NZermeno
asked on
What affect will having a read only 2008 r2 DC powered off have in our environment?
We run 2008 R2k and have 2 writable DCs in our site and 2 read only DCs. I just found out that the two read only DCs are still showing up in AD even though they were removed from the site a year ago.
Weve been having a slow login issue which is why I suspect it could be tied to this issue.
I have no way of knowing if the read only DCs were demoted properly in AD. I dont think they were or else why would they still be showing up in AD when I search for computers in our site and theyre showing up as "Read-only Domain Controller" s?
Our admin doesnt want to remove them yet and Im not sure why not. Couldnt this be causing our slow login issue?
He assures me that new workstations booting up wont be trying to contact these permanently offline DCs. I'm not so sure being as they werent demoted properly. If they were demoted properly I shoudnt see them at all in AD.
Whats your take on this?
Weve been having a slow login issue which is why I suspect it could be tied to this issue.
I have no way of knowing if the read only DCs were demoted properly in AD. I dont think they were or else why would they still be showing up in AD when I search for computers in our site and theyre showing up as "Read-only Domain Controller" s?
Our admin doesnt want to remove them yet and Im not sure why not. Couldnt this be causing our slow login issue?
He assures me that new workstations booting up wont be trying to contact these permanently offline DCs. I'm not so sure being as they werent demoted properly. If they were demoted properly I shoudnt see them at all in AD.
Whats your take on this?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
So after checking DNS, our clients are getting from DHCP the ip address for DNS and WINS of our main two RWDC's named STDC1 and STDC2
The RODCs im concerned about lets say are called OLDSTDC1 and OLDSTDC2.. they are listed in AD when I look in ADUC for computers it says they are read only domain controllers.
Our admin says they arent involved in the replication process as they have been long powered off. Im worried that this is still affecting our network performance somehow and agree that if It were 100% my network id get two backups first and then demote them.
Maybe I shouldnt be worried after all if the clients are getting STDC1 or STDC2 when i do an echo %logonserver%
Thanks again
The RODCs im concerned about lets say are called OLDSTDC1 and OLDSTDC2.. they are listed in AD when I look in ADUC for computers it says they are read only domain controllers.
Our admin says they arent involved in the replication process as they have been long powered off. Im worried that this is still affecting our network performance somehow and agree that if It were 100% my network id get two backups first and then demote them.
Maybe I shouldnt be worried after all if the clients are getting STDC1 or STDC2 when i do an echo %logonserver%
Thanks again
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Agreed... I will continue to ask our admins to remove them. Thanks everyone for your help!
When a DNS server is not available in the Network Adapter Properties it has a timeout period of 2-5 minutes (respectively) before it will make it to the secondary DNS server.
An RODC needs to be treated the same as a RWDC in regards to demoting. The RODC has a read-only copy of the ADDS database from a replicated partner and also Read-only DNS as well. If your clients are pointing to this RODC for DNS this could be the slow issue.
Will.