[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 456
  • Last Modified:

Lost domain controller

We started with two domain controllers both Windows 2000 Server.
Server 1: DC, Schema master, IM
Server 2: Global master

Server 1 was rebuilt some time ago and the Active Directory service and features was not restored.

It appears that our GC has been our serving our network logins, etc. since then

How do we fix this situation if we don't have a backup of the original DC?
Can the GC be used to re create a new DC?
0
alatham23
Asked:
alatham23
  • 4
  • 4
1 Solution
 
Mike KlineCommented:
The GC is a DC also,  

So server 1 is or is not a DC,  confused because you list it as a DC but then say "features were not restored"

Thanks

Mike
0
 
alatham23Author Commented:
Sorry, I know terminology gets in the way sometimes, especially if I'm not consistent.

Server 1 started as a DC but was rebuilt not as a DC

So our network is in a current state of only having a GC to service AD requests.
0
 
Mike KlineCommented:
So your GC is also a DC,

Can you run

netdom /query fsmo

Does this DC hold the FSMO roles?

Was server1 gracefully demoted?

Thanks

Mike
0
Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

 
alatham23Author Commented:
c:\Program Files\Support Tools>NETDOM QUERY FSMO
Schema owner                 westinexch.westinfoods.com
Domain role owner           westinexch.westinfoods.com
PDC role                          westinexch.westinfoods.com
RID pool manager            westinexch.westinfoods.com
Infrastructure owner        westinexch.westinfoods.com
The command completed successfully.

I was told it that server1 was demoted properly.

So do these results show that this server is the DC and not just a GC?
0
 
Mike KlineCommented:
Yes,  every GC is a DC. You can't have a GC on a non-domain controller.  Is that westinexch your DC2

Thanks

Mike
0
 
alatham23Author Commented:
Based on our discussion I believe I do not have an issue/problem as I previously stated in the oringal question.
0
 
Mike KlineCommented:
Well you could.  Check in DNS to see if there are records associated with your old DC.  Is the old DC listed in sites and services.

The bigger issues is running with only one DC.  Right now you have no insurance if DC2 goes down.
0
 
alatham23Author Commented:
We will correct these situations.  Thanks for help and advice.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now