We have 2 DC: 1 SBS 2003 and 1 server 2003 on different sites and subnet (the sbs is in SF and the server 2003 in DC). The server 2003 had a bad hard drive and the AD got corrupted so we could not do the replication anymore. we decided to demote the server 2003 and then repromote it. here is what I did:
1. check the fsmo roles: they are all done by the SBS server (good)
2. run dcpromo on server 2003: everything went fine and I restarted the server 2003
3. check SBS server:
- run metadata clean up
- there is nothing in the DNS, AD, site and domain about the server 2003
4. try the replication and everything is working fine.
5. the log events are fine, the fsmo are managed by sbs so everything looks great until we tried login in in DC
6.when we tried login in to a workstation in DC it was taking a really long time to apply the computer settings
7. since I didn't restart the SBS yet, I decided the restart the SBS and the server 2003
8. SBS came back up first and when I tried to login I was getting an error saying that the domain doesn't exist or is unavailable. so it looks like the master DC was the server 2003.
Once the server 2003 came back up I was then able to login to SBS and login to the workstations in DC and in SF were fine as well.
9. I checked who is acting as the PDC and it is the SBS server. In the DC the logon server for the workstation is the server 2003 and the group policy are applied from the sbs server so everything looks fine but I am not sure if that will happen again as I believe the SBS should always be the master meaning that even if the server 2003 is down other people should still be able to logon to the domain, is there a way for me to check that?
or was it just because I needed to restart the sbs server once before all the changes are applied?
thanks a lot for your advice