With the End of life day looming for Server 2003 (July 14th 2015) for those of you haven’t been living under a rock…. It’s all the rage to migrate away from your trusty 2003 AD environment to a more modern 2008 R2 or 2012 R2 environment.
In fact, it’s all I’ve really been working on for the last 7-8 months, so what better topic to cover for my next round of blogs than an AD 2003 to 2012 R2 migration.
As with all of my blogs I try to incorporate those tools you will need in a real world environment, not simply giving you information on how to transfer the FSMO roles and say there we go 2012 migration complete…We all know in a real world it’s not that simple.
I’m going to look at covering off all the pre-work you need to do before even considering deploying the first 2012 R2 server.
With that said here’s a brief look at the topics I’ll be covering. Obviously it’s quite a lengthy series so will be split in to various parts.
In terms of the environment I will be using for this migration, it is a single forest/domain/server setup as shown in the diagram below
There are three users account. Two are standard users account and one is an administrative account called “adtasks”.
All tasks will be carried out using the adtasks account and NOT the built in administrative account! I will show you the required permissions needed as we go through.
To start with adtasks is simply a member of domain users and domain admins
We have one group in the environment which user Michael Riccioni is a member of. This is simply used to secure permissions to a shared folder located on the domain controller.
When logged in as Michael Riccioni
When logged in as Mike Riccioni
There is also a very simple GPO linked to the domain which removes a couple of items from the start menu
Finally, aside from the usual DNS entries, I’ve also added two manual entries called NTP and Router.
That pretty much covers the environment I will be using, and from the above topics we are covering off you can see we have a fair amount to cover so on-wards with the first phase which is checking the AD health and AD upgrade pre-requisites, which should be coming very shortly…