Solved

Demote Exchange 2007/Windows 2003 server with certificate services

Posted on 2009-04-09
2
326 Views
Last Modified: 2012-05-06
I've inherited a Windows 2003 / Exchange 2007 server that is a domain controller with the global catalog on it. It is also multi-homed because the Exchange databases reside on an iSCSI SAN. I would like to demote it, but it says I can't until I remove the Certificate services. The articles I've read on this only talk about setting up another server with the same name and backing up/restoring the certificates which I don't really want to do.
We are having all sorts of problems with startup times (currently takes about 30 minutes to restart), sometimes the main network card doesn't work until it is disabled and re-enabled after startup, and when this server is restarting I have some problems logging into other servers even-though I have two other domain controllers on the network. So I think I have multiple issues going on here, but am hoping that getting this server properly demoted will solve a lot of them. Any insight, order in which I should attempt this or general advice would be much appreciated.
0
Comment
Question by:GBP
2 Comments
 
LVL 58

Accepted Solution

by:
tigermatt earned 250 total points
Comment Utility

You don't want to demote that server. The fact you received an error during the demotion is a good thing, because had you proceeded with the procedure, you would have broken Exchange, requiring a complete reinstall and recovery from backup.

To demote the server, you will NEED to remove Exchange (or temporarily rehome it to another server), uninstall Exchange from this server, dcpromo down, then reinstall Exchange. You cannot run dcpromo for promotion/demotion on any server with Exchange installed; it simply isn't possible.

-Matt
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Suggested Solutions

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now