Great content. Not only do these videos prepare you for a certification, the whys and the whens of certain real world scenarios are explained. Just want to say thank you very much
I am Preparing for MCSA 70-410. But its contains few topic in AD but they ask so many things. then i found this it helping me lot to understand the concepts of AD DS. Thank you for Nice work you have done for Community.
Windows supports one Domain Controller per server. If you run DCPromo on a server that has been promoted already, DCPromo will ask if you want to demote that server. The only way you can transfer results is if you have to Domain Controllers running on two separate servers.
I would install some servers in some virtual machines. You probably only need two virtual servers but more would be better if you have the RAM. This would allow you to do things like move roles from server to server etc. The choice of virtual solution does not really matter. You can use one that require a whole computer or a solution that can run on your existing operating system.
When a user changes their password it is replicated to the PDC emulator regardless of what is configured in the site link and the schedules. If you attempt to login to anther site and the password change has not been replicated to that site, that DC will check with the PDC emulator which should have the update to date password. This is how Active Directory gets around replication delays due to changed passwords. This is a good question. In the Server 8 course will make sure we include this info
Personally I would not bring them back online. I do recall reading this information about being able to bring the PDC emulator and Infrastructure master back online, but after reading multiple sources of information we were not sure what the result of that action would be unless we tried it. Unfortunately even with Microsoft articles they can be vague and some cases wrong. If you really need to you can try it, I would personally demote it offline and than put it online and promote it.
It is not recommend to being a DC back online after you seize a role. Some roles you can get away with it if you had to, but RID I don't believe is one of them. If you don't have any GC left, make one of the other DC's a GC. GC contains a partial replicator of the domain so this should work.
So what is best solution to keep following you with all of these practical exercises? Do i have to install Win server on another VM and have to connect it remotely? or if you could simplify the best method so we could continue hands on practice all of these steps.. Regards
hello, tks for the this great resource. I´ve a question, if i have two sites. The pdc emulator ( or some other role for this matter ) is in one dc in one site. A user’s changes his password in a dc in another site, does this means that the two dc´s will only contact each other in replication times defined in the site link ? tks again, great stuff
Thank you a lot for your good jobs to help us. I have one question please: How can I make the trouble to my server system to be offline? till fix it by myself as you showed us from the above video "only for test i like do it" thanks.
Thank you. Very informative Small question : When I attempted seize operation on a windows server 2012 , it didn't cause any problems when I put back the old DC (Original FSMO roles holder) back on the network . It actually automatically recognized that it is no longer the holder of the seized FSMO roles. Did Microsoft improve the seizing mechanism or something ? or am I missing something here ?
Thank you for this informative video, i post a question right before this video and got into this. I finally have some answer and will work with my way for my DC.
First, let me say that I am finding your videos to be invaluable in my studies for the 70-640 exam. I have a question about returning master roles to the previous DC after it has been recovered. The course literature that I have states that a DC that previously held the RID, Schema, and Naming Master roles cannot be brought back online, but that those holding the PDC Emulator and Infrastructure Master role can be. Have you found this not to be true in practice?
You can delete it or you can reset the computer account and then add the server back to the domain. Personally I would delete the computer account rather then reseting it.
Hi, How can i install another Domain controller in AD... I had followed you along and installed one successfully but when i run dcpromo again it tends to remove the current DC and forest. Is it possible to have more than one domain controller on one machine? I wanted to try the transfering server roles but can not due to this problem... Any help will be highly appreciated.
@itfreetraining, i have dc1 is a PDC and dc2 is a additional DC my issue is dc1 was fail and cannot to start, so, can i use this tut to seize role and make dc2 to be a primary dc? thanks for your help
Hi , Video is Great , I have a single AD site with two domain controllers(PDC and BDC) in local network, If PDC crashes What should to do? will the BDC act as PDC? else what is the procedure to act BDC as PDC?
What if the server that went down was critical to your organization, was the only GC in the domain and you managed to get it back up after you sieze the RID master role on another DC. Can you remove the RID master role on the new DC and bring the old one back online? Or will this create trouble with the RID pools..?
We use PowerPoint to create the initial presentation. Video capture is done with Camtasia. The PowerPoint graphics are then recreated in After Effects and timed to the audio. The video editing is done in Premire Pro. All adobe versions are CC.
The thing I don't understand is; in the case a DC with a Role goes down for good, wouldn't it be easier to just have Windows Server make a new copy of the role instead of going through all this trouble?
