• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 250
  • Last Modified:

Completely Remove AD from DC

Hi, I need to completely remove AD from a windows 2k DC , what are the steps to do this?
0
frsupport
Asked:
frsupport
  • 4
  • 3
  • 2
  • +1
1 Solution
 
DrDave242Commented:
Normally, you'd simply run the DCPROMO command to demote the DC.  This will remove AD from it.  If for some reason this does not work, or if the server is not able to boot normally, check this article:

http://support.microsoft.com/kb/332199
0
 
KCTSCommented:
Do you have another DC ?
Do you want to get rid of the entire domain ?
In extreme cases you can use DCPROMO /forceremoval
0
 
frsupportAuthor Commented:
we moved over to a new domain, and are decommissioning the old dc , and leaving it as a file & print server

so yes , getting rid of the entire domain
0
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

 
DrDave242Commented:
Once you're sure you no longer need the old domain, DCPROMO the DC.  It will ask you to specify whether it's the last DC for the domain (at least, I think 2000 did that - I know 2003 does).  Check the appropriate box and let the wizard do its thing.  If you run into trouble, post any errors or inconsistencies that you encounter.
0
 
frsupportAuthor Commented:
getting the following error message after running dcpromo

the domain "domain name" is not an active directory domain, or an active directory domain controller for the domain could not be contacted

what do i do next???
0
 
DrDave242Commented:
Do you still have a DNS server configured for that domain?  If not, you'll need to install DNS on that DC and create the appropriate zones in order for it to be able to resolve the domain name and/or locate the necessary SRV records to identify itself as a DC.
0
 
frsupportAuthor Commented:
right, big problem


i ran DCPROMO /forceremoval, server re-booted, now i can't log onto the server, in hindsight i should have created a local profile, but i didnt , is there any way of getting onto this machine?
0
 
KCTSCommented:
As the machine is not on the domain anymore you need to use the local administrator password - not domain admin. If you can't remember it use http://home.eunet.no/pnordahl/ntpasswd/
0
 
frsupportAuthor Commented:
sorted, after a few reboots, the password which i thought was the local admin pw actually worked, thank the lord jebus
0
 
Jay_Jay70Commented:
i am guessing your server wasnt looking at itself for DNS - thats usually why you get those errors - still, the old demolition trick usually works too..
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 4
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now