I took over support for a small non-profit. The old IT company was hosting their domain controller (OldDC). I installed a new DC (NewDC) on-premise with 2012 Foundation, joined it to the domain and made it a domain controller. We changed Internet providers about the same time. The old IT provider could not get the VPN to connect, after changing the Internet provider (that one still stumps me). OldDC is still a domain controller in my AD, but I can no longer access it.
If I go to ADUC and select to delete OldDC, i get the "you are attempting to delete a Domain Controller without running the removal wizard..." message. I check the box for Delete this DC anyway and click the Delete button. Here's the message I get.
Windows cannot delete object
LDAP://NewDC.mydomain.org/CN=OldDC,OU=Domain Controllers,DC=mydomain,DC=org because:
Access is denied
I can't run a DCPROMO /FORCEREMOVAL because that's now incorporated into Server Manager.
I ran NTDSUTIL and when I listed the servers in site, it only lists NewDC. I tried to select server OldDC, anyway, but it said invalid syntax.
Can anyone offer a suggestion on how to remove this old server?
Our community of experts have been thoroughly vetted for their expertise and industry experience.
The Most Valuable Expert award recognizes technology experts who passionately share their knowledge with the community, demonstrate the core values of this platform, and go the extra mile in all aspects of their contributions. This award is based off of nominations by EE users and experts. Multiple MVEs may be awarded each year.
The Distinguished Expert awards are presented to the top veteran and rookie experts to earn the most points in the top 50 topics.