How to Remove a Domain Controller manually?

Posted on 2004-11-21
Last Modified: 2012-08-13
I have a Mixed Domain. Two Windows 2000 Domain Controller, and one Windows NT Backup Domain. Yesterday one of the Windows 2000 Domain controller failed. Motherboard Error. The machine will be replaced. However the windows 2000 domain controller shows an error/warning by trying to sync updates and it is not finding the second windows 2000 domain controller.

Active Directory still shows the second domain controller.

Is there anyway to manually clean this up?
Question by:Christian_Agard
    LVL 11

    Expert Comment

    LVL 5

    Accepted Solution

    Theres a number of steps to this.

    1) Use the command line utility ntdsutil.
       Enter 'Roles'
        Enter 'Connections'
       Enter 'Connect to server yourservername' - this is your current server
       Enter 'Quit'
       Enter '?' - you will need to seize all the roles listed, start with PDC, then RID, infratructure, domain naming, schema.
       At the console enter 'metadata cleanup'
       Enter 'Select Operation Target'
       Enter '?'  -you will need to use the commands listed to find the numeric reference to the deceased server, and then use the reference in the 'Select Server %d' command. The selected server is the one you will remove from AD
       Enter 'Quit'
       enter 'Remove Selected Server'
      Exit ntdsutil
    2) Use AD Sites and Services to remove any replication objects that may still exist
    3) use adsiedit.msc, part of the resource kit, to delete the computer account from AD. AD Users and Computers will never allow you to delete an account that has been a DC.
        Find the account in the tree, right click and select delete. You will get a warning about child objects, proceed. You may get an error, and the account will still be there. for some reason, it only ever deletes the child objects. delete it again.
    4) Use DNS Admin to clean up any DNS records. This should have been done by ntdsutil, but it is worth checking. Look through all the SRV records and verify no trace exists.
        If the DC was a Global Catalog server, there will be a host record on the GC subdomain.

    After all this, the old server is truly dead and buried

    LVL 5

    Expert Comment

    Sorry, in ntdsutil, use the 'quit' command in the roles section before entering metadata cleanup

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
    In the modern office, employees tend to move around the workplace a lot more freely. Conferences, collaborative groups, flexible seating and working from home require a new level of mobility. Technology has not only changed the behavior and the expe…
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
    Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    10 Experts available now in Live!

    Get 1:1 Help Now