yes and it is recommended that the roles should be seized and transferred to a healthy DC
They way to transfer is as follows
1. On any domain controller, click Start, click Run, type Ntdsutil in the Open box, and then click OK.
C:\WINDOWS>ntdsutil
ntdsutil:
1. Type roles, and then press ENTER.
ntdsutil: roles
fsmo maintenance:
Note: To see a list of available commands at any of the prompts in the Ntdsutil tool, type ?, and then press ENTER.
1. Type connections, and then press ENTER.
fsmo maintenance: connections
server connections:
1. Type connect to server <servername>, where <servername> is the name of the server you want to use, and then press ENTER.
server connections: connect to server server100
Binding to server100 ...
Connected to server100 using credentials of locally logged on user.
server connections:
1. At the server connections: prompt, type q, and then press ENTER again.
server connections: q
fsmo maintenance:
1. Type seize <role>, where <role> is the role you want to seize. For example, to seize the RID Master role, you would type seize rid master:
Options are:
Seize domain naming master
Seize infrastructure master
Seize PDC
Seize RID master
Seize schema master
1. You will receive a warning window asking if you want to perform the seize. Click on Yes.
fsmo maintenance: Seize infrastructure master
Attempting safe transfer of infrastructure FSMO before seizure.
ldap_modify_sW error 0x34(52 (Unavailable).
Ldap extended error message is 000020AF: SvcErr: DSID-03210300, problem 5002 (UNAVAILABLE)
, data 1722
Win32 error returned is 0x20af(The requested FSMO operation failed. The current FSMO holde
r could not be contacted.)
)
Depending on the error code this may indicate a connection,
ldap, or role transfer error.
Transfer of infrastructure FSMO failed, proceeding with seizure ...
Server "server100" knows about 5 roles
Schema - CN=NTDS Settings,CN=SERVER200,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=dpetri,DC=net
Domain - CN=NTDS Settings,CN=SERVER100,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=dpetri,DC=net
PDC - CN=NTDS Settings,CN=SERVER100,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=dpetri,DC=net
RID - CN=NTDS Settings,CN=SERVER200,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=dpetri,DC=net
Infrastructure - CN=NTDS Settings,CN=SERVER100,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=dpetri,DC=net
fsmo maintenance:
Note: All five roles need to be in the forest. If the first domain controller is out of the forest then seize all roles. Determine which roles are to be on which remaining domain controllers so that all five roles are not on only one server.
1. Repeat steps 6 and 7 until you've seized all the required FSMO roles.
2. After you seize or transfer the roles, type q, and then press ENTER until you quit the Ntdsutil tool.
Note: Do not put the Infrastructure Master (IM) role on the same domain controller as the Global Catalog server. If the Infrastructure Master runs on a GC server it will stop updating object information because it does not contain any references to objects that it does not hold. This is because a GC server holds a partial replica of every object in the forest
Type your answer here... You may want to seize the role. Page 91 in 2008 Server, Role seizure
You wont be able to access the network resources/login properly to your account.
In network first server has been install is call domain controller server.. If you wan t to check server is domain controller or, backup domain controller. you can check Run -> cmd -> net accounts If computer role will show PRIMARY it means your domain is PRIYMARY domain controller, if it will be show BACKUP, means you can assume my domain installed in my network is ADC (Additional Domain Controller) Hope you will get benefit.. Regards, Ranjeet karak New Delhi
In network first server has been install is call domain controller server.. If you wan t to check server is domain controller or, backup domain controller. you can check Run -> cmd -> net accounts If computer role will show PRIMARY it means your domain is PRIYMARY domain controller, if it will be show BACKUP, means you can assume my domain installed in my network is ADC (Additional Domain Controller) Hope you will get benefit.. Regards, Ranjeet karak New Delhi
The Domain Controller (Server)
Outbound replication is when a domain controller transmits replication information to other domain controllers on a network andInbound replication is when a domain controller receives updates to the Active Directory database from other domain controllers on the network.
True.
True
Domain Controller it is Microsoft Windows Server 2000/2003 directory server that provides access controls over users, accounts, groups, computers and other network resources. Domain Controller authenticate users and maintains directory services and the security database for a domain. without ADS it is not possible.
Global Catalog, Normal Domain Controller, and Configuration Domain Controller
A domain controller should have a static IP address so that it does not require DHCP(which is conveniently often ran on the domain controller) to come up onto the network. With a dynamically assigned IP address it would be possible for it to receive a different IP address when it requests its IP initially or when the lease expires. If this were to happen, all hosts on the network would essentially stop working because they would continue to try to access the domain controller via the old IP. If the domain controller fails to obtain an IP address via DHCP no users or computers would be able to access it, hence possibly causing your network to cease functioning.
Domain controller is the physical object.
ITs command to promote ur server 2003 to domain controller