Starquest321
asked on
2008 DCpromo fails
Looks like the dcpromo on a 2008 fails in a mixed environment. I found the same problem by a different user:
https://www.experts-exchange.com/questions/26234271/DCPromo-Demoting-2008-R2-Errors-Out.html?sfQueryTermInfo=1+10+30+determin+float+master+oper+ownership+role+singl+unabl
And he eventually had to force the removal and do the cleanup.
Is this the only answer?
I checked the ALL the FSMO roles are held by another domain .. .domain1 and I am removing domain2
https://www.experts-exchange.com/questions/26234271/DCPromo-Demoting-2008-R2-Errors-Out.html?sfQueryTermInfo=1+10+30+determin+float+master+oper+ownership+role+singl+unabl
And he eventually had to force the removal and do the cleanup.
Is this the only answer?
I checked the ALL the FSMO roles are held by another domain .. .domain1 and I am removing domain2
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
DC1: OS2003 - HOLD ALL 5 roles
DC2: OS2008r2
DC3: OS2003
If I do a force remove what are the implication of that?
DC2: OS2008r2
DC3: OS2003
If I do a force remove what are the implication of that?
first make sure that you remove the server details of require server using metadata cleanup on the main server once completed then you can go ahead using force removal which has no implications, Yes untill you are sure that formal DCPROMO cannot work!
ASKER
"server details of require server " - sorry that did not make sense. Can you explain?
ASKER
I ran a DCDIAG on domain2 the server I am try demote and got this error:
dcdiag /q
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=ForestDnsZones,DC=domai
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=DomainDnsZones,DC=domai
......................... DOMAIN2 failed test NCSecDesc
What is that?
dcdiag /q
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=ForestDnsZones,DC=domai
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=DomainDnsZones,DC=domai
......................... DOMAIN2 failed test NCSecDesc
What is that?
server details i mean here is when you go through metadata cleanup you will see the DC details so just remove the required details from the Domain information
ASKER
But which details to remove?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER