We have the following setup:
Windows 2003 R2 Domain with 3 Servers,
01 - SRVDATA01 - Win2003-R2 - Domain Controller with all 5 FSMO roles
02 - SRVMAIL01 - Win2003-R2 - Old Exchange 2003, Domain Controller, no roles
03 - SRVXCH01 - Win2008-SP1 - New Exchange 2007
We are experiencing the following problems:
We are unable to demote the old SRVMAIL01, although it is holding no more roles. It passes all tests DcDiag and NetDiag, except 1 test:
Command: DCdiag /test: CheckSecurityError /repLsource: SRVDATA01
Answer: Source DC SRVDATA01 has possible security error 1980
If we turn SRVMAIL01 off (shut down the machine) both SRVDATA01 and SRVXCH01 go crazy, unable to find a domain controller, although the DC with all 5 FSMO roles (SRVDATA01 ) is up and running.
If we run DcPromo on SRVMAIL01 to Demote it, not being the last DC in the domain, the error message is that no DC's are available...
Any help is highly appreciated!
Thanks in advance!