Solved

Demotion of Windows 2003 Server

Posted on 2014-10-25
8
76 Views
Last Modified: 2015-01-06
Hi,

One of the guys in the office switched off one of our DCs which we will be decommissioning soon but he left it off for too long and now we are getting this error when doing a dcpromo:

The operation failed because:

Managing the network session with server.domain.local failed

"Logon Failure: The target account name is incorrect."

What should we do to demote this domain controller, I have turned it off as I'm worried it will cause problems to the working DCs
0
Comment
Question by:minniejp
8 Comments
 
LVL 8

Expert Comment

by:tshearon
ID: 40404018
This is probably because the DC that was shut down held one of your FSMO roles. You can use the following to identify which servers hold your FSMO roles. Just change the role to an acceptable server then try again.

http://support2.microsoft.com/kb/234790/en-us

You are still going to want to try and decommission the old ad server gracefully. After I have the roles transferred I would probably wait until after hours and turn the old ad server back on and demote it then shut it down.
0
 

Author Comment

by:minniejp
ID: 40404103
it doesn't hold any roles, I had already transferred the roles to another server.
0
 
LVL 6

Expert Comment

by:Vipin Vasudevan
ID: 40404152
It might be due the replication issue, Domain controller failed to replicate with other domain controllers since it was powered off for some time. make sure you will bring replication steady before proceeding with demoting to member server. Please "nltest" to verify the this DCs secure channel with PDC and reset it if that broke that might be one issue.

Mostly importantly if this server was powered off for more than 60 day (or configured ), please don't try to bring the replication back in normal, that will create lingering objects in your AD database . shutdown (for ever) this server and remove the metadata of this server from AD (Metadata cleanup using NTDSutil - http://technet.microsoft.com/en-us/library/cc736378(v=ws.10).aspx)
0
 
LVL 6

Expert Comment

by:Vipin Vasudevan
ID: 40404153
nltest /SC_Verify:Doamin.com
nltest /SC_Reset:Domain.com
0
Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

 

Accepted Solution

by:
minniejp earned 0 total points
ID: 40404168
Yes, I do believe it was off for more than 60 days, I have shut it down.  So I should follow:  http://technet.microsoft.com/en-us/library/cc736378(v=ws.10).aspx) to remove it from AD...
0
 
LVL 6

Expert Comment

by:Vipin Vasudevan
ID: 40404416
Yes please.. Thanks
0
 
LVL 10

Expert Comment

by:Pramod Ubhe
ID: 40404686
as it was off for more than 60 days, you are getting that error because computer account password of that DC is expired which gets auto-reset  after 30 days.
try resetting computer account of that DC through ADUC if that does not work, you have the last oftion to forcefully demote it or clean metadata.

http://support.microsoft.com/kb/216393
0
 

Author Closing Comment

by:minniejp
ID: 40533167
Thanks
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of us need to configure DHCP server(s) in their environment. We can do that simply via DHCP console on server or using MMC snap-in on each computer with Administrative Tools installed in a network. But what if we have to configure many DHCP ser…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Delivering innovative fully-managed cloud services for mission-critical applications requires expertise in multiple areas plus vision and commitment. Meet a few of the people behind the quality services of Concerto.
A company’s greatest vulnerability is their email. CEO fraud, ransomware and spear phishing attacks are the no1 threat to a company’s security. Cybercrime is responsible for the largest loss of money to companies today with losses projected to r…

930 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now