Methodman85
asked on
How to remove a child domain
Hello Everyone
I'm not too sure how to remove a child domain, the child domain's domain controllers have been removed. Now how do I get rid of the actual domain, it's still listed in AD domains and trusts, and the remove button is greyed out While under management on the Parent domain.
I'm not too sure how to remove a child domain, the child domain's domain controllers have been removed. Now how do I get rid of the actual domain, it's still listed in AD domains and trusts, and the remove button is greyed out While under management on the Parent domain.
How did you remove the DC's?
Child domain is removed from AD when the last DC of child domain is removed
you need to select this is the last domain controller option in DCpromo
you need to select this is the last domain controller option in DCpromo
ASKER
Unfortunately it was not possible to run DC promo on the child's domain controllers. We added this child domain as a result of a company merger, after that fell through the connections were just cut, so the domain, and domain controllers still remained in AD, although they were no longer physically preasent.
I used the ntdsutil to clean out the metadata for the child domain, and then proceeded to delete the Domain controllers from AD sites and services.
I then restarted all 4 of our domain controllers.
I used the ntdsutil to clean out the metadata for the child domain, and then proceeded to delete the Domain controllers from AD sites and services.
I then restarted all 4 of our domain controllers.
Man, looks like the schema is hosed.
ASKER
Indeed, I inherited this, lucky me.
Also when you do a list domains within the ntdsutil, the domain in question still comes up. Even though it's domain controllers have been removed from its member site.
Also when you do a list domains within the ntdsutil, the domain in question still comes up. Even though it's domain controllers have been removed from its member site.
ASKER
There's gotta be a way
Here is a link from Technet on Removing Orphaned Domains from Active Directory.
http://support.microsoft.com/kb/230306
Lest us know how you get on, it's a intresting one.
http://support.microsoft.com/kb/230306
Lest us know how you get on, it's a intresting one.
ASKER
That's exactly what I used, ntdsutil to clearout all the metadata, which then allowed me to delete the Domain controllers from AD sites and services.
So the domain controllers have been removed.. yet the domain still exsists within AD domains and trusts (the remove button is greyed out), and our GC (you can still select the domain as a searchable domain in AD user's and computers)
So the domain controllers have been removed.. yet the domain still exsists within AD domains and trusts (the remove button is greyed out), and our GC (you can still select the domain as a searchable domain in AD user's and computers)
Man. The FSMO is wrong once the connetion is broken. Can you please check is the current Operation master is correct? I have tried to remove child domian inside domain and trust before with a lost connection. It is grayed as well. but forutnatly my connection is reesatblished once I saw it. Let's us know the result. Intresting.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I can't get the above to work, just a syntax error so please point out what I'm doing wrong.
After i type list I get the list of the Naming Contexts
0 - CN=Configuration,DC=domain
1 - DC=domain1,DC=com
2 - CN=Schema,CN=Configuration
3 - DC=domain2,DC=com
4 - DC=domain3,DC=domain2,DC=c
So i typed
delete nc dc=domaindnszones,dc=domai
Error 800070057 parsing input - illegal syntax?
also tried
delete nc dc=dmaondnszones,dc=domain
Error 800070057 parsing input - illegal syntax?
After i type list I get the list of the Naming Contexts
0 - CN=Configuration,DC=domain
1 - DC=domain1,DC=com
2 - CN=Schema,CN=Configuration
3 - DC=domain2,DC=com
4 - DC=domain3,DC=domain2,DC=c
So i typed
delete nc dc=domaindnszones,dc=domai
Error 800070057 parsing input - illegal syntax?
also tried
delete nc dc=dmaondnszones,dc=domain
Error 800070057 parsing input - illegal syntax?
ASKER
also tried
* delete nc dc=domaindnszones,dc=domai
Error 800070057 parsing input - illegal syntax?
* delete nc dc=domaindnszones,dc=domai
Error 800070057 parsing input - illegal syntax?
I think is case sensitive.......
This is the official step by step guide copied and pasted from MS, have you performed this all on DC's or just one. Not sure if it matters but worth a go.
RESOLUTION
To resolve this issue, follow these steps:1. Click Start, click Run, type ntdsutil, and then press ENTER.
2. At the Ntdsutil command prompt, type domain management, and then press ENTER.
3. Type connections, and then press ENTER.
4. Type connect to server Domain_Controller_Name, and then press ENTER.
5. After the following message appears, type quit, and then press ENTER:
Connected to Domain_Controller_Name using credentials of locally logged on user
6. At the domain management prompt, type list, and then press ENTER.
7. Note the following entry:
DC=DomainDnsZones,DC=Child
For example, if the child domain is Contoso.com, note the following entry:
DC=DomainDnsZones,DC=conto
8. Type the following command, and then press ENTER.
delete nc dc=domaindnszones,dc=Child
Note In this command, Child_Domain represents the name of the child domain that you want to remove. For example, if the child domain is Contoso.com, type the following command, and then press ENTER:
delete nc dc=domaindnszones,dc=conto
9. Quit Ntdsutil.
RESOLUTION
To resolve this issue, follow these steps:1. Click Start, click Run, type ntdsutil, and then press ENTER.
2. At the Ntdsutil command prompt, type domain management, and then press ENTER.
3. Type connections, and then press ENTER.
4. Type connect to server Domain_Controller_Name, and then press ENTER.
5. After the following message appears, type quit, and then press ENTER:
Connected to Domain_Controller_Name using credentials of locally logged on user
6. At the domain management prompt, type list, and then press ENTER.
7. Note the following entry:
DC=DomainDnsZones,DC=Child
For example, if the child domain is Contoso.com, note the following entry:
DC=DomainDnsZones,DC=conto
8. Type the following command, and then press ENTER.
delete nc dc=domaindnszones,dc=Child
Note In this command, Child_Domain represents the name of the child domain that you want to remove. For example, if the child domain is Contoso.com, type the following command, and then press ENTER:
delete nc dc=domaindnszones,dc=conto
9. Quit Ntdsutil.
ASKER
Thanks,
If you look at my post, everything up until the very last step worked how it was suppose to.
The naming text came up, the steps then say to enter in the child domain you would like to delete.
I also used all lowercase
0 - CN=Configuration,DC=domain
1 - DC=domain1,DC=com
2 - CN=Schema,CN=Configuration
3 - DC=domain2,DC=com
4 - DC=domain3,DC=domain2,DC=c
So i typed
delete nc dc=domaindnszones,dc=domai
Error 800070057 parsing input - illegal syntax?
also tried
delete nc dc=domaindnszones,dc=domai
Error 800070057 parsing input - illegal syntax?
I've done this on both of our domain controllers, and their backups. I must be doing something wrong, I just don't know what.
If you look at my post, everything up until the very last step worked how it was suppose to.
The naming text came up, the steps then say to enter in the child domain you would like to delete.
I also used all lowercase
0 - CN=Configuration,DC=domain
1 - DC=domain1,DC=com
2 - CN=Schema,CN=Configuration
3 - DC=domain2,DC=com
4 - DC=domain3,DC=domain2,DC=c
So i typed
delete nc dc=domaindnszones,dc=domai
Error 800070057 parsing input - illegal syntax?
also tried
delete nc dc=domaindnszones,dc=domai
Error 800070057 parsing input - illegal syntax?
I've done this on both of our domain controllers, and their backups. I must be doing something wrong, I just don't know what.
ASKER
Err... Bump?