Solved

Active Directory Sites and Services

Posted on 2010-09-07
14
392 Views
Last Modified: 2012-06-27
Hi,

We have 4 Servers in our domain,

Primary ( GC )
Exchange 01 ( GC )
Exchange 02
Apps

The exchange02 used to be a dc but when we removed the role it still show in the active directory sites and services etc, i think it is causing some issue on the network etc, is it safe to delete this from that section of AD or will it effect anything ?

Thanks

Jon
0
Comment
Question by:Comex_IT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
  • 2
  • +3
14 Comments
 
LVL 3

Expert Comment

by:dontseme
ID: 33617685
use ntdsutil in a command windows from a DC and view the FSMO Roles that are assigned to your server. Verify all roles are relocated to the other DC's
http://support.microsoft.com/kb/255504

Or look at this if you dont want to use Ntdsutil (would still verify with it though)
http://support.microsoft.com/kb/324801/en-us
0
 

Expert Comment

by:dutchgeek
ID: 33617689
You can not just remove it. You will have to check if the current DC holds all FSMO roles. You can do this with NTSUtil.
The current DC will have to hold 5 roles in total being:
schema master
RID master
PDC
Domain naming master
Infrastructure Master

Make sure also that the current DC is a Global catalog server and that DNS is fully replicated.
0
 
LVL 39

Expert Comment

by:Krzysztof Pytko
ID: 33617690
If you are really sure that it is no DC anymore you can simply delete it. But first run dcdiag on your existing DC and check what kind of errors do you have.
0
SharePoint Admin?

Enable Your Employees To Focus On The Core With Intuitive Onscreen Guidance That is With You At The Moment of Need.

 

Author Comment

by:Comex_IT
ID: 33617787
sorry, im a bit confused, if i run the ntsutil will that check ?

do i need to run it on the old exchange02 server ?

0
 

Author Comment

by:Comex_IT
ID: 33617834
If you notice you can expand Primary or Exchange01 it does but not exchnage02 its blank this used to be a dc etc .....
sites-and-services.jpg
0
 

Author Comment

by:Comex_IT
ID: 33617866
if you look at the screenshot here it show exchange02 being a dc ......
properties-exchange02-sites-and-.jpg
0
 
LVL 2

Expert Comment

by:tspreeth
ID: 33617942

Hi ,
You can check if your exchange02 is FSMO ROle Holder .
Follow the steps mentioned in this link
http://www.petri.co.il/determining_fsmo_role_holders.htm 
If there is no Roles. You can demote the DC .
By running DCPROMO .
0
 

Expert Comment

by:dutchgeek
ID: 33617946
Run NTDSutil on the current DC
start, run
type NTDSutil
type roles, press enter
type connections, press enter
type connect to server primary, press enter
from "server connections" type q and than press enter
from "FSMO roles" type seize pdc pres enter
you will get a warning box. Read carefully. It will state exactly which machine holds all FSMO roles.If this is allready the Primary you can cancel and do not have to do anything more than check DNS replication.
0
 

Author Comment

by:Comex_IT
ID: 33618245
I did demote it already though, but for some reason its still showing as a dc like in the screen shot
0
 

Expert Comment

by:dutchgeek
ID: 33618272
Did you check the FSMO roles allready? What was the outcome?

0
 

Author Comment

by:Comex_IT
ID: 33618365
As per screenshot it coes up with Primary etc, i remember running dcpromo a while ago and demoting the server but its still showint in ad sites and services etc
ntdsutil.jpg
0
 

Expert Comment

by:dutchgeek
ID: 33618445
You would have to click yes in the screenshot you send. It will than attempt to seize the role. Afterwards it wil give an overview in the dos box wich states what roles belong to which server.

If thes all belong to your server called "primary" the next thing to check is if the DNS is fully populated on your "primary".

After that I would shut down exchange02. go to one workstation, renew dhcp, reboor machine. logon on to the network. See if all network drives are availeble and if you loinscripts run fine. Check if mail is availeble.

If this all works fine and there are no strange errors in the log file of the "primary" it should be quite safe to move the echange02 from "domain controllers" to the "computers" container in AD.
0
 
LVL 2

Expert Comment

by:tspreeth
ID: 33618461
You can clean up the meta data by the steps given in the link below. http://support.microsoft.com/kb/216498
0
 
LVL 17

Accepted Solution

by:
Premkumar Yogeswaran earned 500 total points
ID: 33619158
Hi Jon,

You can right click and delete the DC directly and then you can run the metadata cleanup..
Please find the microsoft article for Unsuccessful removal of DC form the domain.

http://technet.microsoft.com/en-us/library/cc816907(WS.10).aspx

http://smtp25.blogspot.com/2008/10/server-2008-metadata-cleanup.html

Good Luck.. It will work fine..

Cheers,
Prem
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Let's recap what we learned from yesterday's Skyport Systems webinar.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question