Remove old DCs from AD

Awhile back we upgraded out domain from 2003R2 to 2012R2.
The old DCs were demoted using DCpromo.
However, they are still listed in AD Computers.
When I try to manually delete them, I get the message;
==============
 The object SRV2003 contains other objects. Do you want to remove the object SRV2003 and all the objects it contains?
    If you cancel the removal in process any objects removed are not restored.

    WARNING: If you check the box "Use server control for removal of subtrees" all objects in the subtree are removed, including objects which are protected against removal, and the removal cannot be undone.
=============

I turned on the view computers as containers, but see nothing inside of them. Is it safe to delete these objects while checking the box "Use server control for removal of subtrees" or could this have an adverse effect on my current Domain/DCs?
keamalsaSystem AdministratorAsked:
Who is Participating?
 
Hypercat (Deb)Connect With a Mentor Commented:
It's safe to delete those objects.  I've seen that message many times in the past; not sure exactly what causes the message to appear, but I've never seen any adverse effects of deleting the objects.  If you want to be extra certain, you can use adsiedit.msc instead of ADUC to check the objects and make sure there are no subcontainers with any objects in them.
1
 
FOXConnect With a Mentor Active Directory/Exchange EngineerCommented:
If you have already successfully demoted it, it is not talking to any of the domain controllers
Make sure any traces of the 2003 DC are  deleted from AD, AD Sites and Services, DNS(forward and reverse lookups)
0
 
keamalsaSystem AdministratorAuthor Commented:
So, to be clear, It's OK to delete it while checking the box "Use server control for removal of subtrees" ?
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 
FOXActive Directory/Exchange EngineerCommented:
AS hypercat suggested, open ASiedit and see if there are any valuable objects below it.  I doubt it.  If you see nothing delete away.
0
 
keamalsaSystem AdministratorAuthor Commented:
Opened ADSi Edit, and there are folders under the DC object folder named CN=IASIdentity, but nothing inside of those folders.
0
 
Hypercat (Deb)Connect With a Mentor Commented:
Yes, that's OK to delete. It looks like Microsoft Internet Authentication Service was once in use. I'm assuming that's not longer the case and/or that server particularly isn't being used for that purpose.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.