none
Remove a dead domain from trust list in a 2003 forest

    Question

  • Greetings,

    I'm the admin of a forest. It is a 2003 server based forest with XP workstations.
    It has multiple domains.

    Two of our domains are dead. The DC's of those two domains are tombstoned and physically removed, so they are no longer connected.

    However, the domains are still showing in the forest trusts. I'm trying to figure out how to remove them from the forest trust.

    Normally I would not worry about them since its not causing any issues, but we are wanting to rebuild (from scratch) the two removed domains and re-attach them to the forest.

    Since the rebuilt domains will have different SIDs, I don't want the old references to mess things up.

    Need advise.



    /r

    Joe Hanchey

    Tuesday, May 06, 2014 1:41 PM

Answers

  • Amy and all,

    I went to the following link:

    http://msmvps.com/blogs/acefekay/archive/2010/10/05/complete-step-by-step-to-remove-an-orphaned-domain-controller.aspx

    I followed the instructions from this link. Once I did that, I was able to following the instructions first posted by Amy. All done! Now to rebuild the two domains.

    wish me luck!

    /r

    Joe

    Monday, May 12, 2014 5:27 PM

All replies

  • Hi Joe,

    Since these domains were forcefully removed, I suggest you use NTDSUTIL command line tool to perform metadata cleanup.

    Please refer to this KB article below for more detailed steps:

    How to remove orphaned domains from Active Directory

    http://support.microsoft.com/kb/230306

    I hope this helps.

    Amy

    Wednesday, May 07, 2014 8:45 AM
    Moderator
  • Amy,

    Thanks for the reply. I went through the steps for the metadata cleanup and got the following error: DsRemoveDsDomainW error 0x2162(The requested domain could not be deleted because there exist domain controllers that still host this domain.)

    Please be aware that the domains still show in the trusted list. However, the DC are indeed powered down and disconnected. I will be doing some google-ing on this error. But if you have an answer in the mean time, I'm all ears and appreciate all the help.


    /r

    Joe Hanchey
    Monday, May 12, 2014 1:19 PM
  • Amy and all,

    I went to the following link:

    http://msmvps.com/blogs/acefekay/archive/2010/10/05/complete-step-by-step-to-remove-an-orphaned-domain-controller.aspx

    I followed the instructions from this link. Once I did that, I was able to following the instructions first posted by Amy. All done! Now to rebuild the two domains.

    wish me luck!

    /r

    Joe

    Monday, May 12, 2014 5:27 PM
  • Hi Joe,

    Glad to hear that it's working now!

    Please feel free to let us know if there are any further requirements.

    Regards,

    Amy

    Tuesday, May 13, 2014 2:36 AM
    Moderator