+Badmunky64 Well, when it comes to seizing the roles and the reason behind it is because the server had one of the FSMO roles which needs to be reclaimed and reassigned which is why it's seized. If it was just a RODC, then you could just recreate it no problem.
can i just "delete" a 2nd active directory from the primary domain, because it won't demote, it shows errors (dcpromo) operation failed ..specified domain does not exist
#itfreetraining What happen if MDC down when we a have Secondary DC in Place ? Will Secondary DC take the responsibility ? in a environment haven't move any roles to SDC. can you explain windows 2008 and 2012 R2 Thank you
Mohan De Zoysa I am not sure what you mean by MDC. If a Domain Controller were to fail, depending on which roles were on the DC would determine what would happen. See below. Domain Naming Master: Not able to add domains in the forest Schema Master: Can't change the schema RID Master: Not an issue short term. When RID's run's out will not be able to create new objects in the domain. PDC Emulator: Should get this up as soon as possible. Due to having last answer on password related problems. Infrastructure master: Makes sure that replication problems between domains works correctly otherwise phantoms may occur. It up to you to decide if you can work with these problems and wait for the DC to become available all the role needs to be seized.
i am sorry, i cannot rate your video 4.99/5 but only 5/5 Request: Can i request this trainer's photo or video as you are with us from many years, which i started learning about AD from 2000 servers on wards. Raj Navalgund India-Bangalore
Thanks very much and thanks for watching.
Great content. Not only do these videos prepare you for a certification, the whys and the whens of certain real world scenarios are explained. Just want to say thank you very much
You're most welcome, thanks for watching!
I am Preparing for MCSA 70-410. But its contains few topic in AD but they ask so many things. then i found this it helping me lot to understand the concepts of AD DS. Thank you for Nice work you have done for Community.
Windows supports one Domain Controller per server. If you run DCPromo on a server that has been promoted already, DCPromo will ask if you want to demote that server. The only way you can transfer results is if you have to Domain Controllers running on two separate servers.
by far the BEST tutorial ever.. extremely clear, thorough and accurate! Keep up the good work!
+DigitalNinjaZ com Thanks, we're happy to hear you enjoyed our video
I would install some servers in some virtual machines. You probably only need two virtual servers but more would be better if you have the RAM. This would allow you to do things like move roles from server to server etc. The choice of virtual solution does not really matter. You can use one that require a whole computer or a solution that can run on your existing operating system.
When a user changes their password it is replicated to the PDC emulator regardless of what is configured in the site link and the schedules. If you attempt to login to anther site and the password change has not been replicated to that site, that DC will check with the PDC emulator which should have the update to date password. This is how Active Directory gets around replication delays due to changed passwords. This is a good question. In the Server 8 course will make sure we include this info
These videos are fantastic.
I learn more from these than I do from Pluralsight videos.
Thanks a lot.
We're glad that you found them to be better! We thank you for your great feedback!
Personally I would not bring them back online. I do recall reading this information about being able to bring the PDC emulator and Infrastructure master back online, but after reading multiple sources of information we were not sure what the result of that action would be unless we tried it. Unfortunately even with Microsoft articles they can be vague and some cases wrong. If you really need to you can try it, I would personally demote it offline and than put it online and promote it.
Not at this stage. I doubt that we will be doing any videos on Exchange any time soon.
It is not recommend to being a DC back online after you seize a role. Some roles you can get away with it if you had to, but RID I don't believe is one of them. If you don't have any GC left, make one of the other DC's a GC. GC contains a partial replicator of the domain so this should work.
So what is best solution to keep following you with all of these practical exercises? Do i have to install Win server on another VM and have to connect it remotely? or if you could simplify the best method so we could continue hands on practice all of these steps.. Regards
@nyskaknochen Glad you liked the video. Thanks for the feedback.
No worries - Glad to be of help!
already working in server8 course !? can´t wait... tks for the feedback.
hello, tks for the this great resource. I´ve a question, if i have two sites. The pdc emulator ( or some other role for this matter ) is in one dc in one site. A user’s changes his password in a dc in another site, does this means that the two dc´s will only contact each other in replication times defined in the site link ?
tks again, great stuff
Thank you a lot for your good jobs to help us.
I have one question please:
How can I make the trouble to my server system to be offline? till fix it by myself as you showed us from the above video "only for test i like do it" thanks.
Thank you. Very informative
Small question : When I attempted seize operation on a windows server 2012 , it didn't cause any problems when I put back the old DC (Original FSMO roles holder) back on the network . It actually automatically recognized that it is no longer the holder of the seized FSMO roles. Did Microsoft improve the seizing mechanism or something ? or am I missing something here ?
Thank you for this informative video, i post a question right before this video and got into this. I finally have some answer and will work with my way for my DC.
First, let me say that I am finding your videos to be invaluable in my studies for the 70-640 exam.
I have a question about returning master roles to the previous DC after it has been recovered. The course literature that I have states that a DC that previously held the RID, Schema, and Naming Master roles cannot be brought back online, but that those holding the PDC Emulator and Infrastructure Master role can be. Have you found this not to be true in practice?
You can delete it or you can reset the computer account and then add the server back to the domain. Personally I would delete the computer account rather then reseting it.
Hi, How can i install another Domain controller in AD... I had followed you along and installed one successfully but when i run dcpromo again it tends to remove the current DC and forest. Is it possible to have more than one domain controller on one machine?
I wanted to try the transfering server roles but can not due to this problem... Any help will be highly appreciated.
