Solved

Unable to re-add a domain contorller after running dcpromo /forceremoval

Posted on 2008-10-18
8
795 Views
Last Modified: 2013-12-05
I ma sitting at a client location that has two domain controlers. 1 Windows 2000 and 1 Windows 2003. The Windows 2003 controller had been unable to communicate long enough that it had past the tombstone period so I went ahead and removed the active directory however it was unsuccessful without using DCPromo /forceremoval. I forcably removed it and and went through on the Windows 2000 mahcine and cleaned up the metabase, dns, and ad.

Now I am trying to re-add the domain and it is continually failing giving me this error "The service did not respond to the start or control request in a timely matter" I get this error if I try to create the machine as a domain controller or as a computer on the domain.  Any ideas?
0
Comment
Question by:nlhess2003
8 Comments
 
LVL 63

Expert Comment

by:SysExpert
ID: 22750338
1) Are you sure you rpoperly removes everything, including the metadata ?

2) Double check AD and DNS

3) what shows up in the event logs of both  servers ?


I hope this helps !
0
 

Author Comment

by:nlhess2003
ID: 22750361
metadata looks clean as does AD and DNS.

No errors are reported in the logs on either machine.
0
 
LVL 42

Expert Comment

by:paulsolov
ID: 22751072
try this:

http://support.microsoft.com/kb/886695

Make sure that FSMO roles are on the DC.  There may be issues because the the AD was upgraded to 2003 and you're now working from a 2000 DC.  You may want to run adrep again
0
 

Author Comment

by:nlhess2003
ID: 22751140
All of the roles are on the Windows 2000 server. The Win 2000 server has been the primary domain controller all along. The Win 2003 server was just a backup DC that happened to not to synchromized for over a year locking it out. That is why I demoted it forcably. I will try the microsoft support article tomorrow.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 31

Expert Comment

by:Henrik Johansson
ID: 22752578
Check the DNS settings on the joining computer and ensure that it's only pointing on a working DNS server authorative/aware of the AD DNS domain. As it has been a DC, it's propably pointing on itself for DNS resolution, but doesn't have the DNS service running/working correctly since the demote.
When promote is complete, configure both DCs to use the other DC/DNS as secondary DNS server to avoid problems.

Stop talking about primary/backup DC in AD environment. That is old NT4-stuff and doesn't exist in AD.
0
 

Author Comment

by:nlhess2003
ID: 22752686
The DNS Is configured correctly it is pointing to the DNS on the existing domain controller.
0
 
LVL 63

Expert Comment

by:SysExpert
ID: 22754487
Have you rebooted the win2k server after the cleanup ?

0
 

Accepted Solution

by:
nlhess2003 earned 0 total points
ID: 22772367
After trying everything under the sun we finally found a solution. Apperantly some of the networking services became corrupt after the force removal from the domain. We uninstalled Client for Microsoft Networking and reinstalled it through the properties on the Network Adapter on the . The reinstall was a little tricky it took 3 reboots of the server to get it to reappear in the networking options. Then the machines was able to be reconnected to the domain.
0

Featured Post

Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Copy the files from the share to network PCs 4 27
romain user profiles for windows users 22 64
cant install rsat on win 7 13 44
Group policy update error 8 26
Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
Learn about cloud computing and its benefits for small business owners.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

861 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now