Forest And Domain Functional Levels In Windows Server 2008

Allows granting users who aren t domain administrators the local administrator role on a specific rodc.

Forest and domain functional levels in windows server 2008. With windows server 2008 r2 you can now revert back or lower both the domain functional level and forest functional level of your domain provided you meet the specific conditions and limitations of this new feature described below. Today i recognized that it is not easy to find a comprehensive summary table about active directory domain and forest functional levels operating mode on the internet. It would be helpful. The windows server 2008 r2 domain or forest functional level can be lowered to windows server 2008 and no lower if and only if none of the active directory features that require a windows server 2008 r2 functional level has been activated.

Viele beschäftigen sich nur mit den funktionen bis zur windows server 2008r2 andere betrachten nur den unterschied zwischen windows server2008r2 und windows server 2012. After the domain functional level is raised to a higher level it can only be changed back to an older level by using a forest recovery. Ich musste heute leider feststellen dass es nicht so einfach ist im internet eine umfassende übersichtstabelle über active directory domain und forest functional levels betriebmodus zu finden. For example a windows server 2008 functional level requires that all domain controllers have windows server 2008 or a later operating system installed in the domain or in the forest.

The default selected forest functional level is windows server 2003. In previous versions of windows server changes to domain functional levels dfl and forest functional level ffl could not be rolled back. Forest functional level ffl 2 windows server 2003 and the domain pdc operations master running at least windows 2003 sp2. You can find details on this behavior and how to revert the domain or forest functional level here.

The primary dc operations master fsmo must run on either server 2008 or windows 2003 sp2 for the promotion of a new read only dc administrator role separation.