cuiinc
asked on
AD Sites/Servers Domain Controller deletion
Hi all,
Can someone help shed some light on the role of AD Sites and Services > Sites > Default-First-Site-Name > Servers? I'm assuming these are records of domain controllers.
When I log in to this path, I see 4 servers, 2 of which are my current DCs. The other 2 servers are old DCs, one of which is long gone, and one of which is currently powered off. Can I just delete these 2 old servers? Should I at least power on the existing old DC and run dcpromo on it?
domain functional level = server 2003
1 Primary DC (server 2008 R2)
1 backup DC (server 2008 R2)
Thanks in advance!
Can someone help shed some light on the role of AD Sites and Services > Sites > Default-First-Site-Name > Servers? I'm assuming these are records of domain controllers.
When I log in to this path, I see 4 servers, 2 of which are my current DCs. The other 2 servers are old DCs, one of which is long gone, and one of which is currently powered off. Can I just delete these 2 old servers? Should I at least power on the existing old DC and run dcpromo on it?
domain functional level = server 2003
1 Primary DC (server 2008 R2)
1 backup DC (server 2008 R2)
Thanks in advance!
ASKER
when i'm running dcpromo, it gives me the error: "The operation failed because: Managing the network session with [ourprimaryDC.domain.com] failed. 'Logon failure: the target account name is incorrect.' "
I'm logged into this old DC as our primary administrator, which is a member of the domain admins group. Further, while running dcpromo, i was never prompted to enter any user credentials. The most i was prompted for was to specify a new administrator password. I'm not sure what this is for, but it doesn't matter what i enter here, the AD install wizard still fails. any ideas????
I'm logged into this old DC as our primary administrator, which is a member of the domain admins group. Further, while running dcpromo, i was never prompted to enter any user credentials. The most i was prompted for was to specify a new administrator password. I'm not sure what this is for, but it doesn't matter what i enter here, the AD install wizard still fails. any ideas????
Do you plan to wipe this box or do you want to still use it for something else? You could use dcpromo /forceremoval and then metadata cleanup or try and fight through all the errors
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I'm trying to fix the secure channel between DCs, per your article (http://sandeshdubey.wordpress.com/2011/10/02/secure-channel-between-the-dcs-broken/). Am I correct in assuming "Server1" is my current, working DC, and "Server2" is this old DC, which I'm trying to decomission, and which isn't recognizing or perhaps getting replica info from my PDC?
Also, I'm confused by Step #4:
"4. Reset the Server domain controller account password on Server1 (the PDC
emulator).
To do so, open a command prompt and type: netdom /resetpwd /server:server2
/userd:domain.com\administ rator /passwordd:password, and then press Enter."
Am I REQUIRED to reset the DC acct pswrd for the user "domain.com\administrator" or can this be any Domain Admin acct within our organization? We currently don't have or use domain.com\administrator.. .
Also, I'm confused by Step #4:
"4. Reset the Server domain controller account password on Server1 (the PDC
emulator).
To do so, open a command prompt and type: netdom /resetpwd /server:server2
/userd:domain.com\administ
Am I REQUIRED to reset the DC acct pswrd for the user "domain.com\administrator"
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
http://technet.microsoft.com/en-us/library/cc816907(v=ws.10).aspx
Thanks
Mike