none
how to demote old DC but keep the DNS role

    Question

  • We have 2 Windows server 2012 R2 DC and 2 old Windows Server 2003 DC, need to demote the old Windows server 2003 based DCs. The old Windows server 2003 DCs are DNS servers and for many reasons, must go on providing DNS services. My question is can we demote the Windows Server 2003 DCs and leave the servers on with only the DNS role? If so, how can the DNS servers maintain a copy of Active Directory integrated zones?

    Sunday, November 27, 2016 7:02 AM

Answers

  • Hi,

    Yes, DNS does not automatically go away when we demote a DC, it's an optional choose to keep it or not, but any Active Directory–integrated DNS zones that were installed are removed. By default, the AD DS removal process also attempts to remove the Domain Name System (DNS) delegations for the zones that point to the domain controller.If you want to maintain DNS AD integrated zone, we would need to configure the domain controller(s) for zone transfers of the zones you want to transfer on the 2003 servers, add a zone as secondary and specify one of the domain controllers that have the zone transfer enabled.

    Best Regards,

    Alvin Wang


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    • Marked as answer by Shane Paluo Sunday, November 27, 2016 11:54 AM
    Sunday, November 27, 2016 8:16 AM
    Moderator

All replies

  • Hi,

    Yes, DNS does not automatically go away when we demote a DC, it's an optional choose to keep it or not, but any Active Directory–integrated DNS zones that were installed are removed. By default, the AD DS removal process also attempts to remove the Domain Name System (DNS) delegations for the zones that point to the domain controller.If you want to maintain DNS AD integrated zone, we would need to configure the domain controller(s) for zone transfers of the zones you want to transfer on the 2003 servers, add a zone as secondary and specify one of the domain controllers that have the zone transfer enabled.

    Best Regards,

    Alvin Wang


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    • Marked as answer by Shane Paluo Sunday, November 27, 2016 11:54 AM
    Sunday, November 27, 2016 8:16 AM
    Moderator
  • thanks for your quick response and explanation
    Sunday, November 27, 2016 11:53 AM
  • Hi,

    I am glad to hear that the information is helpful to you. If there is anything else we can do for you, please feel free to post in the forum.

    Best Regards,

    Alvin Wang


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, November 28, 2016 1:51 AM
    Moderator