Solved

sysvol and netlogon missing but i still have old domain controller

Posted on 2016-07-16
3
28 Views
Last Modified: 2016-08-01
My scenario is this, I started with a network of two 2008 servers acting as domain controllers.  I added a 2012r2 server and then transferred the FSMO roles to it and set it as a global catalog server and then removed the two 2008 servers from being global catalog servers.  I then demoted the first of the two servers.  At this point I noticed the 2012r2 server did not have the sysvol and netlogon directory so I pointed DNS to it and had it assume FSMO roles.  Active directory is working on my network again, but I still have the 2012r2 server that is not working properly.  I have found articles about an authoritive and non-authoritive restore but I don't want to force this server into production if it isn't necessary.  I would rather do it via normal processes.

My question is this, can I simply demote it and promote it again and see if it will work properly on a second attempt?

can anyone explain the risks of using an authoritive or non-authoritive restore?
0
Comment
Question by:AdvNetSol
  • 2
3 Comments
 
LVL 74

Accepted Solution

by:
Jeffrey Kane - TechSoEasy earned 500 total points
Comment Utility
If you have a solid working Server 2008 DC and the 2012 is just not working right, yes, you can demote it and remove it from the domain and then re-do -- but if you do that I would fully reinstall as well to get new SIDs.

But... this has happened to me a couple of times and it's not too difficult to just do a non-authoritative synchronization to get it working correctly.   Instructions for that are here:

https://support.microsoft.com/en-us/kb/2218556
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
Comment Utility
By the way... don't think of non-authoritative as being worse... it's actually the default directory services restore mode.  What it means is that data doesn't get overwritten -- whereas an Authoritative restore/sync will overwrite data even if that data is newer than what is being copied.
0
 

Author Closing Comment

by:AdvNetSol
Comment Utility
I did end up demoting and repromoting the server but that didn't fix the problem.  the ultimate solution was to perform an authoritive restore and manually sharing the sysvol folder (it didn't work until the sysvol was manually shared at which point netlogon automatically shared...within seconds)  Very strange resolution but everything has been perfect on the domain since.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

I don't know if many of you have made the great mistake of using the Cisco Thin Client model with the management software VXC. If you have then you are probably more then familiar with the incredibly clunky interface, the numerous work arounds, and …
Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now