@itfreetraining, i have dc1 is a PDC and dc2 is a additional DC
my issue is dc1 was fail and cannot to start, so, can i use this tut to seize role and make dc2 to be a primary dc?
thanks for your help
This you can use this method in this case. However, make sure that you do not bring DC1 back online later on if you are able to fix it.
Hi , Video is Great , I have a single AD site with two domain controllers(PDC and BDC) in local network, If PDC crashes What should to do? will the BDC act as PDC? else what is the procedure to act BDC as PDC?
If the PDC is down, no other server will assume that role. You need to get the PDC back up and running again or seize the role to another server.
itfreetraining Thanks for your reply.
What if the server that went down was critical to your organization, was the only GC in the domain and you managed to get it back up after you sieze the RID master role on another DC. Can you remove the RID master role on the new DC and bring the old one back online? Or will this create trouble with the RID pools..?
this video saved the day, thanks!
+kookie kookie You're most welcome. We're so glad you found the video to be useful!
This is a very good video, Thanks to ITFREETRAINING, is there any thrainign on MS exchange server 2010 or 2013.
Thank you for providing the training it helped me very much. May Allah bless you.
Thank you, we're glad you found the video helpful
hi , what software you used to make this tutorial ??
We use PowerPoint to create the initial presentation. Video capture is done with Camtasia. The PowerPoint graphics are then recreated in After Effects and timed to the audio. The video editing is done in Premire Pro. All adobe versions are CC.
H , good topic, can i ask a question
Sure, what is your question.
Very good examples and explanation thank you so much
You are welcome!
DC3 is down and RID master is seized on DC1...and DC3 Is removed from domain...then I have one doubt, where the rid master has been transfered???
This video helped a lot here with my problem. Thank U!
Thanks.
Thanks Bro! for making clear understanding about fsmo roles and transfer/seizure procedure..
+Ravi P You're most welcome. We're glad you found the videos useful!
Thank you very much you return my server to life
+Ahmed Shawaly You're most welcome. Thanks for watching!
is most of this still applicable to Active Directory 2016?
There are definitely transferable ideas and methodologies, sure.
The thing I don't understand is; in the case a DC with a Role goes down for good, wouldn't it be easier to just have Windows Server make a new copy of the role instead of going through all this trouble?
+Badmunky64 Well, when it comes to seizing the roles and the reason behind it is because the server had one of the FSMO roles which needs to be reclaimed and reassigned which is why it's seized. If it was just a RODC, then you could just recreate it no problem.
can i just "delete" a 2nd active directory from the primary domain, because it won't demote, it shows errors (dcpromo) operation failed ..specified domain does not exist
philip, liam, this another great video!!!!!!!!!!!!!!!!!!!!!!1
+LEF ISOS Thanks! We're glad you enjoyed it.
You are awesome,
God bless you
Thanks a lot
Really Appreciated Sir ..
You're most welcome!
@itfreetraining, thank you!
+Billy Wilson Arante You are welcome. Thanks for being a loyal viewer.
REALLY INFORMATIVE
+Nithin Kg Thanks! We're glad you found it informative.
Simply Awesome
+shawnmanu
Thank you very much
better than cbt nuggets!!!
zoltron30 Thank you!
And free its free free so that's free nice.
No but seriously its pretty damn helpfull
Kindly create the tutorials for migrating active directory from 2k8 to 2k16
Currently we are working on CompTIA A+. After than we will consider other topics.
Excelent! Thanks Bro! Muchas Gracias!
You're welcome!
Thanks save my life bro
#itfreetraining What happen if MDC down when we a have Secondary DC in Place ?
Will Secondary DC take the responsibility ? in a environment haven't move any roles to SDC. can you explain windows 2008 and 2012 R2 Thank you
Mohan De Zoysa We're always happy to hear our videos were helpful
Mohan De Zoysa I am not sure what you mean by MDC. If a Domain Controller were to fail, depending on which roles were on the DC would determine what would happen. See below.
Domain Naming Master: Not able to add domains in the forest
Schema Master: Can't change the schema
RID Master: Not an issue short term. When RID's run's out will not be able to create new objects in the domain.
PDC Emulator: Should get this up as soon as possible. Due to having last answer on password related problems.
Infrastructure master: Makes sure that replication problems between domains works correctly otherwise phantoms may occur.
It up to you to decide if you can work with these problems and wait for the DC to become available all the role needs to be seized.
thank you! great video!!
Thanks for watching.
Thanks Sir...!!
Thanks for watching.
superbe video.
Thanks for watching.
Excellent VDO, Thanks. Got a new Sub :)
It's great
Thank you.
i am sorry, i cannot rate your video 4.99/5 but only 5/5
Request:
Can i request this trainer's photo or video as you are with us from many years, which i started learning about AD from 2000 servers on wards.
Raj Navalgund
India-Bangalore
Thanks, glad you like the video. Currently we don't have any videos with any of the trainers. That may change in the future.