counter customizable free hit

Acronis True Image 9.1 - Complete File and System Disk Imaging

About

The Lazyadmin is Rodney Buike, a MVP for Windows Server - Directory Services and a Windows 2000/2003 MCSE.











Search

MSN Search

Adsense

Disclaimer

This posting is provided "AS IS" with no warranties, and confers no rights.

Search EventID

Event ID:

Affiliates

He is everywhere! Check out these great sites for more from TheLazyadmin and other great writers!







Support TLA

Did you find a tip useful? Help keep TLA alive and free by shopping at one of these great sites or making a donation!

TheLazyadmin.com is hosted at:



TheLazyadmin shops at:



Syndicate This Blog

Categories


All categories

Copyright

Copyright Rodney Buike and TheLazyadmin.com 2004-2006

Microsoft product screen shot(s) reprinted with permission from Microsoft Corporation.
< Windows 2003 Functional Levels - Forest | Introduction to Remote Access Quarantine >

Tuesday, December 13. 2005

Windows 2003 Functional Levels - Domain

Windows 2003 expands on the mixed mode/native mode functionality of Windows 2000 with functional levels. Windows 2000 included the ability to run NT4 BDCs in a Windows 2000 AD domain if it was in mixed mode. Windows 2003 includes this and expands on it to include forests. There are 3 forest functional levels and 4 domain functional levels.



The 4 domain functional levels are:

Windows 2000 Mixed

This is the default mode for new 2003 domains as well as those upgraded from Windows 2000 (unless the 2000 domain was in Native mode). This mode allows for Windows NT4 BDCs, and Windows 2000 and 2003 DCs. This mode is not able to take advantage of any of the new 2003 domain-wide features with the exception of universal distribution groups and distribution group nesting.

Windows 2000 Native

This is the default if you upgraded from a Windows 2000 domain that was in Native mode. This mode allows for Windows 2000 and 2003 domain controllers This mode can take advantage of a few more 2003 domain wide features including Universal Security groups, Security group nesting and group conversion. Group conversion allows you to convert a security group to a distribution group and back. This mode also allows for SID History which allows the migration of SID from one domain to another.

Windows 2003 Interim

This is the default mode if you are upgrading from NT4 domain to a Windows 2003 AD domain. It allows you to run NT4 BDCs along side your 2003 DCs. This mode has the same feature limitations as Windows 2000 Mixed mode.

Windows Server 2003

This mode requires all DCs to be running Windows Server 2003. You can still operate NT4 and 2000 member servers. This mode allows full use of all the new domain-wide features including Update logon timestamp and a password on the InetOrgPerson object. Along with those features, and all others already mentioned, you also have the ability to rename a domain controller.

To raise the domain functional level you need to ensure that all DCs are running Windows Server 2003 and that you have no plans to add NT4 BDCs or 2000 DCs to the domain. Raising the functional level is a one shot deal and you cannot go back. Once you have verified this, open up the Active Directory Domains and Trusts MMC and drill down to the domain. Right-click the domain name and select Raise Domain Functional Level.



Verify the domain name and the current functional level. Select the Windows Server 2003 level and click Raise.



The change will be made and replicated to all other DCs in the domain. You can verify the change was successful with the Support Tool LDP.EXE. From a command prompt run LDP.exe. Click Connection and then Connect, and click OK leaving all info as default. In the right pane look for the following section, I have highlighted it



1> domainFunctionality: 0 = Windows 2000 Mixed
1> domainFunctionality: 1 = Windows 2000 Native
1> domainFunctionality: 2 = Windows 2003 Interim
1> domainFunctionality: 3 = Windows 2003

For more information see:
Windows 2003 Functional Levels - Forest


Posted by R. Buike in Directory Services at 06:36 | Comments (3) | Trackback (1)

Trackbacks
Trackback specific URI for this entry

Switching to Exchange native mode
Jan mailed me:  she had her finger on the button, about to make the switch from mixed mode to native...
Weblog: Eileen Brown's WebLog
Tracked: Feb 20, 13:01

Comments
Display comments as (Linear | Threaded)

I am currently studying ms 2273b Managing and maintaining a 2003 server and have found your website helpful and will use it again in the future
thanks,
kel
#1 kel on 2006-01-04 21:08 (Reply)
I am just trying to improve my skill-set, and get a deeper look into domains/ forests/ AD...Your posts are really helpful.
Thanks,
Keep up the good work!!!
Kartik
#2 Kartik M. Kharbanda on 2006-05-09 20:12 (Reply)
I worked as a technical Consultant for Wipro which in turn was working for Microsoft and serving all the US customers. I was waiting for ex 2007 to arrive but it never did while i worked there. Now after leaving the company its very hard to get the correct information. But with your website its really really easy to figure out what has changed. I am so happy to read your information. I am a patron for life.
#3 Areef Ismail Rakhangi on 2006-08-05 08:14 (Reply)

Add Comment

Enclosing asterisks marks text as bold (*word*), underscore are made via _word_.

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA
 
Submitted comments will be subject to moderation before being displayed.