how do I recreate sysvol share?
Posted on 2009-02-08
I have (this is a long story, but hopefully near the end of this journey...) a DC on an SBS2003 network that has had the following issues:
Network had SBS2003 and WS2003(DC).
AD was screwed up to the point that Microsoft dialed in and demoted SBS2003 and repromoted it in AD. SBS2003 seems to be working now, but now the DC that was there is having replication issues. There are numerous replication issues, and the SYSVOL and NETLOGON shares on the WS2003 server are not there.
To solve this, I was going to DCPROMO the DC down, and then re-promote it. No joy... The error it gives shortly after the final "this is it... I am going to dcpromo it down" button push is that "the operation failed because AD could not transfer the remaining data in the directory partition CN=Schema,CN=Configuration... The distinguished name specified for this replication is invalid". Kind of the reason I need to demote and repromote this DC.
I start doing the investigative work (this is truly an "onion" problem... peel it back, another issue...) and I notice that SYSVOL and NETLOGON are not on the DC. I have tried...
KB816113 - no joy
DCPROMO /FORCEREMOVAL <- too scared to do this one... MS article is really fuzzy on what this will do. My understanding is that the DC will be totally gone from the AD structure and you have to do a metadata cleanup to get it out of the domain.
Again, with the forceremoval (and I'm not sure if my question needs to be renamed...) what, exactly does this do?
Totally remove the computer/server from the domain? If so, when I bring it back in, can I give it the same name and have the applications that are running on it and need security credentials untouched and it will know what to do? (Yes, I walked into this, and there are apps running on the DC, but small business needs to have such things. Buying $4000 in computers and licenses for a computer sitting as a backup DC is not economically feasible... but then again, paying me $5000 to clean this up isn't either...)
If it does remove the computer from the domain, can I just re-promote it and all will be well in the world?
thanks, and if there are ways to get SYSVOL and NETLOGON back on this DC, I would appreciate it.