Month: May 2013

Move the FSMO Roles from SBS Server

At this point the SBS Server holds all five FSMO. In order to demote the SBS Server, these roles must first be moved to another domain controller. They can be safely moved to any Domain Controller in the domain.

 
To transfer the FSMO roles, follow this steps:

1. Click Start, click Administrative Tools and then click Active Directory Users and Computers.
2.  If you are logged on SBS Server, right-click Active Directory Users and Computers and then click Change Domain Controller. If you are logged on the destination DC, you can go directly to step 4.
3. In the Enter the name of another domain controller box, type the name of the server you want to transfer the roles to and then click OK.
4. In the console tree, right-click Active Directory Users and Computers, point to All Tasks and then click Operations Master.
5. Click the PDC tab and then click Change.
6. Click OK to confirm that you want to transfer the role.
7. Repeat steps 5 and 6 on the Infrastructure and RID tabs.
8. Click Close to exit the dialog.
9. Click Start, click Administrative Tools and then click Active Directory Domains and Trusts.
10. In the console tree, right-click Active Domains and Trusts, point to All Tasks and then click Operations Master.
11. To change the Domain naming operations master click Change and then click Close.
12. Next, open an elevated command prompt and type the following command: Regsvr32 %systemroot%system32schmmgmt.dll
13. Click on Start, click on Run and type MMC.
14. In the MMC window click on File and then click on Add/Remove Snap-in…
15. In the Add or Remove Snap-ins dialog click on Active Directory Schema, click Add and then click OK.
16. Click Change Active Directory Domain Controller…
17. Click to choose another DC in your forest and then click OK. Click OK to dismiss the warning dialog.
18. Right-click on the Active Directory Schema and click Operations Master…
19. Click the Change button. Click the Yes button when prompted to change the Operations Master.
20. At the command prompt, type netdom query fsmo to verify that all the roles are now held by domain controllers, other than the SBS Server.

 

Uninstalling the Exchange Server
 

Now is time to uninstall the Exchange server from the SBS Server. Be careful, if you have installed ForeFront for Exchange Server. In this case you must first uninstall this product:
 

1. Logon to SBS Server as Administrator.
2. Click Start, click Run, then type Services.msc.
3. Stop all the Exchange services.
4. Click Start, click Control Panel, then select Programs and Features.
5. Found Microsoft ForeFront Security for Exchange Server (if it is installed). Click Uninstall.
6. Uninstall Microsoft ForeFront for Exchange Server.
7. Restart the SBS Server.

The second thing that you must do is to create the registry key that enables you to remove the Exchange Server management tools:

1. Click Start, click Run and then, in the Open text box, type regedit.
2. Browse to HKEY_LOCAL_MACHINESoftwareMicrosoftExchangeV8.0AdminTools.
3. From the Edit menu, click New and then click String Value.
4. Type Type the name ConfiguredVersion.
5. DoubleClick ConfiguredVersion and then, in the Value Data field, type the same value as the data value for the UnpackedVersion registry key, which is located in HKEY_LOCAL_MACHINESoftwareMicrosoftExchangeV8.0AdminTools.
6. Close the registry Editor.

 

It could happen that you will also have to change manually the responsible server for OAB generation, remove public folders and change the source server for send connectors. This are the steps to control (change) this settings:

1. To Change the source server for Send connectors:
   1. Click Start and then click Exchange Management Console.
   2. In tree view, on the left side, expand Organization Configuration, Hub Transport.
   3. In the result pane click Send Connector, then right-click on Windows SBS Internet Send connector and select Properties.
   4. Go to Source server tab and click Add…
   5. Select new Exchage server and click OK.
   6. Remove the SBS server from the list.
   7. Repeat the procedure for all the send connectors.
2. Move the Offline Book generation to a new Exchange server (in case, that you don’t want to use public folders anymore, you must delete and create a new OAB).
   1. Open the Exchange Management Console.
   2. Expand Microsoft Exchange, expand Organization Configuration and then select Mailbox.
   3. In the results pane, click the Offline Address Book tab.
   4. On the Offline Address Book tab, select the offline address book you want to move. In the action pane, click Move.
   5. After the Move Offline Address Book Wizard appears, select the new server to host the offline address book generation by using the Browse button and then click Move.
   6. To close the wizard click Finish.
3. Remove or move public folders. This steps are very clear explained on Microsoft Technet:
   1. For moving: http://technet.microsoft.com/en-us/library/bb331970(EXCHG.80).aspx
   2. For removing: http://technet.microsoft.com/en-us/library/bb201664(EXCHG.140).aspx

After this step, it is time to uninstall the Exchange server:

1. Open Control Panel and then, in Programs, click Uninstall a program.
2. On the Uninstall or change a program page, select Microsoft Exchange Server 2007 and then click Uninstall.
3. In the Exchange Server 2007 Setup Wizard, on the Exchange Maintenance Mode page, click Next.
4. On the Server Role Selection page, clear all of the server role check boxes and clear the Management Tools check box. Then click Next.
5. On the Readiness Checks page, after the checks are finished, click Uninstall.
6. On the Completion page, click Finish.

 
Demote the SBS Server and remove it from the domain

Log on to the Management Server as an administrator and follow this steps to remove the machine from the domain:

1. Click Start, click Run and then type dcpromo.
2. Click Next on the welcome screen.
3. Click OK to dismiss the global catalog server warning.
4. Click Next on the delete the domain screen.  Do not select the delete the domain because this server is the last domain controller in the domain check box.
5. On the Remove DNS Delegation page, verify that the Delete the DNS delegations pointing to this server check box is selected and then click Next.
6. When prompted, type a password for the local administrator account. Click Next.
7. Click Next on the review screen to begin the demotion.
8. Click the Reboot on completion check box.

 

After the machine has finished rebooting, remove it from the domain following this steps:

1. Log on to the SBS Server as an administrator.
2. Click on Start, right-click on Computer, then click on Properties.
3. Click on Change settings.
4. Select the Computer Name tab and click Change…
5. Select Workgroup under Member of and enter a unique value for the workgroup name.
6. Click OK and reboot when prompted.

Log on to the DC Server and verify that the DNS A record and computer account for the SBS Server have been successfully removed.

Migrate from SBS 2008 or 2011 (Part 5).

Transferring DHCP role to the new domain controller

The DHCP database and settings can be backed up to allow the replacement server to quickly take over the DHCP server role and service clients again. If DHCP is not running on the SBS server, you may skip this step. To back up the database, follow this steps:

1. Open DHCP Management MMC by selecting Start, then All Programs, Administrative Tools, DHCP.
2. In the console tree, select the SBS server.
3. On the Action menu, click Backup.
4. In the Browse For Folder dialog box select the folder where you want to store the backup DHCP database and then click OK.

To allow the new server to act as a DHCP server, you must install the DHCP Server role and then configure the server’s settings. This steps assume that you have backed up your SBS Server settings and will restore them to the new server. If you are hosting DHCP on another server, you may skip this step.

Install the DHCP Server Role

You can use this procedure to install and configure the DHCP Server role, using the Add Roles Wizard. Membership in Domain Admins or equivalent is the minimum required to perform this procedure.
 

To install DHCP

1. Do one of the following:
   1. In Initial Configuration Tasks, in Customize This Server, click Add roles. The Add Roles Wizard opens.
   2. Click Start and then click Server Manager. In the left pane of Server Manager click Roles and in the details pane, in Roles Summary, click Add Roles. The Add Roles Wizard opens.
2. In Before You Begin page click Next.
3. In Select Server Roles, in Roles, select DHCP Server and then click Next.
4. In DHCP Server click Next.
5. In Select Network Connection Bindings, in Network Connections, select the IP addresses that are connected to the subnets for which you want to provide DHCP service and then click Next.
6. In Specify IPv4 DNS Server Settings, in Parent Domain, verify that the name of the DNS domain that clients use for name resolution is correct. For example, if your domain is named example.com, verify that the DNS domain name is example.com.
7. In Preferred DNS server IPv4 address, type the IPv4 address of your preferred DNS server, and then click Validate. In Alternate DNS server IPv4 address, type the IPv4 address of your alternate DNS server (if any) and then click Validate.
8. Click Next. In Specify IPv4 WINS Server Settings select one of the following:
   1.  If you do not have WINS servers on your network, select WINS is not required for applications on this network.
   2. If one or more WINS servers are deployed on your network, select WINS is required for applications on this network. In Preferred WINS server IP address, type the IPv4 address of your preferred WINS server. In Alternate WINS server IP Address, type the IPv4 address of your alternate WINS server (if any) and then click Next.
9. In Add or Edit DHCP Scopes click Add. The Add Scope dialog box opens.
10. In the Add Scope dialog box type values for all required items and in Subnet Type select either Wired or Wireless, depending on the IP address lease duration that you prefer and then do one of the following:
    1. To automatically activate the scope immediately after DHCP installation is complete, click Activate this scope. If there are computers or devices on the network that have static IP addresses, do not activate the scope until you have created an exclusion range. The exclusion range prevents the DHCP server from leasing IP addresses that are already in use by a statically configured device.
    2. To manually activate the scope later, use the DHCP Microsoft Management Console (MMC).
11. Click OK. This returns you to the Add or Edit DHCP Scopes page. If your network has multiple subnets that are serviced by this DHCP server, add scopes for each subnet using steps 9 and 10. Click Next.
12. In Configure DHCPv6 Stateless Mode, select whether you want to configure the DHCP server for DHCPv6 stateless operation and then click Next.
13. In Authorize DHCP Server, do one of the following:
    1. Select Use current credentials to authorize the DHCP server in Active Directory Domain Services (AD DS) using the credentials supplied for the current session.
    2. To specify alternate credentials for authorization, select Use alternate credentials. Click Specify and then type the credentials to use for DHCP server authorization.
    3. Select Skip authorization of this DHCP server in AD DS if you don’t want to autorise the server at this point and then click Next.
14. In Confirm Installation Selections, review your selections, and then click Install.
15. In Installation Results, review your installation results, and then click Close.

 

Restore from Backup

1. Open DHCP Management MMC by selecting Start, then All Programs, Administrative Tools, DHCP.
2. In the console tree, click the applicable DHCP server.
3. On the Action menu click Restore.
4. In the Browse For Folder dialog box select the folder that contains the backup DHCP database and then click OK.

 

Migrate from SBS 2008 or 2011 (Part 4)

Migrate from SBS 2008 or 2011 (Part 6).