** Deleted Server #1??

  • Thread starter Thread starter Brian Redick
  • Start date Start date
B

Brian Redick

This past Sunday we had a severe hardware failure on our
windows 2000 FSMO master. The one time that I was able to
get it to boot into Windows, I transferred the roles to
another Windows 2000 Adv. server DC in the same site. I
rebuilt the server and named it the same name as before.
Next I ran DC Promo and made it a DC once again. I have
left the roles on the backup DC.

Here-in lies the rub: I thought I moved all 5 roles over
to the backup DC but I missed two. I missed the Domain
Naming Master and the Schema Master. When I check
Replmon.exe I see "** Deleted Server #1". Is there any
way to get rid of this? I ended up seizing the two roles
onto the new FSMO master since they were showing up as
belonging to the GUID of the old FSMO master that I
rebuilt.

Is there anything that I should be concerned about with
this?

I would have restored from tape, but with the failure that
we had, I couldn't be sure that the data on the tape was
good. I would have had to go back at least 4 months to
get a known good backup of the system state.

Thanks,

Brian Redick
KTH Parts Industries Inc.
 
Part of this depends on if when that booted that last time and you
transfered the fsmo roles if that machine was also then gracefull demoted at
the same time or if it was just rebuilt, and when it was rebuilt if the same
name was used. If not demoted first, and the server was re-introduced back
into the doamin with the same name as before, the old metadata from the
"original" one with that name is still there and will cause problems (spn
registrations, dup quids, replication, etc).

If that is the case, then I would recommend doing the following;
demote the new box back to server
run ntdsutil on the "other" dc and do a metadata cleanup to remove the old
account info (article below)
be sure the remaining box is running clean and shows no more references to
either machine, and then you can promote the other one back up again.

If the box was demoted first before it was rebuilt, or it was rebuilt using
a different name, then you should be able to remove the old remains via
adsiedit or ntdsutil, however if you want to clarify which of the above two
situations you have a bit more it would help.

216498 HOW TO: Remove Data in Active Directory After an Unsuccessful Domain
http://support.microsoft.com/?id=216498

--
David Brandt
Microsoft Corporation

This posting is provided "AS IS" with no warranties, and confers no rights.
Please do not send e-mail directly to this alias. This alias is for
newsgroup purposes only.
 
Thanks for the info David!

You confirmed my theory. I almost attempted that process
yesterday, but didn't want to risk more damage. I will
try tonight after users leave for the day.

Thanks,

Brian
 
Back
Top