migrando ambientes windows nt 4.0 para o windows server 2003 rodrigo vallim microsoft brasil

Download Migrando ambientes Windows NT 4.0 para o Windows Server 2003 Rodrigo Vallim Microsoft Brasil

Post on 17-Apr-2015

105 views

Category:

Documents

2 download

Embed Size (px)

TRANSCRIPT

  • Slide 1
  • Slide 2
  • Migrando ambientes Windows NT 4.0 para o Windows Server 2003 Rodrigo Vallim Microsoft Brasil
  • Slide 3
  • O Que Veremos: O que h de novo no Windows Server 2003 O que h de novo no Windows Server 2003 Introduo aos Functional Levels Introduo aos Functional Levels Terminologia de Migrao Terminologia de Migrao Cenrios de Migrao Suportados Cenrios de Migrao Suportados Quando e Como Fazer Upgrade Quando e Como Fazer Upgrade Quando e Como Reestruturar Quando e Como Reestruturar Viso Geral do Processo de Migrao Viso Geral do Processo de Migrao
  • Slide 4
  • Conhecimentos Necessrios Essa seo assume que voc possui um conhecimento bsico de: Essa seo assume que voc possui um conhecimento bsico de: Windows NT 4.0 directory services Windows NT 4.0 directory services Active Directory Active Directory
  • Slide 5
  • O que h de novo no Windows Server 2003 A Topologia de Replicao agora suporta milhares de Sites A Topologia de Replicao agora suporta milhares de Sites Mudana de nome de Domnios Mudana de nome de Domnios Implementao de Sites e Logging on sem Local Global Catalog Servers Implementao de Sites e Logging on sem Local Global Catalog Servers Group Policy Management Console (GPMC) Group Policy Management Console (GPMC) Relacionamentos de Confiana Kerberos transitivos entre florestas Relacionamentos de Confiana Kerberos transitivos entre florestas
  • Slide 6
  • Como Usamos Isso? Muitas caractersticas trabalham com existentes DCs de NT 4.0 e Windows 2000. Muitas caractersticas trabalham com existentes DCs de NT 4.0 e Windows 2000. Algumas grandes novidades no trabalham com Windows NT 4.0 ou Windows 2000. Algumas grandes novidades no trabalham com Windows NT 4.0 ou Windows 2000. Essas novas caractersticas requerem uma soluo de versionamento para evitar problemas de interoperabilidade. Essas novas caractersticas requerem uma soluo de versionamento para evitar problemas de interoperabilidade. Soluo: forest e domain functional levels. Soluo: forest e domain functional levels.
  • Slide 7
  • Functional Levels Windows Server 2003 Active Directory Versioning Scheme Active Directory Versioning Scheme Habilita as novas caractersticas. Habilita as novas caractersticas. Operao sem volta. Operao sem volta. Modo nativo do Windows 2000 ++. Modo nativo do Windows 2000 ++. Domain Functional Levels Domain Functional Levels Forest Functional Levels Forest Functional Levels Definido por Atributos de Domnio e recipientes de configurao Definido por Atributos de Domnio e recipientes de configurao
  • Slide 8
  • Domnios de Modo Misto Windows NT DCs so permitidos Windows NT DCs so permitidos Similar ao Windows 2000 Mixed Mode Similar ao Windows 2000 Mixed Mode DCs Windows NT 4.0 mantm as caractersticas de domnio. DCs Windows NT 4.0 mantm as caractersticas de domnio. Sem universal ou nested groups. Sem universal ou nested groups. Sem sIDHistory. Sem sIDHistory. Windows 2000 Domain Controllers Windows 2000 Domain Controllers Permitido, mas no requirido. Permitido, mas no requirido. Windows Server 2003 pode realizar upgrade de Windows NT 4.0 e Windows 2000 domain controllers e member servers. Windows Server 2003 pode realizar upgrade de Windows NT 4.0 e Windows 2000 domain controllers e member servers.
  • Slide 9
  • Domnios de Modo Nativo Sem DCs NT 4.0 Sem DCs NT 4.0 Qualquer cliente ou member server Win32 permitido. Qualquer cliente ou member server Win32 permitido. Todos os domain controllers precisam ser Windows 2000 ou Windows Server 2003. Todos os domain controllers precisam ser Windows 2000 ou Windows Server 2003. Windows 2000 domain modes do not increment msDS-Behavior-Version. Windows 2000 domain modes do not increment msDS-Behavior-Version. Enables User and Group Management Features Enables User and Group Management Features Windows 2000 and Windows.NET domain controllers only Windows 2000 and Windows.NET domain controllers only Mixed and Native Mode Defined by nTMixedDomain Mixed and Native Mode Defined by nTMixedDomain 0 (zero) or no value means native mode 0 (zero) or no value means native mode 1 means mixed mode 1 means mixed mode
  • Slide 10
  • Functional Levels New in Windows.NET Server 2003 New in Windows.NET Server 2003 Introduce new features not compatible with previous version domain controllers Introduce new features not compatible with previous version domain controllers Manually advanced when all domain controllers in domain or forest are running Windows.NET Server Manually advanced when all domain controllers in domain or forest are running Windows.NET Server Defined by msDS-Behavior-Version attribute on Domain and Partitions Containers Defined by msDS-Behavior-Version attribute on Domain and Partitions Containers DC=,DC= DC=,DC= CN=Partitions,CN=Configuration,DC=, DC= CN=Partitions,CN=Configuration,DC=, DC=
