DC not demoted how to clean AD

[eric romero]

Hi all,

One of ours DCS was removed physycally from the domain and formatted.

I see is still listed under sites&services.

this DC does not hold any FSMO role

What is the procedure to clean this DC out of the AD? when there is no
option to run dcpromo to demote it.

thx

 

[Laura E. Hunter [MVP]]

You'll need to clean up the metadata associated with the re-formatted
server, as listed in the following KB article:

http://support.microsoft.com/default.aspx?scid=kb;EN-US;216498

Hope this helps,

Laura

 

[Jerry G. Young II]

Eric,

You'll need to use the ntdsutil.exe utility. Specifically, you'll need to
make use of the metadata cleanup context of this utility. Below is an
example of how you would navigate ntdsutil.exe to perform a removal of a
server from AD.

C:\>ntdsutil
ntdsutil: metadata cleanup
metadata cleanup: connections
server connections: connect to domain <your domain (e.g.: acme.com)>
Binding to \\acme.com...
Connected to \\acme.com using credentials of locally logged on user
server connections: quit
metadata cleanup: select operation target
select operation target: list sites
Found 2 site(s)
0 - CN=LA,CN=Sites,CN=Configuration,DC=acme,DC=com
1 - CN=NYC,CN=Sites,CN=Configuration,DC=acme,DC=com
select operation target: select site 0
Site - CN=LA,CN=Sites,CN=Configuration,DC=acme,DC=com

No current domain
No current server
No current Naming Context
select operation target: list servers in site
Found 2 server(s)
0 - CN=Inuse,CN=servers,CN=LA,CN=Sites,CN=Configuration,DC=acme,DC=com
1 - CN=Removeme,CN=servers,CN=LA,CN=Sites,CN=Configuration,DC=acme,DC=com

select operation target: select server 1
select operation target: quit
metadata cleanup: remove selected server
metadata cleanup: quit
ntdsutil: quit

I hope this helps.

Cordially yours,
Jerry G. Young II

 

[Jimmy Andersson [MVP]]

See these articles:

Q216498 - How to remove data in the AD after an unsuccessful DC demotion:
http://support.microsoft.com/support/kb/articles/Q216/4/98.ASP

Deleting Objects from Active Directory Using Ldp.exe:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q244344

Domain Controller Server Object Not Removed After Demotion:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q216364

Error Deleting a Domain Controller Account in Active Directory Users and
Computers:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q247393

Remember to allow time for replication and make sure to clean up your DNS
and WINS.

Regards,
/Jimmy