Home
Topics
Microsoft Active Directory
Microsoft Active Directory Design and Administration
Forcing the removal of a Windows Server 2008 domain controller

Forcing the removal of a Windows Server 2008 domain controller

Click here to purchase the entire book.

Scenario/Problem: You are forced into a situation where you cannot gracefully
uninstall Active Directory Domain Services from a DC.

Solution: In Windows Server 2008, you can forcefully remove a DC when it is started in Directory Services Restore Mode. Typically, you force the removal of a DC only if the DC has no connectivity with other DCs.

Because the DC cannot contact other DCs during the operation, the AD DS forest metadata is not automatically updated as it is when a DC is removed normally. Instead, you must manually update the forest metadata after you remove the DC.

To force the removal of a Windows Server 2008 DC, perform the following steps:

Log on to the server using the Directory Services Restore Mode Administrator account.

Click Start,

Requires Free Membership to View

By submitting your registration information to SearchWindowsServer.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchWindowsServer.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

click Run, type dcpromo /forceremoval, and press ENTER.

On the Welcome to the Active Directory Domain Services Installation Wizard page, click Next.

On the Force the Removal of Active Directory Domain Services page, click Next.

On the Administrator Password page, type and confirm a password for the local Administrator account; then click Next.

On the Summary page, click Next.

Restart the server after the removal is complete.

Performing metadata cleanup

Scenario/Problem: You forced the removal of a DC, but data is lingering in
AD DS. You need to remove this lingering data.

Solution: To remove lingering objects from AD DS after a forceful removal of a DC, you must perform metadata cleanup.

To perform a metadata cleanup, perform the following steps:

Log on to a writable domain controller.

Click Start, click Administrative Tools, and click Active Directory Users and Computers.

In the Active Directory Users and Computers console, select the Domain Controllers Organizational Unit (OU).

Right-click the domain controller you want to remove from the metadata, and select Delete.

On the dialog box to confirm the computer object deletion, shown in Figure 3.51, click Yes.

FIGURE 3.51

On the Deleting Domain Controller dialog box, shown in Figure 3.55, select the option This Domain Controller is permanently offline and can no longer be demoted using the Active Directory Domain Services Installation Wizard (DCPROMO). Then click Delete.

FIGURE 3.55 (click to enlarge)

If the domain controller was also a global catalog server, you receive an additional prompt asking whether you want to continue, as shown in Figure 3.56; click Yes.

FIGURE 3.56

If the domain controller holds any operations master roles, an additional prompt displays. Click OK to move the roles to the server(s) DCPROMO recommends, or click Cancel and move the roles manually.

The Active Directory Domain Users and Computers console cleans all metadata for the DC.

ACTIVE DIRECTORY DOMAIN SERVICES 2008 HOW-TO
Performing a staged RODC installation
Forcing the removal of a DC

John Policelli has been honored by Microsoft as an MVP for Directory Services. He has provided thought leadership for some of Canada's largest Active Directory installations, and has also served as an author, technical reviewer, and subject matter expert for more than 50 training, exam writing, press, and whitepaper projects related to Windows Server 2008 Identity and Access Management, networking, and collaboration. His technology certifications include MCTS, MCSA, ITSM, iNet+, Network+, and A+.

Dig Deeper

People who read this also read...
Related tags
- 2008
- active
- controller
- dc
- directory
- domain
- removal
- remove
- server
- windows

Related glossary terms

Terms for Whatis.com - the technology online dictionary
- Active Directory

Show me more

This was first published in July 2009

Join the conversationComment

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

Server Virtualization
- Download the Virtual Data Center E-Zine
  
  Get exclusive access to the Virtual Data Center E-Zine, published monthly by the experts at SearchServerVirtualization.com.
- Ten easy ways to extend virtual host resources on the cheap
  
  Virtual host resources are the lifeblood a virtualization project. Finding ways to extend them will promote growth, even during lean budgetary times.
- Taking the pain out of the Internet Explorer requirement for RHEV 3.0
  
  Despite the hoopla over ditching Windows Server, RHEV 3.0 still requires Internet Explorer. But configuring IE doesn’t need to be a hassle.
Cloud computing
- Download the Private Cloud E-Zine
  
  Get exclusive access to this expert bi-monthly e-zine with essential resources for building your private cloud infrastructure.
- What makes a good cloud provider?
  
