glaucocm
asked on
can not remove the name of an already-deleted subdomain from logon domain list
The question is the same as another one already posted here:
--------------------------
Hi,
We are running active directory with two DCs running windows 2000 server. A while ago while testing with Windows 2003 on a testing machine, I created a subdomain. Unfortunately, later I rebuilt the testing machine without demoting the subdomain. Realizing I have made a big mistake, I tried what have suggested in MS knowledge base to force clearing a domain. As far as I can tell, the old subdomain is no longer existing in the AC database, at least I don't get any error logs complaining can not find the subdomain controller, which is the real reason why I want to wipe the old subdomain out. However, every time I try to logon to the domain, I can still see the subdomain's name appearing in the available domain list. It is there even for a computer that just joined to the domain. So I guess I failed to wipe it out completely.
Any suggestion on how to remove it. Everything works fine and it is just annoying. It reminds me, though, that I made a mistake :-)
--------------------------
Since I did not consider the responses satisfactory, because If I could return de old domain the problem was solved... In my case I do not have a system state backup... Can I solve this problem without return the subdomain?
--------------------------
Hi,
We are running active directory with two DCs running windows 2000 server. A while ago while testing with Windows 2003 on a testing machine, I created a subdomain. Unfortunately, later I rebuilt the testing machine without demoting the subdomain. Realizing I have made a big mistake, I tried what have suggested in MS knowledge base to force clearing a domain. As far as I can tell, the old subdomain is no longer existing in the AC database, at least I don't get any error logs complaining can not find the subdomain controller, which is the real reason why I want to wipe the old subdomain out. However, every time I try to logon to the domain, I can still see the subdomain's name appearing in the available domain list. It is there even for a computer that just joined to the domain. So I guess I failed to wipe it out completely.
Any suggestion on how to remove it. Everything works fine and it is just annoying. It reminds me, though, that I made a mistake :-)
--------------------------
Since I did not consider the responses satisfactory, because If I could return de old domain the problem was solved... In my case I do not have a system state backup... Can I solve this problem without return the subdomain?
ASKER
The removed subdomain had only one DC. I did not use NTDSUTIL to remove it, I simply formatted the old DC and installed this machine as DC on the parent domain. Since the name and IP were the same, I received a massage stating that the information of old DC was being overcome and accepted this. Then I used ADSIEDIT tool to remove the container representing the subdomain and DNS tool to deleted the zone representing the subdomain.
No subdomain now shows up in the AD Domains and Trusts and everything is working fine now... The only problem was that subdomain continues appearing at logon list (on all domain client machines)....
For your information, I tried to use NTDSUTIL after this to remove any scrap of old domain and received the information that old DC and subdomain do not exist anymore...
Tanks for trying...
No subdomain now shows up in the AD Domains and Trusts and everything is working fine now... The only problem was that subdomain continues appearing at logon list (on all domain client machines)....
For your information, I tried to use NTDSUTIL after this to remove any scrap of old domain and received the information that old DC and subdomain do not exist anymore...
Tanks for trying...
The above article references moving clients to a domain, not a server. But, I think the domain server cached data will be located in the same place.
ASKER
I think the problem is not the cache on client side, its the gabage left on AD...
I already found the solution (http://support.microsoft.com/default.aspx?scid=kb;EN-US;216498 - item 19):
If the deleted computer is the last domain controller in a child domain, and the child domain was also deleted, use ADSIEdit to delete the trustDomain object for the child. To do this, follow these steps: a. Click Start, click Run, type adsiedit.msc, and then click OK
b. Expand the Domain NC container.
c. Expand DC=Your Domain, DC=COM, PRI, LOCAL, NET.
d. Expand CN=System.
e. Right-click the Trust Domain object, and then click Delete.
I already found the solution (http://support.microsoft.com/default.aspx?scid=kb;EN-US;216498 - item 19):
If the deleted computer is the last domain controller in a child domain, and the child domain was also deleted, use ADSIEdit to delete the trustDomain object for the child. To do this, follow these steps: a. Click Start, click Run, type adsiedit.msc, and then click OK
b. Expand the Domain NC container.
c. Expand DC=Your Domain, DC=COM, PRI, LOCAL, NET.
d. Expand CN=System.
e. Right-click the Trust Domain object, and then click Delete.
Good deal:
I am glad you found a fix.
I recommend Points Refund.
To get a points refund, post a question in the general zone for zero points. Request a moderator to review this quesiton. Copy and paste the URL of this question in your request for points refund.
Cheers
I am glad you found a fix.
I recommend Points Refund.
To get a points refund, post a question in the general zone for zero points. Request a moderator to review this quesiton. Copy and paste the URL of this question in your request for points refund.
Cheers
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Can you tell me where you are at in the removal process?
Since you created this subdomian, you have to remove it on all domain controllers. I als assume you know that.