Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!
Demoting old remnants of Domain Controller from Active Directory
Hi All,
When I perform the repadmin /replsum command, I can see there is an error pointing to the oldDC12.domain.com ?
And also when I do netdom query dc command the old DC is still there.
How can I safely decommission it without causing any issue with Exchange and AD replication ?
When I perform the repadmin /replsum command, I can see there is an error pointing to the oldDC12.domain.com ?
And also when I do netdom query dc command the old DC is still there.
How can I safely decommission it without causing any issue with Exchange and AD replication ?
Do more with
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
The replication error.
Pretty much the Domain controller has been turned off or not properly decommissioned. So how do I clean it up safely ?
Pretty much the Domain controller has been turned off or not properly decommissioned. So how do I clean it up safely ?
If that DC is gone for good, you'll need to perform a metadata cleanup to remove it from Active Directory. In the past, this required the use of the Ntdsutil command-line tool, but now the process is greatly simplified (though you can still do it the old way if you prefer). See here for details:
Clean Up Server Metadata
Clean Up Server Metadata
Thanks Dave.
So I assume that the normal AD replication and Exchange is not impacted when I remove this old DC remnants.
So I assume that the normal AD replication and Exchange is not impacted when I remove this old DC remnants.
Nope, not at all; in fact, removing that DC will be a good thing. You've probably got replication errors in the Directory Services logs of your other DCs right now, since at least some of them will be replication partners of the dead one. Once you perform the metadata cleanup, those DCs will know that one's gone for good and won't keep trying to replicate from it, so those errors will go away.
Hi DAve,
which path should I choose ?
or do I follow both steps ?
which path should I choose ?
To clean up server metadata by using Active Directory Users and Computersor
To clean up server metadata by using Active Directory Sites and Services
or do I follow both steps ?
Clean it up using AD Users and Computers first. Once that's done, launch AD Sites and Services. The deleted server will probably still be listed there, but it'll be just an empty container - there won't be an NTDS Settings object inside it. Delete the server from there as well.
You may also need to delete DNS records referring to the server after that. In my experience, the metadata cleanup sometimes removes these records but not always, and I'm not sure why it's inconsistent.
You may also need to delete DNS records referring to the server after that. In my experience, the metadata cleanup sometimes removes these records but not always, and I'm not sure why it's inconsistent.
Premium Content
You need an Expert Office subscription to comment.Start Free Trial