  • Slide 11
  • Functional Levels (2) Windows.NET Domain Windows.NET Domain Windows.NET Interim Forest Windows.NET Interim Forest Windows.NET Forest Windows.NET Forest http://www.microsoft.com/technet/treeview/d efault.asp?url=/technet/prodtechnol/windows netserver/evaluate/cpp/reskit/adsec/part1/rkp dsefl.asp http://www.microsoft.com/technet/treeview/d efault.asp?url=/technet/prodtechnol/windows netserver/evaluate/cpp/reskit/adsec/part1/rkp dsefl.asp http://www.microsoft.com/technet/treeview/d efault.asp?url=/technet/prodtechnol/windows netserver/evaluate/cpp/reskit/adsec/part1/rkp dsefl.asp http://www.microsoft.com/technet/treeview/d efault.asp?url=/technet/prodtechnol/windows netserver/evaluate/cpp/reskit/adsec/part1/rkp dsefl.asp
  • Slide 12
  • Domain Functional Levels All Domain Controllers Are Windows.NET All Domain Controllers Are Windows.NET Windows 2000 and Windows NT domain controllers are blocked. Windows 2000 and Windows NT domain controllers are blocked. Manually advanced using Active Directory Domains and Trusts (Domain.msc). Manually advanced using Active Directory Domains and Trusts (Domain.msc). Also exposed through ADSIEdit.msc, LDP, or script, for example. Also exposed through ADSIEdit.msc, LDP, or script, for example. msDS-Behavior-Version = 2 on DC=,DC= msDS-Behavior-Version = 2 on DC=,DC= msDS-Behavior-Version = 1 defines interim domain mode, but is unused. msDS-Behavior-Version = 1 defines interim domain mode, but is unused.
  • Slide 13
  • Funcionalidade de Domnio Caractersticas Funcionalidade de Domnio Caractersticas disponveis do Windows Server 2003 DCs suportados no Domnio Modo Misto Instalar (DCPromo) a partir de mdias (IFM) Instalar (DCPromo) a partir de mdias (IFM) Windows NT 4.0 Windows 2000 Windows 2003 Modo Nativo Group nesting Group nesting Universal groups Universal groups Universal group caching Universal group caching sIDHistory sIDHistory Windows 2000 Windows 2003 Windows 2003 Interim O mesmo que acima Windows NT 4.0 Windows 2003 O mesmo que Windows 2000 Nativo, mais: Replicated logon timestamp attribute Replicated logon timestamp attribute Kerberos KDC version Kerberos KDC version Senha de usurio em inetOrgPerson Senha de usurio em inetOrgPerson Windows 2003
  • Slide 14
  • Forest Functional Levels Windows.NET Forest Mode Windows.NET Forest Mode All domain controllers in the enterprise must run Windows.NET Server 2003. All domain controllers in the enterprise must run Windows.NET Server 2003. Advanced using Domain.msc or by setting msDS-Behavior-Version = 2 on CN=Partitions,CN=Configuration,DC=, DC=. Advanced using Domain.msc or by setting msDS-Behavior-Version = 2 on CN=Partitions,CN=Configuration,DC=, DC=. Windows.NET Interim Forest Mode Windows.NET Interim Forest Mode Allows Windows NT 4.0 domain controllers. Allows Windows NT 4.0 domain controllers. Windows 2000 domain controllers are not allowed. Windows 2000 domain controllers are not allowed. Only UI is new forest through upgrade and DCPromo of Windows NT 4.0 primary domain controller (PDC). Only UI is new forest through upgrade and DCPromo of Windows NT 4.0 primary domain controller (PDC).
  • Slide 15
  • Funcionalidades de Floresta Caractersticas Funcionalidade de Floresta Caractersticas disponveis do Windows Server 2003 DCs suportados na Foresta Windows 2000 Instalar a partir de mdias (IFM) Instalar a partir de mdias (IFM) Universal Group caching Universal Group caching Windows NT 4.0 Windows 2000 Windows 2003 Windows 2003 Interim ISTG Melhorado ISTG Melhorado Linked value replication Linked value replication Windows NT 4.0 Windows 2003 O mesmo que Windows 2003 Interim, mais: Dynamic Aux classes Dynamic Aux classes User to inetOrgPerson change User to inetOrgPerson change Schema defunct and redefine Schema defunct and redefine Renomeao de Domnio Renomeao de Domnio Relacionamento entre florestas Relacionamento entre florestas Windows 2003
  • Slide 16
  • Melhores Prticas para Funcional Levels Windows NT 4.0 Upgrade Windows NT 4.0 Upgrade Windows 2003 interim forest mode Windows 2003 interim forest mode Habilita as melhorias do Intersite Topology Generator e Knowledge Consistency Checker do Windows Server 2003 Habilita as melhorias do Intersite Topology Generator e Knowledge Consistency Checker do Windows Server 2003 Torna a replicao mais eficiente e robusta Torna a replicao mais eficiente e robusta Depois que todos os DCs forem atualizados, mude para Windows 2003 forest mode Depois que todos os DCs forem atualizados, mude para Windows 2003 forest mode Domnios em modo nativo automaticamente mudam para Windows 2003 domain level quando a floresta mudada para Windows 2003 interim Domnios em modo nativo automaticamente mudam para Windows 2003 domain level quando a f