Solved

Can't delete a failed/removed DC from AD Sites and Services

Posted on 2004-04-13
3
1,300 Views
Last Modified: 2010-04-12
We had a failing DC (SERVERNAME) removed yesterday and the other AD-integrated DC was enabled as the PDC, schema master etc. by successfully seizing the FSMO roles via ntdsutil and by establishing a GC on the new primary DC.

However, we did not have the chance to dcpromo the other DC in order to remove it from the AD.  

Now, when I attempt to delete SERVERNAME in AD Sites and Services, I get the following error:

"The DSA object cannot be deleted."

And, because of the above situation, the File Replication Service keeps spitting out these warnings in the log:
------------------------------------------------------------------------------------
The attempt to establish a replication link with parameters
 
 Partition: CN=Schema,CN=Configuration,DC=corp,DC=MyDomain,DC=com
 Source DSA DN: CN=NTDS Settings,CN=SERVERNAME,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=corp,DC= MyDomain,DC=com
 Source DSA Address: 8e351b4a-d81c-459d-a77d-7c02fd3c0330._msdcs.corp. MyDomain.com
 Inter-site Transport (if any):
 
 failed with the following status:
 
 The DSA operation is unable to proceed because of a DNS lookup failure.
 The record data is the status code.  This operation will be retried.
------------------------------------------------------------------------------------

I am assuming this error is happening because the repl service still thinks SERVERNAME is in the AD, and it is attempting to replicate the NTDS Settings with the new DC.

So, how can I delete SERVERNAME from the AD Sites and Services, and will it then stop these file repl errors?
0
Comment
Question by:Billusa99
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 85

Accepted Solution

by:
oBdA earned 500 total points
ID: 10817149
Have a look at those:

HOW TO: Remove Data in Active Directory After an Unsuccessful Domain Controller Demotion
http://support.microsoft.com/?kbid=216498

Error Message: DSA Object Cannot Be Deleted
http://support.microsoft.com/?kbid=318698

Domain Controller Server Object Not Removed After Demotion
http://support.microsoft.com/?kbid=216364

Cannot Delete a Computer Account for the Domain Controller in Windows 2000
http://support.microsoft.com/?kbid=328775

Deletion of Critical Objects in Active Directory in Windows 2000 and Windows Server 2003
http://support.microsoft.com/?kbid=298450
0
 

Author Comment

by:Billusa99
ID: 10817680
Thanks oBdA!

This Link addressed the deletion of SERVERNAME and its NTDS object just fine:
HOW TO: Remove Data in Active Directory After an Unsuccessful Domain Controller Demotion
http://support.microsoft.com/?kbid=216498

All worked according to the detailed intructions. However, for some reason SERVERNAME was still in the AD Sites and Services when I re-opened it.  I right-click-deleted SERVERNAME there and then it was gone for good.

Now, when I click on NTDS settings for the remaining First-name AD DC, there is a replication object in the right frame, with the double-servers icon, still showing that SERVERNAME is a source of config replication info.  Since I have no other DC and no repl yet, can I delete that object too?
0
 

Author Comment

by:Billusa99
ID: 10817752
Please disregard my previous comment. I made an intuitive leap and successfully deleted the repl. object.

All is well!  Thanks for the help!!
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Article by: Justin
In light of the WannaCry ransomware attack that affected millions of Windows machines, you might wonder if your Mac needs protecting. Yes, it does and here is how to do it.
This is a high-level webinar that covers the history of enterprise open source database use. It addresses both the advantages companies see in using open source database technologies, as well as the fears and reservations they might have. In this…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question