Primary Domain Controller

[Calvin]

Hello,

Do Windows Server 2003 still have the concept of Primary Domain Controller
(PDC) and Backup Domain Controller (BDC)? If I shutoff the PDC, do I need to
promote the BDC to a PDC?

I would like to reinstall my PDC, but not sure what to do to let the BDC
pickup all the roles of the PDC.

Thanks

 

[Meinolf Weber]

Re: Primary Domain Controller

Hello Calvin,

This concept is gone since windows 2000.

All DC's are the same, difference are the 5 FSMO roles which can be hold
by any available DC, ofcourse in some order. So in your case you have to
move all 5 FSMO roles, make the second DC Global catalog server and if not
done also DNS server. If needed make it also DHCP server.
Also you have not just to reinstall the machine, BEFORE you have to demote
the old DC to remove it correctly from AD, otherwise you will get problems.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm

> Hello,
>
> Do Windows Server 2003 still have the concept of Primary Domain
> Controller (PDC) and Backup Domain Controller (BDC)? If I shutoff the
> PDC, do I need to promote the BDC to a PDC?
>
> I would like to reinstall my PDC, but not sure what to do to let the
> BDC pickup all the roles of the PDC.
>
> Thanks
>

 

[Herb Martin]

Re: Primary Domain Controller


"Calvin" <e6v1@yahoo.com> wrote in message
news:uO9h8gPoIHA.4308@TK2MSFTNGP06.phx.gbl...
> Hello,
>
> Do Windows Server 2003 still have the concept of Primary Domain Controller
> (PDC) and Backup Domain Controller (BDC)?

No. All DCs (running 2000+) are co-equal for most domain purposes and
can change most things in the domain. AD is a multi-mastered accounts
database.

There are five single mastered "roles" however for specific things that are
just to dangerous or inconvient to "multi-master".

One of these Single Master Roles (aka FSMO) is the "PDC Emulator"
which is there for supporting NT4-BDCs, older clients, and some other
jobs which are not directly related to the NT concept of a PDC (browse
master, time master, password change mastering).

NT4 BDCs are supported in certain domain modes (mixed or interrim),
but these cannot be running 2000+.

> If I shutoff the PDC, do I need to promote the BDC to a PDC?

Generally that would be impossible (to do directly) since a BDC is running
NT by definition. It would first need to be upgraded to Win2000+.

You SHOULD HOWEVER insure that your Single Master Roles, GCs,
DNS Servers, and WINS Servers (if you use) them remain operational.

Usually the five Single Master Roles can be down for a reasonable period
of time without anyone (even admins) noticing -- as long as there are other
DCs/GCs/DNS/WINS to do name resolution and authentication.

The PDC Emulator will likely be the role that causes the most obvious
inconvenience IF you use Browsing -- since it is Domain Master Brower.
Without this, browsing across domains and across subnets will deterriate
within about one hour.

Time mastering etc on the PDC Emulator might/will eventually be noticed.

RID master loss will be noticed when "enough" users accounts (etc) are
added to run out of RIDs on some DC.

Schema Master loss will only be an issue when changing the schema,
which is usually on done on the first DC Operating System upgrade
(e.g., 2000-->2003 DCs) or when adding the FIRST application server
which uses a changed (extended) Schema (e.g., Exchange Server).

> I would like to reinstall my PDC, but not sure what to do to let the BDC
> pickup all the roles of the PDC.

The real issues are moving the roles which MAY move automatically if
you do are proper DC promo to remove the departing DC -- but I prefer
to move the roles manually (NTDSUtil does this best) to ensure it gets
done AND that I know where the roles end up.

DNS and the GC(s) are usually where people mess this up (and perhaps
WINS Server).