Migration to new DC with new subnet

Question

Migration to new DC with new subnet

Yasrosa 20

Hello,

we have a Domain, which have 2 Domaincontroller (WS2012R2) and only 1 Subnet.

we would like to migrate the Domaincontroller to a new installed Server (WS2022) but the new Server is in another Subnet.

the old DCs (WS2012R2) will be taken out of the Service.

How can we do that? How should we change the Network Konfiguration auf the Clients?

Akshay-MSFT 17,956 Reputation points Microsoft Employee Moderator

2023-05-10T08:45:21.9333333+00:00

@Yasrosa

Hope you got a chance to review the action plan suggested below. Please do let me know if you have any queries in the comments section. If you don't have any further queries and the suggestion works as per your business need. Please "Accept the answer(Yes)" and "share you feedback ". This will help us and others in the community as well.

Thanks,

Akshay Kaushik

2 answers

Your answer

Akshay-MSFT 17,956 Reputation points Microsoft Employee Moderator

2023-05-10T08:45:21.9333333+00:00

@Yasrosa

Hope you got a chance to review the action plan suggested below. Please do let me know if you have any queries in the comments section. If you don't have any further queries and the suggestion works as per your business need. Please "Accept the answer(Yes)" and "share you feedback ". This will help us and others in the community as well.

Thanks,

Akshay Kaushik

Answer 1

Hello,

This may requires some more context but high view will be :

Promote the new server as DC
Transfer FSMO Roles
Demote Old DC

Firewall and NSG rules should be changed prior to promote the new server as DC to give network acess for all users and services like described in the documentation below :

https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/config-firewall-for-ad-domains-and-trusts#more-information:~:text=636%20and%203269.-,More%20information,-Note

Remember to test your backup and plan for a rollback in case of any issues during the migration process.

If this answer helped, please mark it as accepted to help others find this topic.

Regards

Deleted

This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.

Answer 2

Anonymous

Just make sure the route allows the required ports.

https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/config-firewall-for-ad-domains-and-trusts#windows-server-2008-and-later-versions

The two prerequisites to introducing the first 2019 or 2022 domain controller are that domain functional level needs to be 2008 or higher and older sysvol FRS replication needs to have been migrated to DFSR

I'd use dcdiag / repadmin tools to verify health correcting all errors found before starting any operations. Then stand up the new 2019 or 2022, patch it fully, license it, join existing domain, add active directory domain services, promote it also making it a GC (recommended), transfer FSMO roles over (optional), transfer pdc emulator role (optional), use dcdiag / repadmin tools to again verify health, when all is good you can decommission / demote old one.

--please don't forget to upvote and Accept as answer if the reply is helpful--

Deleted

This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Deleted

This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Anonymous

2023-05-03T12:55:35.7866667+00:00

Just checking if there's any progress or updates?

--please don't forget to upvote and Accept as answer if the reply is helpful--

Share via

Migration to new DC with new subnet

2 answers

Your answer