none
2016 - Read Only Domain Controller Deleted!! RRS feed

  • Question

  • A problematic domain controller was shutdown to resolve the issue and then deleted from AD, DNS, Sites and Services.  I did not delete it cos I would have dcpromo to remove it if anything but everything seems to be working fine after.

    Now I ran repadmin /syncall/ AdeP from the the DC that holds all the roles and all looks good no errors seen.

    I am trying to attempt to remove the metadata and meeting this error:

    C:\>ntdsutil
    ntdsutil: metadata cleanup
    metadata cleanup: connections
    server connections: connect to server DC-02
    Binding to DC-02 ...
    DsBindWithSpnExW error 0x6ba(The RPC server is unavailable.)
    ldap_search for attribute supportedCapabilities failed with 0x59(89 (Parameter Error).
    )
    server connections:

    How can I remove the metadata?  Any links to step by step which I can use and remove this DC-02 via ADSIedit?

    Much appreciated!




    • Edited by WildPacket Monday, July 15, 2019 2:27 PM
    Monday, July 15, 2019 1:54 PM

Answers

  • Sounds good, you're welcome.

     

    (please don't forget to mark helpful replies as answer)

     

     



    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows Server] Datacenter Management

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees, and confers no rights.


    Tuesday, July 16, 2019 1:41 PM

All replies

  • At the top of the tree in ADUC, right-click and Change Domain Controller. Connect to any other DC besides the one you're deleting / cleaning up.

    https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/ad-ds-metadata-cleanup

     

    (please don't forget to mark helpful replies as answer)

     

     

     



    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows Server] Datacenter Management

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees, and confers no rights.



    Monday, July 15, 2019 2:00 PM
  • Thank you Dave for taking the time to reply.

    I forgot to mention the DC-02 that was deleted was a Read Only Domain Controller?  Does it require a metadata cleanup?

    I already tried this https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/ad-ds-metadata-cleanup but same results.
    • Edited by WildPacket Monday, July 15, 2019 2:28 PM
    Monday, July 15, 2019 2:26 PM
  • You can check if it shows up in dcdiag. If you needed help you can run;

    • Dcdiag /v /c /d /e /s:%computername% >c:\dcdiag.log
    • repadmin /showrepl >C:\repl.txt
    • ipconfig /all > C:\dc1.txt
    • ipconfig /all > C:\dc2.txt

      then put unzipped text files up on OneDrive and share a link.

     

     



    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows Server] Datacenter Management

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees, and confers no rights.

    Monday, July 15, 2019 2:32 PM
  • Hello,
    Thank you for posting in our TechNet forum.

    If we did not forcefully remove the DC, the results of Dave provided commands show AD is health, we don't need perform metadata cleanup.

    If required, we also can use the following script to remove it
    https://gallery.technet.microsoft.com/scriptcenter/d31f091f-2642-4ede-9f97-0e1cc4d577f3



    Best Regards,
    Daisy Zhou

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Tuesday, July 16, 2019 8:55 AM
    Moderator
  • Thank you all for taking the time to assist here.

    I ran Dcdiag /v /c /d /e /s:%computername% >c:\dcdiag.log and the DC-02 did not show up in there so I am guessing we are good here?

    Tuesday, July 16, 2019 1:38 PM
  • Sounds good, you're welcome.

     

    (please don't forget to mark helpful replies as answer)

     

     



    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows Server] Datacenter Management

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees, and confers no rights.


    Tuesday, July 16, 2019 1:41 PM
  • Hi,
    Thank you for your update. I’m very glad that the problem has been solved.
     
    As always, if there is any question in future, we warmly welcome you to post in this forum again. We are happy to assist you!

    Have a nice day!


     
    Best Regards,
    Daisy Zhou

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Thursday, July 18, 2019 8:47 AM
    Moderator