failed to install AD binaries

I am running windows server 2008 R2, and I'm trying to demote the DC to reformat and reinstall, but I get the following error (see attachment) when I do the dcpromo.

When I go to server manager, it says "error" under roles.

I know I installed the AD and DNS roles, so something is wrong this the installation.

Any way I can get the demotion to work?
dcpromofailed.png
DanNetwork EngineerAsked:
Who is Participating?
 
Mike KlineCommented:
Is this your last DC?  I haven't seen this error and the reason I ask is because you could do a dcpromo /forceremoval and then do a metadata cleanup of the DC in AD.

In 2008 metadata cleanup is much easier (just delete the computer object in ADUC...from a good DC)

Thanks

Mike
0
 
DanNetwork EngineerAuthor Commented:
No, it's not my last DC.  I have 3 DCs, all are on win 2008 R2.  It's my ONLY physical DC, the other two are Hyper V, VMs.  So what is the work around?

so what does the dcpromo /forceremobal do?  

When I do a nslookup from another PC, I noticed the nslook went to this DC that I'm trying to remove, which I will reformat and reinstall and promo again, but it will be offline for a few hours, so will that cause an issue to current PCs and network, as it's set as the primary DNS on in my DHCP.
0
 
Mike KlineCommented:
It forces the removal without trying to replicate changes.  More on that here

http://kpytko.wordpress.com/2011/08/30/decommissioning-broken-domain-controller/

Does this box hold any FSMO roles?

Thanks

Mike
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
Life1430Sr EngineerCommented:
As suggested in your previous post perform below in order

Seize FSMO role:
http://www.petri.co.il/seizing_fsmo_roles.htm

Forcefull removal of DC:
http://support.microsoft.com/kb/332199

Metadata cleanup:
http://www.petri.co.il/delete_failed_dcs_from_ad.htm
0
 
DanNetwork EngineerAuthor Commented:
how can I tell if this DC has hte FSMO roles or not, as it might now?  is there a command I can run to tell that, because if it doesn't, so I can skip to step 2.
0
 
Life1430Sr EngineerCommented:
run
netdom query fsmo

Open in new window

on any of the working DC
0
 
DanNetwork EngineerAuthor Commented:
so how do I move all the roles over to a new server, I was able to move one of them, but not sure how to do the rest of them?
fsmo.jpg
0
 
Life1430Sr EngineerCommented:
Hi

Use below link to transfer all other roles in gui

http://kpytko.wordpress.com/2011/08/26/transferring-fsmo-roles-from-gui/
0
 
DanNetwork EngineerAuthor Commented:
sweet, i moved all my 5 roles over to my other DC.  So now I guess I can just remove it from the domains and truests, and from users and computers, and I should be good, right?

Then I will reformat and I will assign it the same name, IP address, etc... Will that be a problem?
0
 
Life1430Sr EngineerCommented:
I would rather be cautious and will try to remove DC role gracefuly ...If not possible then force fuly ..After forceremoval will perform metadata cleanup
0
 
DanNetwork EngineerAuthor Commented:
the forceremoval does not work, it gives me that error message.  So I guess I will perform the metadata cleanup?  Should I have the bad DC running, or shut down?
0
 
Life1430Sr EngineerCommented:
Shutdown the Culprit DC and perform metadata cleanup then perform format /Resinstall
0
 
DanNetwork EngineerAuthor Commented:
i wiped the box, reinstalled the OS and am trying to dcpromo it, and now I get this error, it's attached.

Could this be because I am using the same name as I did before?  Do I have to change the name to something not used before?
dcpromoerror.jpg
0
 
Life1430Sr EngineerCommented:
Make sure your DNS is pointing to correct internal DNS server in NIC card and user ID you are using have sufficient rights i.e Administrator
0
 
DanNetwork EngineerAuthor Commented:
i had the primary DNS pointing to itself, but I didn't realize that it's not a DNS server yet.
Now I get this error.

I have to leave for a few hours, I'll work on this tonight.
dnserror.jpg
0
 
Life1430Sr EngineerCommented:
What after clicking "OK" if it restarts then make it a member server first hope you have deleted the Old DC from sites and services & Domain Controller OU and Name server list
0
 
DanNetwork EngineerAuthor Commented:
Thanks guys for your help, after reformatting, I also had to delete all entries in AD and DNS for this server, and then the error message went away.  I'm all good to go now.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.