Learn how to provision Office 365 tenants, synchronize your on-premise Active Directory, and implement Single Sign-On.
Course Of The Month
7 days, 20 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Removing an Domain Controler Role from Exchange 2010 server
Posted on 2016-08-04
Hello Experts,
I have recently taken over a network and I am looking to raise the functional domain level from 2008 -> 2012.
In a previous admin's wisdom he/she has installed the domain controller role on an exchange 2010 server that has the MAILBOX, CLIENT_ACCESS, HUB_TRANSPORT role installed.
The FSMO rule is on 'DC-01' and other DC's are available EG 'DC-02', DC-03 etc..
About this server 'EX-01'
Exchange 2010 sp3
Windows server 2008
My question 'Can I remove the Domain Controller Role from this server (and get away with it) and have no lasting impact on exchange 2010?' - Will I break my setup?
I have recently taken over a network and I am looking to raise the functional domain level from 2008 -> 2012.
In a previous admin's wisdom he/she has installed the domain controller role on an exchange 2010 server that has the MAILBOX, CLIENT_ACCESS, HUB_TRANSPORT role installed.
The FSMO rule is on 'DC-01' and other DC's are available EG 'DC-02', DC-03 etc..
About this server 'EX-01'
Exchange 2010 sp3
Windows server 2008
My question 'Can I remove the Domain Controller Role from this server (and get away with it) and have no lasting impact on exchange 2010?' - Will I break my setup?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
2
- +3
9 Comments
Active today
You will break your setup. Once a machine is an Exchange Server you CANNOT add or remove DC functionality without breaking exchange or first removing exchange from the server.
Active today
it can be a bit of a nightmare, did it myself, but as long as you take your time you'll be ok. it is time consuming but works with very limited user interruption. I used these to help me out.
https://community.spiceworks.com/topic/428319-removing-dc-roles-from-exchange-2013-server
https://social.technet.microsoft.com/Forums/exchange/en-US/2c28b057-9130-48f8-8705-3051873002f9/remove-domain-controller-role-from-exchange-2010-server?forum=exchangesvrdeploylegacy
Hope it goes well.
https://community.spiceworks.com/topic/428319-removing-dc-roles-from-exchange-2013-server
https://social.technet.microsoft.com/Forums/exchange/en-US/2c28b057-9130-48f8-8705-3051873002f9/remove-domain-controller-role-from-exchange-2010-server?forum=exchangesvrdeploylegacy
Hope it goes well.
Active today
It's foolish in my opinion to put your server in an unsupported state:
Quoting from the second link cmil posted:
Adding/Removing the DC-Role while Exchange is installed, is not supported so forget about your Option 2.
Quoting from the second link cmil posted:
Adding/Removing the DC-Role while Exchange is installed, is not supported so forget about your Option 2.
Active today
Hi Lee,
totally agree that's why I moved all my mailboxes off on to a new Exchange server, took the DC role off it then decommissioned the old server.
Just because you can do it does not mean you should!
Many Thanks
Christopher
totally agree that's why I moved all my mailboxes off on to a new Exchange server, took the DC role off it then decommissioned the old server.
Just because you can do it does not mean you should!
Many Thanks
Christopher
Active today
Running DC promo to demote a DC with Exchange on it makes a lot of changes to DNS that break that server's ability to advertise itself as an Exchange server. It won't irreparably break Exchange, but it will break it pretty good. And you'll never be able to get help from Microsoft with that server again (This is more of a secondary issue considering how most of my interactions with MS support have gone).
Thanks guys. Just wanted clarification on this issue.
It's a big risk to the business since this is a physical server.
If this was in a virtual environment, I might have risked it. (but even then I would imagine there could still be issues.)
I have decided just to build an exchange 2013 server and migrate to 'hybrid exchange'.
Less risk to the business and more functionality gained.
Just ruins a deadline for me. :)
It's a big risk to the business since this is a physical server.
If this was in a virtual environment, I might have risked it. (but even then I would imagine there could still be issues.)
I have decided just to build an exchange 2013 server and migrate to 'hybrid exchange'.
Less risk to the business and more functionality gained.
Just ruins a deadline for me. :)
Active today
I understand your reasoning for doing this but you may end up breaking more things in the long run..
You could stand up a second Exchange 2010 server and migration all MDX's to it then decommission the old one
You could stand up a second Exchange 2010 server and migration all MDX's to it then decommission the old one
Featured Post
We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Suggested Solutions
| Title | # Comments | Views | Activity |
|---|---|---|---|
| user Log on times in AD | 5 | 39 | |
| Compatibility view list registry key | 1 | 41 | |
| Configure maximum recipients in MS EXchange 2016 | 2 | 64 | |
| Exchange Server 2003 Supportability Matrix | 3 | 16 |
A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
A company’s centralized system that manages user data, security, and distributed resources is often a focus of criminal attention. Active Directory (AD) is no exception. In truth, it’s even more likely to be targeted due to the number of companies …
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it.
The vast majority of email clients display l…
This video discusses moving either the default database or any database to a new volume.
Suggested Courses
Course of the Month7 days, 20 hours left to enroll
739 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.