How to Rename an Active Directory domain in 6 simple steps

Posted on by

iforgotHave you read that it is terrible name your domain with extension .local ??? Pls read “Choosing an Internal Top Level Domain Name” in Linkografia !

In this post I’ll show how to rename an active directory domain name in only 6 steps.

Situation
Single ADC: Windows 2008
Domain name: gptucci.local
New domain name: ad.infpressap.it

Check Application compatibility
Some applications that are incompatible with domain rename. I.e. Exchange, SharePoint Portal Server or Windows PKI infrastructure. Pls check all the application in use before go further.

Check Active Directory domain and forest functional levels
The domain and forest functional levels must be at least Windows 2003 to be able to change the domain controller name.
a) Open Active Directory User & Computers
b) Right-click the root domain, then select Raise Domain Functional Level
c) Select Windows 2003 and confirm
d) Open Active Directory Domains and Trusts
e) Right-click the root domain, then select Raise Forest Functional Level
f) Select Windows 2003 and confirm
g) Check System logs: all works fine after this change ??
h) Turn off all workstations related to the domain

Active Directory health check
On the domain controller, click Start, click Run, dcdiag and then press enter. Before going any further it is necessary to check the result of dcdiag, and solve all issues identified.

DNS
On the DNS Manager, you must create the new DNS zone ad.infpressap.it.
a) Right Click Forward Lookup Zone, and click New Zone
b) Click Primary Zone and click Next.
c) On the Active Directory Zone Replication Scope, select To all DNS servers running on domain controllers in this domain:gptucci.local and then click Next.
d) In the Zone Name, type your new Domain Name: ad.infpressap.it
e) On the Dynamic Update, click Allow only secure dynamic updates (recommended for Active Directory), and the click Next.
f) Click finish

Rename
a) Open Command Prompt with administrative rivileges
b) Type the next command.

rendom /list

This command will generate a file named Domainlist.xml in your current directory that the current forest configuration.
c) Open Domainlist.xml in your favorite editor and change DNSname and NetBiosName node.

<!--?xml version ="1.0"?-->
<?xml version ="1.0"?>
<Forest>
<Domain>
<!-- PartitionType:Application -->
<Guid>93767cc3-9433-4d61-8d35-5b2f3c303b88</Guid>
<DNSname>ForestDnsZones.gptucci.local</DNSname>
<NetBiosName></NetBiosName>
<DcName></DcName>
</Domain>
<Domain>
<!-- PartitionType:Application -->
<Guid>83316e12-a8ad-4e0b-8315-3c4431b9e18d</Guid>
<DNSname>DomainDnsZones.gptucci.local</DNSname>
<NetBiosName></NetBiosName>
<DcName></DcName>
</Domain>
<Domain>
<!-- ForestRoot -->
<Guid>1053a53b-22f3-4c4a-aa8b-469da64292b3</Guid>
<DNSname>gptucci.local</DNSname>
<NetBiosName>GPTUCCI</NetBiosName>
<DcName></DcName>
</Domain>
</Forest>

After

<?xml version ="1.0"?>
<Forest>
<Domain>
<!-- PartitionType:Application -->
<Guid>93767cc3-9433-4d61-8d35-5b2f3c303b88</Guid>
<DNSname>ForestDnsZones.ad.infpressap.it</DNSname>
<NetBiosName></NetBiosName>
<DcName></DcName>
</Domain>
<Domain>
<!-- PartitionType:Application -->
<Guid>83316e12-a8ad-4e0b-8315-3c4431b9e18d</Guid>
<DNSname>DomainDnsZones.ad.infpressap.it</DNSname>
<NetBiosName></NetBiosName>
<DcName></DcName>
</Domain>
<Domain>
<!-- ForestRoot -->
<Guid>1053a53b-22f3-4c4a-aa8b-469da64292b3</Guid>
<DNSname>ad.infpressap.it</DNSname>
<NetBiosName>INFPRESSAP</NetBiosName>
<DcName></DcName>
</Domain>
</Forest>

d) Type the next commands

rendom /upload

Att.: This is command to upload the rename instructions in the file Domainlist.xml.

rendom /prepare

This to verify the readiness of the ADC to carry out the rename instructions.

rendom /execute

This command perfoms the final actions.
e) Restart the ADC, and login using the new Domain name (ad.infpressap.it\Administrator)
f) Open comman prompt again and type the next commands

gpfixup /olddns:gptucci.local /newdns:ad.infpressap.it
gpfixup /oldnb:gptucci /newnb:infpressap

Last but not least
a) Open command prompt again and type the next final commands.

rendom /clean
rendom /end

b) Restart all the workstations and check that all works fine. For some workstations you have to reboot the device twice, or you have to login using old domain and join to the domain.
d) Check if you find all workstations in Active Directory Users & Computer and DNS.
e) Delete the old domain DNS zone (gptucci.local)

Linkografia
Choosing an Internal Top Level Domain Name
How Domain Rename Works

Email, RSS Follow