  Fair costs and SLAs were once enough to discern top cloud providers. In today’s packed cloud market, vendors must bring more to the table.
- Azure’s identity crisis and other cloud computing sound bites
  
  Microsoft Azure wants to be called Loretta. No, that’s not true. Or is it? Find out that answer and other news overheard in the cloud this past week.
Exchange
- How to prepare Exchange Server 2010 for reusable PowerShell scripts
  
  Creating reusable PowerShell scripts can save admins valuable time. But before you begin writing them, you’ve got to get your Exchange Server 2010 environment in order.
- Download the Exchange Insider E-Zine
  
  Get exclusive access to the Exchange Insider E-Zine, compiled by the independent experts and analysts at SearchExchange.com
- How to fix Exchange 2010 virtual directory re-creation problems
  
  Re-creating virtual directories in Exchange 2010 is a straightforward process, but that doesn't mean problems won't occur. First, check these trouble spots.
SQL Server
- More T-SQL statements in SQL Server 2012 you need to know about
  
  In this second article of a two-part series on new T-SQL statements, expert Serdar Yegulalp reviews command changes to sequencing, date values and more.
- Three new T-SQL commands in SQL Server 2012 to make your life easier
  
  Each release of SQL Server brings changes to Transact SQL. In this tip, expert Serdar Yegulalp gives a walkthrough of tweaks like WITH RESULT SETS for renaming columns and THROW for catching errors.
- Configuring SSRS the easy way
  
  Demystify the SQL Server Reporting Services (SSRS) configuration process. Get an overview of this tool and guidelines for how to set up each screen in SSRS from industry professional Roman Rehak.
Windows IT
- Windows words of the week: Tired and retired
  
  Windows is dead. Long live Windows! This week, industry experts grappled with the future of Microsoft's venerable operating system, one quote at a time.
- Understanding management gets your IT department what it needs
  
  Crafting the perfect pitch can be difficult in a budget-conscious workplace. Knowing how management will react to proposals can help.
- What's in a name? Azure branding confusion and the meaning of 'badware'
  
  Find out why Microsoft had some questioning its mental health and what mosquitos have to do with the ongoing malware fight.
Enterprise Desktop
- Group Policy settings FAQ: Why they matter
  
  Group Policy settings in Microsoft's Active Directory are useful not only for managing user access and applications, but IT admins can also apply them to desktop and server security.
- What place do biometric passwords have in enterprise security?
  
  Traditional passwords and smart cards alone may not be enough to protect data anymore, so biometric passwords could be the next big thing in enterprise security.
- Tuning and tweaking device drivers on the Windows 8 Consumer Preview
  
  The Windows 8 Consumer Preview recognizes most hardware, but you should keep up on OS and chipset developments and review Windows device drivers. Here's where to start.
Virtual Desktop
- NVIDIA's virtualized GPU eliminates VDI graphics performance barriers
  
  VDI isn't known for delivering high-end graphics with great performance, but NVIDIA's virtualized GPU is about to transform virtual desktop graphics.
- Deconstructing the post-PC era: Cloud-based services won't kill Windows
  
  The so-called post-PC era we've entered doesn't necessarily negate the need for Windows. Cloud-based services are all the rage, but we'll still need desktop management.
- Uncovering hidden VDI cost savings: How to boost your VDI ROI
  
  Dig around and you might just find some VDI cost savings you wouldn't expect. Remote access, server discounts and storage consolidation can help you increase VDI ROI.

Latest Headlines

Topics

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Ask a Question

Videos and Podcasts

Research Library

Product Demos

Resource Centers

Blogs

Forcing the removal of a Windows Server 2008 domain controller

Requires Free Membership to View

Dig Deeper

People who read this also read...

Related tags

Related glossary terms

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

Latest News

More from Related TechTarget Sites