DC not demoted how to clean AD

eric romero · Apr 12, 2004

Hi all,

One of ours DCS was removed physycally from the domain and formatted.

I see is still listed under sites&services.

this DC does not hold any FSMO role

What is the procedure to clean this DC out of the AD? when there is no
option to run dcpromo to demote it.

thx

Laura E. Hunter [MVP] · Apr 12, 2004

You'll need to clean up the metadata associated with the re-formatted
server, as listed in the following KB article:

http://support.microsoft.com/default.aspx?scid=kb;EN-US;216498

Hope this helps,

Laura

Jerry G. Young II · Apr 12, 2004

Eric,

You'll need to use the ntdsutil.exe utility. Specifically, you'll need to
make use of the metadata cleanup context of this utility. Below is an
example of how you would navigate ntdsutil.exe to perform a removal of a
server from AD.

C:\>ntdsutil
ntdsutil: metadata cleanup
metadata cleanup: connections
server connections: connect to domain <your domain (e.g.: acme.com)>
Binding to \\acme.com...
Connected to \\acme.com using credentials of locally logged on user
server connections: quit
metadata cleanup: select operation target
select operation target: list sites
Found 2 site(s)
0 - CN=LA,CN=Sites,CN=Configuration,DC=acme,DC=com
1 - CN=NYC,CN=Sites,CN=Configuration,DC=acme,DC=com
select operation target: select site 0
Site - CN=LA,CN=Sites,CN=Configuration,DC=acme,DC=com

No current domain
No current server
No current Naming Context
select operation target: list servers in site
Found 2 server(s)
0 - CN=Inuse,CN=servers,CN=LA,CN=Sites,CN=Configuration,DC=acme,DC=com
1 - CN=Removeme,CN=servers,CN=LA,CN=Sites,CN=Configuration,DC=acme,DC=com

select operation target: select server 1
select operation target: quit
metadata cleanup: remove selected server
metadata cleanup: quit
ntdsutil: quit

I hope this helps.

Cordially yours,
Jerry G. Young II

Jimmy Andersson [MVP] · Apr 13, 2004

See these articles:

Q216498 - How to remove data in the AD after an unsuccessful DC demotion:
http://support.microsoft.com/support/kb/articles/Q216/4/98.ASP

Deleting Objects from Active Directory Using Ldp.exe:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q244344

Domain Controller Server Object Not Removed After Demotion:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q216364

Error Deleting a Domain Controller Account in Active Directory Users and
Computers:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q247393

Remember to allow time for replication and make sure to clean up your DNS
and WINS.

Regards,
/Jimmy

DC not demoted and removed from AD	1	Apr 12, 2004
?re-promoting a demoted DC that used to hold FSMO role	3	Jan 7, 2006
DC restored from backup having AD issues...	2	Mar 27, 2005
Demoted 2000 DC still appears in registry	10	Mar 16, 2005
AD removal from Win2k Domain Controller	3	Dec 5, 2006
DC demotion question	3	May 17, 2007
Removing a Windows 2003 DC from AD	1	Aug 8, 2008
demoted a DC, now a mess.	1	Aug 9, 2004

DC not demoted how to clean AD

eric romero

Laura E. Hunter [MVP]

Jerry G. Young II

Jimmy Andersson [MVP]

Ask a Question

Similar Threads