Unable to un-promote DC controller from AD

G

Guest

I have a domain in AD that only had 1 DC. I tried to add a second and went
thru the process. At the end of completion it gave an error about not being
able to install the administrative tools because of an installer error. The
pc won't login to the domain except with only the administrative account. I
figure I would try and demote the dc but when I run the dcpromo it acts as
though it is the only computer in the domain and forest and will only let me
check that box. I cannot do that or it will possibly ruin my whole domain.
Any thoughts from anyone?

What would happen if I took a different pc with the same computer name and
tried to dcpromo it to the domain as a controller and then demoted?
 
P

Paul Bergson

If you need to remove this dc from the domain you will have to do a dcpromo
/forceremoval

You should then run diagnostics against your dc as well as check to make
sure there are no issues with your metadata. It sounsd like you selected a
wrong option in the intitial promotion of the second dc though so the
metadata probably won't be needed. For starters though run diagnostics
against the working dc, see below.

Cleaning up metadata
http://support.microsoft.com/?id=216498



To run diagnostics against your Active Directory domain:

If you don't have the tools installed, install them from your server install
disk.
d:\support\tools\setup.exe

Run dcdiag and netdiag in verbose mode.

If you download a gui script I wrote it should be simple to set and run. It
also has the option to run individual tests without having to learn all the
switch options. The details will be output in notepad text files that pop
up automagically.

The script is at http://pbbergs.dynu.com/windows/windows.htm, download it
and save it to c:\program files\support tools\

Just select both dcdiag and netdiag make sure verbose is set. (Leave the
default settings for dcdiag as set when selected)

When complete search for fail, error and warning messages.
 
P

Paul Bergson

My server is down. Will be for a bit I have switched over to a new provider
and it isn't staying up real well. I'm not pleased.

Just do this:
If you don't have the tools installed load them from your install disk.

d:\i386\adminpak.msi (Server tools for remote management of servers)
d:\support\tools\setup.exe (Server Utilities)

Copy the following to a cmd file and run look for error, fail and warn
within the reports. Post any errors you can't figure out. make sure you
modify DC_Name to the name of a dc in your domain.

@echo off

c:
cd \
cd "program files\support tools"

del c:\dcdiag.log
dcdiag /e /c /v /s:DC_Name /f:c:\dcdiag.log
start c:\dcdiag.log

netdiag.exe /v > c:\netdiag.log
start c:\netdiag.log

repadmin.exe /showrepl dc* /verbose /all /intersite > c:\repl.txt
start c:\repl.txt


See for more details

http://www.microsoft.com/technet/pr...Ref/1d4ce93c-54f2-4069-a708-251509c38837.mspx
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

AD2008 Root privileges required to promote child DC? 3
Remove orphaned Win2K DC from AD 2
Domain controller demotion 1
howto promote additional domain controller to domain controller 4
Domain Controller Issue - Urgent Help 8
Need to demote an old DC and promote a new DC 4
adding a Windows 2003 server and promote to DC in Windows 2000 AD/Domain 4
manually remove DC server from AD 5

Top