Replacing a failed 2008 R2 domain controller

Posted on 2014-07-17
Medium Priority
Last Modified: 2014-07-18
We have three domain controllers in our 2008 R2 domain.  Once of the servers failed -- ad02.  Everything is still operating fine in the domain of course because of the other DCs still operating.  We would like to replace the ad02.

My thinking was that I would install the OS on a new server, patch and service pack it, then reset the AD02 computer account, add the new computer to the domain as AD02, install AD and DNS on it (dcpromo) and be done with it.

Is that the proper procedure?
Question by:BladesAway
LVL 17

Assisted Solution

pjam earned 800 total points
ID: 40201856
If the dead Dc was not DCPromo, I think you need to remove it first.  has been many years since I had that issue, and it was 2003 so may have changed.  i will be interested to see what answer you get myself even though we are now on 2012 domain.
LVL 13

Accepted Solution

Santosh Gupta earned 1200 total points
ID: 40201918

Every thing is Right, but instead of resetting the ad02 account you need to perform Metata data cleanup for ad02.


Author Closing Comment

ID: 40201944
Thank you Experts!
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

LVL 97

Expert Comment

by:Lee W, MVP
ID: 40202219
While you CAN perform a manual metadata cleanup, if your DC is 2008R2 or later, you can just delete the computer account in the domain controllers OU - that now should perform the cleanup for you.

More important question - WHY do you have 3 DCs?  Do you have more than 4000 employees?  Do you have 2 or more sites where each site has at least 20 people?

Author Comment

ID: 40205215
Qty 3 DCs -   1 physical, 1 Virtual and 1 spare virtual because we are paranoid.
LVL 97

Expert Comment

by:Lee W, MVP
ID: 40205235
You should have more than 1, but having 3 is excessive.  If one fails, the other handles things fine... if BOTH fail, that's why you have backups.  I'm paranoid too, but three is excessive unless you have multiple sites and/or a HUGE organization.

Featured Post

Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
Wouldn't it be nice if objects in Active Directory automatically moved into the correct Organizational Units? This is what AutoAD aims to do and as a plus, it automatically creates Sites, Subnets, and Organizational Units.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently changeā€¦
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlleā€¦

578 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question