Taking the primary domain controller offline to rebuild it

My goal is to take the in-place upgraded PDC offline to rebuild it, and in the interim, use the second and third freshly built 2003 DCs to handle services.

Requires Free Membership to View

- Is there any relevance to the primary or secondary 'role' in AD integrated DNS? I didn't think so but was not sure.
- Has anyone had any problems with removing a DC from a domain and trying to re-add it with the same name at a later date?
- What pitfalls am I potentially looking at with this scenario?

If a DNS Zone is Active Directory integrated, it can neither be primary or secondary for the zone. With AD Integrated all DNS servers are peers.

Yes, you will have a problem if you do not follow some specific procedures:

  • Move all of the Flexible Single Master Operations Roles (FSMO Roles) from the NT PDC upgraded machine to one of the other DCs.
  • Demote the PDC Upgraded machine to be only a member server
  • Remove the PDC upgraded machine from the domain and reboot. It is now a stand-alone server.
  • Rebuild the system
  • Add to domain
  • Upgrade to a DC in the Domain
  • Move FSMOs back if you desire.

Follow the procedure and there should not be any pitfalls. The best way to move FSMOs is by using NTDSUTIL from the SUPPORT TOOLS.;en-us;255504

This was first published in August 2012

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: