upgrading 2003 DCs to 2012 R2

This is fortunately not an issue we are running into but many organizations are. Do not upgrade your DCs directly from 2003 to 2012 R2 or introduce a 2012 R2 DC to an environment with 2003 DCs – you will run into some unpleasant issues! Please refer to this technet blog post from the Directory Services team at Microsoft.

Luckily for us, we upgraded our DCs from 2003 to 2008 R2 a while ago and recently to 2012 (non-R2). Please note, if you upgrade your 2003 DCs to 2008 R2 or 2012 and then immediately to 2012 R2 you will still have issues. It is important that once you have upgraded all of your DCs off of 2003 and to either 2008 R2 or 2012 that you wait a 2+ months before upgrading to 2012 R2. Once you have no more 2003 DCs present you will need to let all domain machines go through two password resets/updates before moving on to 2012 R2 for DCs. Typically the machine password is reset every 30 days…

Again, please refer to this article for details and be sure to read the comments as the authors were kind enough to answer many questions that were sparked.


Leave a Reply

Your email address will not be published. Required fields are marked *