Your network contains an Active Directory forest named adatum.com. All domain controllers currently run
Windows Server 2003 Service Pack 2 (SP2). The functional level of the forest and the domain is Windows
Server 2003.
You need to deploy a read-only domain controller (RODC) that runs Windows Server 2008 R2.
What should you do first?
A.
Deploy a writable domain controller that runs Windows Server 2008 R2.
B.
Raise the functional level of the forest to Windows Server 2008.
C.
Run adprep.exe.
D.
Raise the functional level of the domain to Windows Server 2003.
Explanation:
An RODC requires a writable domain controller running Windows Server 2008 or Windows Server 2008 R2.
So, whether you install the writable domain controller first or the Windows Server 2008 R2 server (your future
RODC), you have to run adprep.exe first to prepare the domain/forest for either domain controller.
Reference:
http://technet.microsoft.com/en-us/library/cc731243.aspx
Prerequisites for Deploying an RODC
Complete the following prerequisites before you deploy a read-only domain controller (RODC):
Ensure that theforest functional level is Windows Server 2003 or higher, so that linked-value replication
(LVR) is available. This provides a higher level ofreplication consistency. The domain functional level must
be Windows Server 2003 or higher, so that Kerberos constrained delegation is available. If the forest
functional level is Windows Server 2003, the domainfunctional level of all domains in the forest is W indows
Server 2003 or higher.
Run Adprep.exe commandsto prepare your existing forest and domains for domain controllers that run
Windows Server 2008 or Windows Server 2008 R2. The adprep commands extend the Active Directory
schema and update security descriptors so that you can add the new domain controllers.
Deploy at least one writable domain controller running Windows Server 2008 or Windows Server 2008 R2 in
the same domain as the RODC and ensure that the writable domain controller is also a DNS server that has
registered a name server (NS) resource record for the relevant DNS zone. An RODC must replicate domain
updates from a writable domain controller running Windows Server 2008 or Windows Server 2008 R2.