be displayed. Click OK.Step 11 Then click Close.

    Redefine the time sourceBecause the Primary Domain Controller Emulator is moving to another Domain Controller, the time sourcemust be redefined as either that server or an external time source.

    Procedure

    Step 1 On the server that is currently running the Primary Domain Controller Emulator, run the following command:Net time /setsntp:

    Step 2 To synchronize a member server to the time source, see the procedure available on the Microsoft Website.

    Assign Global Catalogs

    Procedure

    Step 1 Open AD Sites and Services.Step 2 Connect to the Domain Controller that is designated as the Global Catalog.Step 3 Right-click NTDS Settings, click Properties, check Global Catalog, and click OK.Step 4 Repeat this procedure on all servers.

    Cisco Unified Contact Center Enterprise Installation and Upgrade Guide, Release 11.0(1) 3

    Active Directory UpgradeRedefine the time source

    http://support.microsoft.com/kb/816042

  • Configure member servers to point to new DNS servers

    Procedure

    Step 1 In the Network Settings, open the visible network connection.Step 2 Open TCP/IP properties.Step 3 Enter the new primary and alternate DNS servers.Step 4 Run ipconfig /flushdns from a command prompt.Step 5 Verify name resolution by pinging the Unified CCE servers by name.Step 6 Ping the Unified CCE domain by name.

    Demote current domain controllers to member servers and uninstall DNS

    Before demoting domain controllers, make sure that the replication process from the old domain controllersto the new domain controllers is complete. Check the directory service with the event viewer to monitorthe status. In a large domain, this process could take 30 minutes or more to complete.

    Important

    Procedure

    Step 1 Select Start > Run, enter dcpromo. When the Active Directory Wizard opens, click Next.Step 2 A dialog box indicating that this server is already a Domain Controller appears. Click Next to demote it to a

    member server.Step 3 You are warned and prompted as to whether or not this is the last server in the domain. Leave the box unchecked

    and click Next.The subsequent screens show the progress of the domain controller removal.

    Step 4 Click Next to finish.Step 5 Repeat this procedure for the alternate domain controller.Step 6 Select Start > Settings > Control Panel > Add/Remove Programs.Step 7 Select Add/Remove Windows Components > Networking Services.Step 8 Click Details.Step 9 Uncheck the DNS check box, then click OK.Step 10 Click Next.

    Cisco Unified Contact Center Enterprise Installation and Upgrade Guide, Release 11.0(1)4

    Active Directory UpgradeConfigure member servers to point to new DNS servers

  • Upgrade Active Directory and DNSUpgrade the existing Active Directory in Windows server 2008 R2 SP1 to Windows server 2012 R2 .

    In-place upgrade of domain controllerWindows Server 2003 toWindows Server 2012 R2 is not supported,Instead we can migrate the existing Windows Server 2003 to new Windows Server 2012 R2, see thecorresponding Microsoft documentation.

    Note

    Upgrade Domain Controller

    Procedure

    Step 1 Insert the Windows Server 2012 DVD into the DVD drive of the Windows Server 2008 R2 AD DS andnavigate to the adprep directory.

    Step 2 Run adprep /forestprep.Step 3 Run adprep /domainprep.Step 4 Upgrade the Operating System to Windows Server 2012 R2 Standard from the DVD drive.

    Assign Global Catalog

    Procedure

    Step 1 Open AD Sites and Services.Step 2 Open Server objects, and connect to the Domain Controller that is designated as the Global Catalog.Step 3 Right-click NTDS Settings, and select Properties.Step 4 Check the Global Catalog checkbox, and click OK.

    Cisco Unified Contact Center Enterprise Installation and Upgrade Guide, Release 11.0(1) 5

    Active Directory UpgradeUpgrade Active Directory and DNS

  • Cisco Unified Contact Center Enterprise Installation and Upgrade Guide, Release 11.0(1)6

    Active Directory UpgradeAssign Global Catalog

    Active Directory UpgradeMigrate Active Directory and DNSPreparing existing forest via the adprep commandInstall Active Directory on New Domain ControllerConfigure Active Directory sites on new domain controllerMove Flexible Single Master Operation rolesTransfer Schema Master roleRedefine the time sourceAssign Global CatalogsConfigure member servers to point to new DNS serversDemote current domain controllers to member servers and uninstall DNS

    Upgrade Active Directory and DNSUpgrade Domain ControllerAssign Global Catalog