Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Delete distribution groups belongs to dead child domain name - Exchange 2010 SP1

Posted on 2013-06-26
4
Medium Priority
?
672 Views
Last Modified: 2013-06-27
Hi Everyone,
We just remove child domain (exchange and DC’s) and we forgot to move the distributions groups to Parent domain. (The DC’s has been force removal and clean metadata on parent DC).
Now, on parent Exchange Console those distribution lists that belongs to the demoted child domain cannot be edited/or deleted. I basically need to delete those distribution groups.
There is any way to do that? Can I use Adsiedit? If yes where can I find them?

Thanks in advance,
Criss
0
Comment
Question by:cristianezfx
  • 2
  • 2
4 Comments
 
LVL 5

Expert Comment

by:vin_shooter
ID: 39277592
hi,

Is that distribution list name are visible in memberof tab of the user accounts. I believe it should display only the SID in the memberof Tab instead of name since the child domain is demoted.

check the logonserver name of your server in which you're able to view the distribution lists name in your exchange console.

If that logon server is a GC(global catalog) believe the metadata cleanup was not replicated to this DC. You can just uncheck the GC (means remove the GC feature from DC) then wait for 1 day once GC feature is successfully got removed, you can again enable the GC feature in the DC so that you won't see the DL name again in the exchange console.

Share the results..,
0
 

Author Comment

by:cristianezfx
ID: 39277693
Hi Vin,

I checked 1 user that I know is Member of one of the Distribution Groups. under his Member of TAB I can see the display name of the Distribution group like before and not SID.
When you say check the log on server name can you please explain? I have only 1 DC (GC) and 1 Exchange on the parent domain.

Regards,
Criss
0
 
LVL 5

Accepted Solution

by:
vin_shooter earned 1000 total points
ID: 39280497
if it's the case (i mean only 1 DC) are you able to query the DN path of the distribution group.

dsquery group -name "DLNAME"

if you're able to do so then use ADSIedit tool to delete the DL. It will work.

Have you restarted the parent DC after performing MDC, just reboot the DC and check.
0
 

Author Comment

by:cristianezfx
ID: 39280807
I fixed the problem.
I tried to clean metadata again and this time I got this error:
DsRemoveDsDomainW error 0X2015(The directory service can perform the requested operation only on a leaf object.)
I run ntdsutil with partition management option and I deleted the naming contexts for specific child domain.
Once I did this the distribution groups has disappear from Exchange console. Next day when a new GAL has been generated the distribution groups has been cleaned.
Vin, I will give you the credits anyway. You were the only one trying to help me.

Thanks,
Criss
0

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The main intent of this article is to make you aware of ‘Exchange fail to mount’ error, its effects, causes, and solution.
If you have come across a situation where you need to find some EDB mailbox recovery techniques, then here you will find the same. In this article, we will take you through three techniques using which you will be able to perform EDB recovery. You …
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Suggested Courses

971 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question