You can only set the DFL to Windows Server 2012 when you create a new domain tree on a Windows Server 2012-based computer

Reading Time: 2 minutes

Remember in the Beta of Windows Server 2012 (then called Windows Server “8”) you couldn’t specify the Windows Server 8 Forest Functional Level (FFL) in the new Active Directory Domain Services Configuration Wizard when you created a new forest?

My fellow Directory Services MVP Mike Kline wrote a blogpost on this issue, where he explains choosing the Windows Server 8 functional levels resulted in the following error during the Prerequisites Check:

The specified value '5' is not valid for the argument 'Domain level'

Last week, Microsoft KnowledgeBase article 2747704 was written. This article suggests a new bug exists in Windows Server 2012, that prevents admins from choosing a Domain Functional Level different than Windows Server 2012 when they add a new domain tree to an existing forest.

The screenshot below shows the inability to choose anything else from within the Active Directory Domain Services Configuration Wizard:

Inability to choose anything else than the Windows Server 2012 Domain Functional Level when creating a new Domain Tree (click for larger screenshot)

Isn’t that ironic? Knipogende emoticon 

   

The workaround given by Microsoft is to either:

  • Use a Windows Server with an earlier release of Windows Server (for instance Windows Server 2008 R2 with Service Pack 1) to create the new domain tree.
  • Use the Install-ADDSDomain PowerShell cmdlet to create the new domain tree in Windows Server 2012 and specify the required value for the domain functional level with the –DomainMode switch. Possible values for this switch are:
    • Win2003
    • Win2008
    • Win2008R2

      Note:
      More information on the Install-ADDSDomain Cmdlet can be found here.

As an example, here is a PowerShell one-liner that will create an Active Directory domain tree, called domain2.local with the Windows Server 2008 R2 Domain Functional Level in the Location1 site of the domain.local forest, equipped with both the DNS Server and the Global Catalog role:

Install-ADDSDomain -NoGlobalCatalog:$false
-CreateDnsDelegation:$false –Credential (Get-Credential)
DatabasePath "E:\Windows\NTDS" -DomainMode "Win2008R2"
-DomainType "TreeDomain" -InstallDns:$true
-LogPath "F:\Windows\NTDS" -NewDomainName "domain2.local"
-NewDomainNetbiosName "DOMAIN" -ParentDomainName "domain.local" -NoRebootOnCompletion:$false -SiteName "Default-First-Site-Name"
-SysvolPath "F:\Windows\SYSVOL" -Force:$true

I’m sure you can modify this PowerShell one-liner to your needs.

         

Related KnowledgeBase articles

2747704 You can only set the domain functional level to Windows Server 2012 when you create a new domain tree on a Windows Server 2012-based computer  

Further reading

Windows Server 8 – Active Directory DCPROMO error 
Windows Server 8 DCPromo Error – FIXED    
Windows Server 8 – Active Directory DCPROMO error  
Pro und Contra Windows Server 8 Public Beta 
Dcpromo on Windows Server 8 beta

Posted on September 5, 2012 by Sander Berkouwer in Active Directory, KnowledgeBase Articles, Microsoft Windows Server 2012

leave your comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.