General Question on upgrading from 2003 to 2008
neathneathneath
Member Posts: 438
Suppose you are running a server 2003 environment with two DC's - single domain setup.
You want to start upgrading your network to server 2008.
You run adprep / forestprep and adprep / domainprep on the appropriate servers.
You add an additional DC to the network - server 2008 - join existing domain.
Running the system at server 2003 domain functional level, can you still have SOME of the new features of 2008 such as restartable AD, Group Policy preferences such as drive mapping via group policy??
I realise that you cannot get these until you are able to run at 2008 domain functional level:
Fine-grained password policies – Allows multiple password polices to be applied to different users in the same domain.
Read-Only Domain Controllers – Allows implementation of domain controllers that only host read-only copy of NTDS database.
Advanced Encryption Services – (AES 128 and 256) support for the Kerberos protocol.
Granular auditing – Allows history of object changes in Active Directory.
Distributed File System Replication (DFSR) – Allows SYSVOL to replicate using DFSR instead of older File Replication Service (FRS). It provides more robust and detailed replication of SYSVOL contents.
Last Interactive Logon Information – Displays the time of the last successful interactive logon for a user, from what workstation, and the number of failed logon attempts since the last logon.
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
Look forward to any replies as we are shortly upgrading our network.
You want to start upgrading your network to server 2008.
You run adprep / forestprep and adprep / domainprep on the appropriate servers.
You add an additional DC to the network - server 2008 - join existing domain.
Running the system at server 2003 domain functional level, can you still have SOME of the new features of 2008 such as restartable AD, Group Policy preferences such as drive mapping via group policy??
I realise that you cannot get these until you are able to run at 2008 domain functional level:
Fine-grained password policies – Allows multiple password polices to be applied to different users in the same domain.
Read-Only Domain Controllers – Allows implementation of domain controllers that only host read-only copy of NTDS database.
Advanced Encryption Services – (AES 128 and 256) support for the Kerberos protocol.
Granular auditing – Allows history of object changes in Active Directory.
Distributed File System Replication (DFSR) – Allows SYSVOL to replicate using DFSR instead of older File Replication Service (FRS). It provides more robust and detailed replication of SYSVOL contents.
Last Interactive Logon Information – Displays the time of the last successful interactive logon for a user, from what workstation, and the number of failed logon attempts since the last logon.
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
Look forward to any replies as we are shortly upgrading our network.
Comments
-
crrussell3
Member Posts: 561
RODCs can be implemented in a 2003 DFL, you just need to run the adprep /rodcprep in order for the 2003 dcs to understand the rodc objects.MCTS: Windows Vista, Configuration
MCTS: Windows WS08 Active Directory, Configuration -
neathneathneath
Member Posts: 438
Running the system at server 2003 domain functional level, can you still have SOME of the new features of 2008 such as restartable AD, Group Policy preferences such as drive mapping via group policy??
Anybody please? -
Claymoore
Member Posts: 1,637
Once you deploy a 2008 domain controller, you can use group policy preferences. You will need to use a Vista or Windows 7 workstation to edit the GP Preferences, and you will need to deploy the Client Side Extensions to XP or 2003 machines for them to process the policies.
Here is an overview of the domain and forest functional level features:
Understanding AD DS Functional Levels
Restartable AD is a server 2008 feature that is independent of the functional level:
AD DS: Restartable Active Directory Domain Services
If you are upgrading your existing domain controllers to 2008 or will be introducing 2008 into a 2003 domain, you will need to migrate from FRS replication to DFS:
SYSVOL Replication Migration Guide: FRS to DFS Replication
The Storage Team at Microsoft - File Cabinet Blog : SYSVOL Migration Series: Part 1 ? Introduction to the SYSVOL migration process -
neathneathneath
Member Posts: 438
Once you deploy a 2008 domain controller, you can use group policy preferences. You will need to use a Vista or Windows 7 workstation to edit the GP Preferences, and you will need to deploy the Client Side Extensions to XP or 2003 machines for them to process the policies.
Here is an overview of the domain and forest functional level features:
Understanding AD DS Functional Levels
Restartable AD is a server 2008 feature that is independent of the functional level:
AD DS: Restartable Active Directory Domain Services
If you are upgrading your existing domain controllers to 2008 or will be introducing 2008 into a 2003 domain, you will need to migrate from FRS replication to DFS:
SYSVOL Replication Migration Guide: FRS to DFS Replication
The Storage Team at Microsoft - File Cabinet Blog : SYSVOL Migration Series: Part 1 ? Introduction to the SYSVOL migration process
That's the sort of reply I was hoping for, many thanks