The Acronis Global Cyber Summit 2019 will be held at the Fontainebleau Miami Beach Resort on October 13–16, 2019, and it promises to be the must-attend event for IT infrastructure managers, CIOs, service providers, value-added resellers, ISVs, and developers.
Demoting old remnants of Domain Controller from Active Directory
Hi All,
When I perform the repadmin /replsum command, I can see there is an error pointing to the oldDC12.domain.com ?
And also when I do netdom query dc command the old DC is still there.
How can I safely decommission it without causing any issue with Exchange and AD replication ?
When I perform the repadmin /replsum command, I can see there is an error pointing to the oldDC12.domain.com ?
And also when I do netdom query dc command the old DC is still there.
How can I safely decommission it without causing any issue with Exchange and AD replication ?
Who is Participating?
Experts Exchange Solution brought to you by
Enjoy your complimentary solution view.
Get this solution by purchasing an Individual license!
Start your 7-day free trial.
I wear a lot of hats...
"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.
The replication error.
Pretty much the Domain controller has been turned off or not properly decommissioned. So how do I clean it up safely ?
Pretty much the Domain controller has been turned off or not properly decommissioned. So how do I clean it up safely ?
If that DC is gone for good, you'll need to perform a metadata cleanup to remove it from Active Directory. In the past, this required the use of the Ntdsutil command-line tool, but now the process is greatly simplified (though you can still do it the old way if you prefer). See here for details:
Clean Up Server Metadata
Clean Up Server Metadata
Experts Exchange Solution brought to you by
Your issues matter to us.
Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.
Start your 7-day free trial
Thanks Dave.
So I assume that the normal AD replication and Exchange is not impacted when I remove this old DC remnants.
So I assume that the normal AD replication and Exchange is not impacted when I remove this old DC remnants.
Nope, not at all; in fact, removing that DC will be a good thing. You've probably got replication errors in the Directory Services logs of your other DCs right now, since at least some of them will be replication partners of the dead one. Once you perform the metadata cleanup, those DCs will know that one's gone for good and won't keep trying to replicate from it, so those errors will go away.
Hi DAve,
which path should I choose ?
or do I follow both steps ?
which path should I choose ?
To clean up server metadata by using Active Directory Users and Computersor
To clean up server metadata by using Active Directory Sites and Services
or do I follow both steps ?
Clean it up using AD Users and Computers first. Once that's done, launch AD Sites and Services. The deleted server will probably still be listed there, but it'll be just an empty container - there won't be an NTDS Settings object inside it. Delete the server from there as well.
You may also need to delete DNS records referring to the server after that. In my experience, the metadata cleanup sometimes removes these records but not always, and I'm not sure why it's inconsistent.
You may also need to delete DNS records referring to the server after that. In my experience, the metadata cleanup sometimes removes these records but not always, and I'm not sure why it's inconsistent.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory
From novice to tech pro — start learning today.
Experts Exchange Solution brought to you by
Enjoy your complimentary solution view.
Get this solution by purchasing an Individual license!
Start your 7-day free trial.