Help! I need a simple answer

  • Thread starter Thread starter Bill
  • Start date Start date
B

Bill

I have two DC's in a site that are giving me fits with
replication. I think that the initial setup was wrong.
Can I rip AD off (I know that it will be /forceremoval
already) and re-install AD with the same DC name? It
should get a new GUID, but what is still in AD that may
confuse replication?
I can use ntdsutils to do the metadata cleanup, but when
I did that earlier, I had objects still out there in
several places.

Thanks,
Bill
 
As you found doing a metadata cleanup in ntdsutil is only
part of the process of removing a domain controller from
AD. After the metadata cleanup run adsiedit.msc and
drill down to the Domain Controllers container and the
expand the server object. Right click on the object under
the server and press delete. Right click on the server
object and press delete. Then close adsiedit.

Next look in Sites and services and ensure that the
object is removed if not then right click on it and
delete it.

Allow time for replication.

You also need to go into DNS and remove any remnants of
the DC, unless you plan on giving the new DC the same
name and IP.

ts with
 
Even if you plan on giving the new DC the same name you still have to delete
the GUID -> CNAME mapping of the old DC (located in the _msdcs domain/
folder). The other entries - _dc, _gc, etc. can all stay where they are.

--


Paul Williams
_______________________________
http://www.msresource.net


Join us in our free, public forum:
http://forums.msresource.net
_______________________________
As you found doing a metadata cleanup in ntdsutil is only
part of the process of removing a domain controller from
AD. After the metadata cleanup run adsiedit.msc and
drill down to the Domain Controllers container and the
expand the server object. Right click on the object under
the server and press delete. Right click on the server
object and press delete. Then close adsiedit.

Next look in Sites and services and ensure that the
object is removed if not then right click on it and
delete it.

Allow time for replication.

You also need to go into DNS and remove any remnants of
the DC, unless you plan on giving the new DC the same
name and IP.

ts with
 
Back
Top