After recently demoting a domain controller, I noticed that the NS record for this server was still listed in our forward and reverse lookup zones.
Upon closer inspection, I’m noticing other old NS records for DC’s that were demoted years ago as well.
From what I am reading, it looks like the tool dnscmd can be used to delete the records across the DC’s on our WAN.
Below is my site info:
Forward lookup zone = home.com
Reverse lookup zone = 192.168.1.x
DC name = dc1
Below is the command syntax for using dnscmd / recorddelete:
dnscmd /recorddelete ZoneName NodeName RRType RRData
Using the info above, I am unsure if I am interpreting everything correctly – and I am unsure of what info is used in place of RRData.
I could use some direction in getting my syntax down before running the command – any help would be greatly appreciated.