Solved

Remove subdomain from 2003 Forest

Posted on 2011-09-21
9
606 Views
Last Modified: 2012-06-21
This is how our network was set up...

Main HQ with three branches.  We were going to have the TLD as company.local and then subdomains for each branch including a subdomain for HQ, which would be hq.company.local.  We went so far as to create the subdomain hq.company.local on a 2008 R2 box but never wound up using it.  The DC for hq.company.local has been powered off since April 2011.  AD Sites and Services indicates that AD Connections exist between hq.company.local and the TLD DCs as well as the other subdomain DCs.  We want to now remove the hq.company.local subdomain.  I just powered it back on and tried to run the AD replications to it manually using ADSS, which failed.

Since AD replication is failing to hq.company.local, I'm assuming that if I demote the hq.company.local domain controller that AD throughout the entire company will not reflect that the hq.company.local subdomain has been removed.  

Not quite sure where to start here in getting hq.company.local fully removed from my forest, which is in 2003 mode since all 3 TLD DCs are 2003 x64 Enterprise.  Any suggestions?
0
Comment
Question by:sedberg1
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 36573693
Try demoting if this fails then go through a metadata cleanup to remove the data out of AD.

http://www.petri.co.il/delete_failed_dcs_from_ad.htm
0
 

Author Comment

by:sedberg1
ID: 36573781
I understand that I would demote the hq.company.local domain controller.  However, the metadata cleanup would be done from where?  We have three DCs on the TLD: AD1, AD2, and AD3.  AD2 hosts all 5 FSMO roles.
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 36573802
From any one of the functioning DCs.
0
Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

 

Author Comment

by:sedberg1
ID: 36573960
So I had to force remove AD from the hq.company.local DC since it kept failing at authenticating with the TLD to remove DNS delegation.  The AD connections are still present in ADSS on the TLD.  Should I manually delete those?  Should I do that before or after metadata cleanup?
0
 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 500 total points
ID: 36575310
Do metadata cleanup
0
 

Author Comment

by:sedberg1
ID: 36575541
Ummm...so do I do metadata cleanup before or after deleting the AD connections?
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 36575596
Just do that metadata cleanup this will remove all lingering objects for this subdomain
0
 

Author Comment

by:sedberg1
ID: 36575736
The instructions are for removing a domain controller from a domain that includes more than one domain controller.  My issue is that this is a single domain controller in a subdomain.  If I remove the single domain controller, will it automatically remove the subdomain as well?
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 36576425
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question