asked on Remove/Demote DC on Window 2008 R2 from DC on Window 2012 R2 without the access of Window 2008 R2 server
Dear experts,
I have a domain controller running on Window 2012 R2 with Active Directory Integrated zone. I also have another domain controller running on Window 2008 R2. Unfortunately the Window 2008 R2 machine malfunctioned which at least I can still survive on the DC on Window 2012 R2. My concern right now is how to remove/demote the Window 2008 R2 properly without the capability of accessing that machine? Can I remove/demote Window 2008 R2 directly from Window 2012 R2? Thanks
I have a domain controller running on Window 2012 R2 with Active Directory Integrated zone. I also have another domain controller running on Window 2008 R2. Unfortunately the Window 2008 R2 machine malfunctioned which at least I can still survive on the DC on Window 2012 R2. My concern right now is how to remove/demote the Window 2008 R2 properly without the capability of accessing that machine? Can I remove/demote Window 2008 R2 directly from Window 2012 R2? Thanks
Windows Server 2012Windows Server 2008Active DirectoryDNSDomain Controller
Last Comment
Kinderly Wade
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Steps 2 and 3 are unnecessary. Metadata cleanup is automated in Server 2012.
before removing server, make sure all dependencies on that server are addressed such as DHCP and so on.
Then simply shutdown 2k8R2 server physically if it won't allow you to logon or something like that
Then seize FSMO on 2012 R2 DC
Now from ADUC on 2012 R2 DC, remove 2k8R2 DC object from domain controllers OU
remove leftover object from AD sites and services and u should be fine
Then simply shutdown 2k8R2 server physically if it won't allow you to logon or something like that
Then seize FSMO on 2012 R2 DC
Now from ADUC on 2012 R2 DC, remove 2k8R2 DC object from domain controllers OU
remove leftover object from AD sites and services and u should be fine
ASKER
Thanks all. I will try out the NTDUTIL and DCPROMO (I was able to remove one of the old one with the DCPROMO because I was able to resurrect that one from the dead. I just found out there was another one but some how I can't find the other physical server. I will have to use the NTDUTIL and see if I can remove the other without the actual physical server.
ASKER
Thanks all. I will try out the NTDUTIL and DCPROMO (I was able to remove one of the old one with the DCPROMO because I was able to resurrect that one from the dead. I just found out there was another one but some how I can't find the other physical server. I will have to use the NTDUTIL and see if I can remove the other without the actual physical server.