Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 280
  • Last Modified:

Remove a DC from AD

What are the steps to remove a DC from AD? The DC server 2003 is down and will not be repaired. This server will be removed completely from AD.
0
SAM2009
Asked:
SAM2009
  • 4
  • 3
  • 3
  • +2
4 Solutions
 
madhatter5501Commented:
The computer is down and there is no way to login?  What DC had the FMSO roles?
0
 
madhatter5501Commented:
fsmo roles*
0
 [eBook] Windows Nano Server

Download this FREE eBook and learn all you need to get started with Windows Nano Server, including deployment options, remote management
and troubleshooting tips and tricks

 
Mike KlineCommented:
ok so the server can't even be turned on

Step 1:  Metadata cleanup (do this from a good DC)  
http://www.petri.co.il/delete_failed_dcs_from_ad.htm
http://msmvps.com/blogs/ad/archive/2008/12/17/how-to-remove-a-failed-or-offline-dc.aspx

Did that server hold any FSMO roles.  If it did seize those roles
http://www.petri.co.il/seizing_fsmo_roles.htm


...and a Microsoft KB with the official KB articles

http://support.microsoft.com/kb/555846/en-us?p=1
How to remove completely orphaned Domain Controller

Thanks

Mike
0
 
abhijitwaikarCommented:
If that was the FSMO role holder then you need to seize roles to another dc other wise you are good to go with metadata cleanup

Seize role: http://www.petri.co.il/seizing_fsmo_roles.htm
Transfer roles: http://www.petri.co.il/transferring_fsmo_roles.htm
Metadata cleanup: http://www.petri.co.il/delete_failed_dcs_from_ad.htm
0
 
SAM2009Author Commented:
No there is no FSMO role on that down DC.
0
 
madhatter5501Commented:
then you should be set to do the cleanup with the link above
0
 
SAM2009Author Commented:
One more question. Instead of doing metadata cleanup with NTDSUTIL could we do it manually like in ADSIEDIT for exemple?
0
 
Mike KlineCommented:
Not sure but there is really no reason to not use NTDSUTIL.  In windows 2008 and higher the metadata cleanup is even easier.  In those versions if you delete the DC using ADUC then the metadata cleanup happens automatically.


Thanks

Mike
0
 
SAM2009Author Commented:
Should I force Active Directory replication by using "Repadmin.exe" at the end?
0
 
Mike KlineCommented:
You can but it is not necessary.
0
 
SAM2009Author Commented:
Thank you for all!
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

  • 4
  • 3
  • 3
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now