Demote SBS 2008
Hi,
I have a customer, that I installed a new server for (Windows Server 2008 R2). They currently have a SBS2008, that I want to decommission. And this is where it get's tricky. I found a guide how to do it, but and the final step, where I need to demote the SBS 2008, it fails. It says it can't contact a domain controller for the domain, even though the new server is GC and Domain Controller. I transferred all the FSMO roles from the SBS2008 to the new DC, as stated in the document, but when I turn off the SBS2008, nothing is working. So somehow the new DC is still depending on the SBS2008.
Any ideas would be much appreciated :-)
Brgds
Thomas
I have a customer, that I installed a new server for (Windows Server 2008 R2). They currently have a SBS2008, that I want to decommission. And this is where it get's tricky. I found a guide how to do it, but and the final step, where I need to demote the SBS 2008, it fails. It says it can't contact a domain controller for the domain, even though the new server is GC and Domain Controller. I transferred all the FSMO roles from the SBS2008 to the new DC, as stated in the document, but when I turn off the SBS2008, nothing is working. So somehow the new DC is still depending on the SBS2008.
Any ideas would be much appreciated :-)
Brgds
Thomas
Lee W, MVP
BEFORE you did anything, you should have run DCDIAG and NETDIAG and checked the event logs. Once you finished, you should have run them again. Each time correcting the issues found. At this point, you need to run them and determine what's going on. Perhaps the servers are not replicating, perhaps DNS is incorrectly set, perhaps there's something else wrong.
Correct. ALWAYS when doing anything with ANY domain you should be running DCDIAG anyway.
Did you do the following in order?
Join the new server to the domain
Install AD Server role and DCPROMO to make it a DC
Set up/configure DNS and DHCP server services.
Migrate Exchange and other data.
Remove Exchange off SBS2008
Transfer the FSMO Roles to the new server
DCPROMO the SBS2008.
Remove the SBS2008 from the domain.
Did you do the following in order?
Join the new server to the domain
Install AD Server role and DCPROMO to make it a DC
Set up/configure DNS and DHCP server services.
Migrate Exchange and other data.
Remove Exchange off SBS2008
Transfer the FSMO Roles to the new server
DCPROMO the SBS2008.
Remove the SBS2008 from the domain.
ASKER
Hi Neilsr,
I did it exactly in that order. The problem is DCPROMO on the SBS2008. Would it help if I post a DCDIAG to you guys?
I did it exactly in that order. The problem is DCPROMO on the SBS2008. Would it help if I post a DCDIAG to you guys?
IF there are ANY errors in it them yes of course :D
ASKER
And if you want a DCDIAG posted, pls tell me from which server to run it from, and exact command to use :-)
ASKER
Is this command ok?
DCDIAG.exe /a /f:C:\dcdiag.txt
DCDIAG.exe /a /f:C:\dcdiag.txt
I run DCDIAG /c /e /v > DCDIAG-Results.txt from ALL DCs.
ASKER
Ok, here's the DCDIAG results. Indeed it seems to be a DNS issue.
dcdiag.txt
dcdiag.txt
Is MKS2012 the SBS Server or the other way around?
ASKER
No, its the other way around. Thanks.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi leew,
There was no NETLOGON share available on the new DC, but this has been fixed now. Running FRSDiag gives me the following errors:
ERROR on NtFrs_0004.log : "ERROR_RETRY" : <SndCsMain: 37668: 904: S0: 14:17:31> :SR: Cmd 00515fd0, CxtG a9fe0248, WS ERROR_RETRY, To MKSERVER.mkshipping.local Len: (370) [SndFail - Send Penalty]
ERROR on NtFrs_0004.log : "ERROR_RETRY" : <SndCsMain: 37668: 877: S0: 14:21:01> :SR: Cmd 00508510, CxtG a9fe0248, WS ERROR_RETRY, To MKSERVER.mkshipping.local Len: (370) [SndFail - rpc call]
ERROR on NtFrs_0004.log : "ERROR_RETRY" : <SndCsMain: 37668: 904: S0: 14:21:01> :SR: Cmd 00508510, CxtG a9fe0248, WS ERROR_RETRY, To MKSERVER.mkshipping.local Len: (370) [SndFail - Send Penalty]
ERROR on NtFrs_0004.log : "EPT_S_NOT_REGISTERED(This
ERROR on NtFrs_0004.log : "EPT_S_NOT_REGISTERED(This
ERROR on NtFrs_0004.log : "EPT_S_NOT_REGISTERED(This
Found 5038 ERROR_RETRY error(s)! Latest ones (up to 3) listed above
Found 3 EPT_S_NOT_REGISTERED error(s)! Latest ones (up to 3) listed above
Hope this tells you something.
Happy holidays!
Brgds
Thomas
There was no NETLOGON share available on the new DC, but this has been fixed now. Running FRSDiag gives me the following errors:
ERROR on NtFrs_0004.log : "ERROR_RETRY" : <SndCsMain: 37668: 904: S0: 14:17:31> :SR: Cmd 00515fd0, CxtG a9fe0248, WS ERROR_RETRY, To MKSERVER.mkshipping.local Len: (370) [SndFail - Send Penalty]
ERROR on NtFrs_0004.log : "ERROR_RETRY" : <SndCsMain: 37668: 877: S0: 14:21:01> :SR: Cmd 00508510, CxtG a9fe0248, WS ERROR_RETRY, To MKSERVER.mkshipping.local Len: (370) [SndFail - rpc call]
ERROR on NtFrs_0004.log : "ERROR_RETRY" : <SndCsMain: 37668: 904: S0: 14:21:01> :SR: Cmd 00508510, CxtG a9fe0248, WS ERROR_RETRY, To MKSERVER.mkshipping.local Len: (370) [SndFail - Send Penalty]
ERROR on NtFrs_0004.log : "EPT_S_NOT_REGISTERED(This
ERROR on NtFrs_0004.log : "EPT_S_NOT_REGISTERED(This
ERROR on NtFrs_0004.log : "EPT_S_NOT_REGISTERED(This
Found 5038 ERROR_RETRY error(s)! Latest ones (up to 3) listed above
Found 3 EPT_S_NOT_REGISTERED error(s)! Latest ones (up to 3) listed above
Hope this tells you something.
Happy holidays!
Brgds
Thomas
ASKER
As leew stated it was indeed an FRS issue. The logs I just added was actually old logs (wrong use of FRSDiag), and removing this flag turned out a clean log.
After setting an Authorative restore on the SBS2008, and a Non-authorative on the Server 2008 R2, the FRS replication was running as it should, and the SBS2008 have now been demoted succesfully. The only problem was, that the DCPROMO was not able to clean the DNS entries on the Server 2008 R2, so I had to do that manually.
Thanks everyone for the excellent help.
Brgds
Thomas
After setting an Authorative restore on the SBS2008, and a Non-authorative on the Server 2008 R2, the FRS replication was running as it should, and the SBS2008 have now been demoted succesfully. The only problem was, that the DCPROMO was not able to clean the DNS entries on the Server 2008 R2, so I had to do that manually.
Thanks everyone for the excellent help.
Brgds
Thomas