G
Guest
I am running W2K SP4 domian.
I have a DC that I want to replace. On the server I want to replace I moved
all the roles to a different DC, removed DNS WINS GC and DHCP (all of which
I had on another server).
Dcpromo would not remove the machine from the domain. It asked for different
credentials. No matter what I typed for username and password it would not
demote the DC. I tried two different accounts that were in Enterprise Admins
but it would not demote.
I disconnected the DC I wanted to remove from the domain from the network
and followed the directions in Article ID 216498 (How to remove data in
Active Directory after an unsuccessful domain controller demotion).
My domain is working fine, no errors in event logs or anything like that.
If I export with ldifde I see stuff like this...
dn:
DC=..SerialNo-mydcservername.cfps,DC=138.10.in-addr.arpa,CN=MicrosoftDNS,CN=System,DC=cfps
changetype: add
dnsRecord:: CAAAAAUAAAAgAAAAAAAAAAAAAAAAAAAA5qqWs2CrxgE=
dNSTombstoned: TRUE
dc: ..SerialNo-mydcservername.cfps
instanceType: 4
distinguishedName:
DC=..SerialNo-mydcservername.cfps,DC=138.10.in-addr.arpa,CN=MicrosoftDNS,CN=System,DC=
cfps
objectCategory: CN=Dns-Node,CN=Schema,CN=Configuration,DC=cfps
objectClass: dnsNode
objectGUID:: GP1HEQThDEOPXvUlH7xlFg==
name: ..SerialNo-mydcservername.cfps
showInAdvancedViewOnly: TRUE
uSNChanged: 55447
uSNCreated: 24024
whenChanged: 20060719182805.0Z
whenCreated: 20060504003429.0Z
dn: CN=Builtin,DC=cfps
changetype: add
cn: Builtin
creationTime: 125425691599103296
domainReplica: mydcservername
I found this on the Net.
***
A DNS object is just like any other AD object... There is a slight
difference though
When a DNS object is deleted it is NOT AD tombstoned right away like other
objects and it is also not "moved" to the Deleted Objects container of the
naming context it resides it. Unlike any other objects it is invisible in the
DNS GUI and it remains in the location for the DNS Tombstone Lifetime (don't
know what the default is). When it is DNS tombstoned the attribute
dNSTombstoned is set to TRUE. After the DNS Tombstone Lifetime it is AD
tombstoned and "moved" to the Deleted Objects container of the naming context
it resides it.
If the DNS object is "recreated" within the DNS Tombstone Lifetime the old
DNS tombstoned object is revived (same GUID) as the attribute dNSTombstoned
is set to FALSE .
****
Now, I want to replace the DC that I removed with newer hardware.
Can I add the new DC with the same name, IP address and services without
problems?
Is this GUID thing true? Wouldn't be a REALLY BAD thing to use the same GUID
for my new DC?
I have a DC that I want to replace. On the server I want to replace I moved
all the roles to a different DC, removed DNS WINS GC and DHCP (all of which
I had on another server).
Dcpromo would not remove the machine from the domain. It asked for different
credentials. No matter what I typed for username and password it would not
demote the DC. I tried two different accounts that were in Enterprise Admins
but it would not demote.
I disconnected the DC I wanted to remove from the domain from the network
and followed the directions in Article ID 216498 (How to remove data in
Active Directory after an unsuccessful domain controller demotion).
My domain is working fine, no errors in event logs or anything like that.
If I export with ldifde I see stuff like this...
dn:
DC=..SerialNo-mydcservername.cfps,DC=138.10.in-addr.arpa,CN=MicrosoftDNS,CN=System,DC=cfps
changetype: add
dnsRecord:: CAAAAAUAAAAgAAAAAAAAAAAAAAAAAAAA5qqWs2CrxgE=
dNSTombstoned: TRUE
dc: ..SerialNo-mydcservername.cfps
instanceType: 4
distinguishedName:
DC=..SerialNo-mydcservername.cfps,DC=138.10.in-addr.arpa,CN=MicrosoftDNS,CN=System,DC=
cfps
objectCategory: CN=Dns-Node,CN=Schema,CN=Configuration,DC=cfps
objectClass: dnsNode
objectGUID:: GP1HEQThDEOPXvUlH7xlFg==
name: ..SerialNo-mydcservername.cfps
showInAdvancedViewOnly: TRUE
uSNChanged: 55447
uSNCreated: 24024
whenChanged: 20060719182805.0Z
whenCreated: 20060504003429.0Z
dn: CN=Builtin,DC=cfps
changetype: add
cn: Builtin
creationTime: 125425691599103296
domainReplica: mydcservername
I found this on the Net.
***
A DNS object is just like any other AD object... There is a slight
difference though
When a DNS object is deleted it is NOT AD tombstoned right away like other
objects and it is also not "moved" to the Deleted Objects container of the
naming context it resides it. Unlike any other objects it is invisible in the
DNS GUI and it remains in the location for the DNS Tombstone Lifetime (don't
know what the default is). When it is DNS tombstoned the attribute
dNSTombstoned is set to TRUE. After the DNS Tombstone Lifetime it is AD
tombstoned and "moved" to the Deleted Objects container of the naming context
it resides it.
If the DNS object is "recreated" within the DNS Tombstone Lifetime the old
DNS tombstoned object is revived (same GUID) as the attribute dNSTombstoned
is set to FALSE .
****
Now, I want to replace the DC that I removed with newer hardware.
Can I add the new DC with the same name, IP address and services without
problems?
Is this GUID thing true? Wouldn't be a REALLY BAD thing to use the same GUID
for my new DC?