Hello,

I install a new win 2008 r2 enterprise server into a windows 2003 server AD.  I upgrade the windows 2003 AD to windows 2008 r2 AD.  However, I found that the win 2003 DC down and the win 2008 cannot open ADCU any  more.  Its shows

Now I open AD Administrative center on win 2008 and can all domain  users on the AD was now win2008 server local

This let me know the AD upgrade to win2008 r2 not success, otherwise the win 2008 can open ADCU.

Now the win 2003 cannot be recovered and the AD is down.  May I have suggestion how to restore the AD for all service.

Best regards, WK

Hi

 So did you transfer the fsmo roles on new 2008 r2?Check this run "netdom query fsmo".If not you have to seize all fsmo roles to new 2008 r2

check for seize fsmo roles

https://support.microsoft.com/en-us/kb/255504

https://www.petri.com/seizing_fsmo_roles

After you seize all fsmo roles on server 2008 r2,you will do metadata cleanup,for completetly remove 2003 from domain

Metadata cleanup

https://technet.microsoft.com/en-us/library/cc816907(v=ws.10).aspx?f=255&mspperror=-2147217396

And also check the services,AD DS,DNS is runing.

I would recommned that you just complete the migration,But want to restore 2003,and If you have a succesfull backup you could restore 2003 AD from this backup

Check this restore AD

https://technet.microsoft.com/en-us/library/cc758435(v=ws.10).aspx

• Edited by Burak Uur 15 hours 52 minutes ago

Hello Burak,

I seized all fsmo roles to win 2008 before but I did not demote the win 2003 from AD on the last steps of upgrading. I run "netdom query fsmo" on win 2008 now.  It shows

"     C:\Users\wilsonlo>netdom query fsmo
The specified domain either does not exist or could not be contacted.

The command failed to complete successfully.  "    because the win2003 is down now.

Any way to use current win2008 local user and group to restore AD  user accounts because  I can find all domain user and group on the win2008 local now even I cannot open ADCU?

The win2003 was down due to hardware failure and I have its system state backup.  It may not be recovered.

Best regards, Wilson

 

Hi

 That's the issue,all fsmo roles are still on this unavaible 2003,you have to sieze this fsmo roles on to 2008 r2 DC.

When you could successfully seize fsmo roles on server 2008 r2,you should do metadata cleanup for demote this unavaible dc from domain.

Please check the link's for seize fsmo roles and metadata cleanup on my previous message.

• Proposed as answer by Ethan HuaMicrosoft contingent staff, Moderator 20 minutes ago

Also check DNS settings on Server 2008 r2,DNS server points to itself as primary DNS server.After then run "ipconfig /flushdns" and "ipconfig /registerdns",finaly restart netlogon service.

I upgrade the windows 2003 AD to windows 2008 r2 AD.  However, I found that the win 2003 DC down and the win 2008 cannot open ADCU any  more.  Its shows

How exactly did you make this? What kind of error here when you open ADCU?
 
The screenshots in your last reply indicate that your FSMO roles don't get transferred correctly. Since your Windows Server 2003 is down, agree with <Burak> that try to seize all fsmo roles, then try again.
 

Regards,

Eth