• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 277
  • Last Modified:

can not remove the name of an already-deleted subdomain from logon domain list

The question is the same as another one already posted here:


We are running active directory with two DCs running windows 2000 server. A while ago while testing with Windows 2003 on a testing machine, I created a subdomain. Unfortunately, later I rebuilt the testing machine without demoting the subdomain. Realizing I have made a big mistake, I tried what have suggested in MS knowledge base to force clearing a domain. As far as I can tell, the old subdomain is no longer existing in the AC database, at least I don't get any error logs complaining can not find the subdomain controller, which is the real reason why I want to wipe the old subdomain out. However, every time I try to logon to the domain, I can still see the subdomain's name appearing in the available domain list. It is there even for a computer that just joined to the domain. So I guess I failed to wipe it out completely.

Any suggestion on how to remove it. Everything works fine and it is just annoying. It reminds me, though, that I made a mistake :-)

Since I did not consider the responses satisfactory, because If I could return de old domain the problem was solved... In my case I do not have a system state backup... Can I solve this problem without return the subdomain?
  • 4
  • 2
1 Solution
I am assuming you are using the NTDSulitiy to remove the domain. What does your DCdiag have on it for metadata left on a domain controller. The only thing to remove after running the NTDSutlitiy is to remove DNS records for that subdomain.

Can you tell me where you are at in the removal process?

Since you created this subdomian, you have to remove it on all domain controllers. I als assume you know that.
glaucocmAuthor Commented:
The removed subdomain had only one DC. I did not use NTDSUTIL to remove it, I simply formatted the old DC and installed this machine as DC on the parent domain. Since the name and IP were the same, I received a massage stating that the information of old DC was being overcome and accepted this. Then I used ADSIEDIT tool to remove the container representing the subdomain and DNS tool to deleted the zone representing the subdomain.
No subdomain now shows up in the AD Domains and Trusts and everything is working fine now... The only problem was that subdomain continues appearing at logon list (on all domain client machines)....
For your information, I tried to use NTDSUTIL after this to remove any scrap of old domain and received the information that old DC and subdomain do not exist anymore...
Tanks for trying...

Maybe this article will help you out, Bud.
We Need Your Input!

WatchGuard is currently running a beta program for our new macOS Host Sensor for our Threat Detection and Response service. We're looking for more macOS users to help provide insight and feedback to help us make the product even better. Please sign up for our beta program today!

The above article references moving clients to a domain, not a server. But, I think the domain server cached data will be located in the same place.
glaucocmAuthor Commented:
I think the problem is not the cache on client side, its the gabage left on AD...
I already found the solution (http://support.microsoft.com/default.aspx?scid=kb;EN-US;216498 - item 19):
If the deleted computer is the last domain controller in a child domain, and the child domain was also deleted, use ADSIEdit to delete the trustDomain object for the child. To do this, follow these steps: a.  Click Start, click Run, type adsiedit.msc, and then click OK
b.  Expand the Domain NC container.  
c.  Expand DC=Your Domain, DC=COM, PRI, LOCAL, NET.  
d.  Expand CN=System.  
e.  Right-click the Trust Domain object, and then click Delete.  
Good deal:

I am glad you found a fix.

I recommend Points Refund.

To get a points refund, post a question in the general zone for zero points. Request a moderator to review this quesiton. Copy and paste the URL of this question in your request for points refund.

PAQed with no points refunded (of 250)

EE Admin
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now