Start Free TrialLog in
Avatar of Starquest321
Starquest321

asked on 

Retire Domain

I need to make some domain controller changes. I need to KILL (properly clean up from AD) fileserver2 and make vmdomain the machine against which all authenticate against and ultimately remove domain4a and domain6 and setup another backup DC machine. What is the best way to do it? (vmdomain is a 2003 server which has been properly installed)
Windows Server 2003
Avatar of undefined
Last Comment
Leon Fester
ASKER CERTIFIED SOLUTION
Avatar of Vinchenzo-the-Second
Vinchenzo-the-Second
Flag of United Kingdom of Great Britain and Northern Ireland image
Blurred text
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
Avatar of Starquest321
Starquest321

ASKER

fileserver2 is a dead DC . . the other 3 are alive and would like to make the vmdomain the main dc.  Here a pic . .
5-20-2011-11-15-34-AM.png
Avatar of Vinchenzo-the-Second
Vinchenzo-the-Second
Flag of United Kingdom of Great Britain and Northern Ireland image
You need to clean metadata for filerserver02, I will upload a doc on how to do this.
Where are your FSMO roles? Which DC are holding them?  Can you run  "netdom /query fsmo" from a command prompt please?
Avatar of Starquest321
Starquest321

ASKER

netdom /query fsmo is an unrecognized filename ..  .from which directory do I need to run it?
Avatar of Vinchenzo-the-Second
Vinchenzo-the-Second
Flag of United Kingdom of Great Britain and Northern Ireland image
Run it on a DC?
Avatar of Starquest321
Starquest321

ASKER

C:\WINDOWS>netdom /query fsmo
'netdom' is not recognized as an internal or external command,
operable program or batch file.
Avatar of Vinchenzo-the-Second
Vinchenzo-the-Second
Flag of United Kingdom of Great Britain and Northern Ireland image
I've attached the file, just delete the .txt and run it from your client.
netdom.exe.txt
SOLUTION
Avatar of Leon Fester
Leon Fester
Flag of South Africa image
Blurred text
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
Avatar of Vinchenzo-the-Second
Vinchenzo-the-Second
Flag of United Kingdom of Great Britain and Northern Ireland image
If the roles are already on vmdomain then you don't need to seize them, I was trying to find out which server they are on currently
Avatar of Starquest321
Starquest321

ASKER

the computer domain4a has them .. . how can I move them?
Avatar of Leon Fester
Leon Fester
Flag of South Africa image
If the roles already exist on VMDOMAIN, they they won't be moved.
If the roles already exist on one of the working DC's, and you try seizing them, then NDTSUTIL will first try to transfer the roles gracefully before seizing them. In this case, if the Role holder can be found then the transfer will be executed.
If FILESERVER2 had the roles, then seizing will be executed and the roles transferred to VMDOMAIN.
Avatar of Leon Fester
Leon Fester
Flag of South Africa image
I've already posted links above on how to move the roles.
Avatar of Vinchenzo-the-Second
Vinchenzo-the-Second
Flag of United Kingdom of Great Britain and Northern Ireland image
Use NTDSUTIL.  Make sure you a member of schema admins
Roles
connections
connect to server vmdomain
q
transfer pdc
transfer rid master
transfer infrastructure master
transfer schema master
transfer domain naming master

I've attached a doc on how to clean fileserver from metadata Clean-up-Active-Directory-after-.docx
Avatar of Vinchenzo-the-Second
Vinchenzo-the-Second
Flag of United Kingdom of Great Britain and Northern Ireland image
Once you've done the above and changes replicated to all DC's, you can then demote the other two cleanly using dcpromo.  i would promote your DC (backup) first before removing the two for resilience
Avatar of Starquest321
Starquest321

ASKER

The DC (backup) is a new installed machine. . so do I still need to promote?
SOLUTION
Avatar of Leon Fester
Leon Fester
Flag of South Africa image
Blurred text
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
Windows Server 2003
Windows Server 2003

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).

129K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
Ask the experts

  • "Invaluable tool for our organization"

    Josh Regalski

  • "Your help has saved me hundreds of hours of internet surfing."

    @fblack61

  • "Just a dang good service!"

    @golferski

  • "Worth every penny."

    Steve Hougom

  • "It’s been a life saver."

    Maria Halt

  • "Best support site I’ve seen!"

    Bob Schneider

  • "I would be lost without them."

    @fblack61

  • "Saved my job multiple times."

    Walt Forbes

  • "I love this site."

    Maria Duwe

  • "Friendly respectful help."

    Andrew Kowtalo

  • "Such top-notch experts."

    @magento

  • "The best money I have ever spent."

    @rwheeler23

  • "Beyond any comprehensible value"

    George Morris

  • "Invaluable tool for our organization"

    Josh Regalski

Read over 600 more reviews

TRUSTED BY

IBM logoIntel logoMicrosoft logoUbisoft logoSAP logo
Qualcomm logoCitrix Systems logoWorkday logoErnst & Young logo
High performer badgeUsers love us badge
LinkedIn logoFacebook logoX logoInstagram logoTikTok logoYouTube logo
© 1996-2023 Experts Exchange, LLC. All rights reserved. Covered by US Patent