Solved

Retire Active Directory server

Posted on 2016-09-21
3
56 Views
Last Modified: 2016-10-19
I want to retire the server that has my primary DNS and Active Directory Domain Controllers on it.  It is a 2012 R2 and I have 2 others with DNS and are Active directory Domain Controllers.  I ran the command nltest /dclist:domainname.local and it find all3 domain controllers with the one I want to retire listed with PDC.  I can't find a way to promote one of the other domain controllers to the primary.  How do I do that.  I don't want to remove the Primary until I have promoted on of the others.  

Also is there anything I need to do with the DNS servers.  The one I want to retire was created when the Active Directory role was installed.
0
Comment
Question by:lcfrederickson
3 Comments
 
LVL 16

Expert Comment

by:Ivan
ID: 41809173
Hi,

you need to move PDC role, and any other FSMO role, before you demote it.
How to do it by MS: https://technet.microsoft.com/en-us/library/cc816779(v=ws.10).aspx
or little more with pictures :)
http://www.rebeladmin.com/2014/11/step-by-step-guide-to-migrate-fsmo-roles-from-windows-2003-server-to-windows-2012-r2-server/

As for DNS, check if other servers have forwarders, and how is that configured, so you don't end up with no internet access.

Regards,
Ivan.
0
 
LVL 4

Accepted Solution

by:
El Fierro earned 500 total points
ID: 41809192
did you verify all the FSMO roles?

Run this command:
netDOM /query FSMO

this guide should help you in the right direction
http://www.nogeekleftbehind.com/2013/05/28/powershell-move-ad-fsmo-roles-in-server-2012/
1
 

Author Comment

by:lcfrederickson
ID: 41811012
Ivan--got the PDC role moved to the new server.  The DNS has all the forward lookup Zones that the old server does except the old server lists <servername> and also <servername.domainname.local>  How do I get the servername.local in the new server or do I need to?
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now