demoted domain controller cannot be removed from list of domain controllers

  • Thread starter Thread starter Gary
  • Start date Start date
G

Gary

Guest
I was having all kinds of active directory issues, so I finally demoted our
windows 2000 server. we have a windows 2003 server that has all the FSMO
roles and is global catalog server.
several other servers are member servers only.

dcpromo didnt work initially, so I had to force it, then followed the
instructions for cleaing up metadata.

I did all of that, but when I went to add the server back, it could not be
added because it alread existed.

the only place I can still find a reference to the server is in Active
Directory Users and Computers under Domain Controllers, I attempt to delete
it it tells me the object is a containter and contains othr objects. I go
ahead and tell it to delete and it tells me:
the object mywindows2000server (or some of the objects it contains) cannot
be deleted because: access is denied.

what should I look at next?
gary
 
Re: demoted domain controller cannot be removed from list of domain controllers

I tried changing the UserAccountControl to 4096 as per MS, but still cannot
delete the demoted windows 2000 domain controller.

I looked in Sites and Services, and under default-first-site-name, servers,
mywindows2003server I see the NTDS settings.
NTDS settings show 1 object, and it is mywindows2000 server that has been
forcilby demoted and that I want to delete.

should I just delete it from here?
any reason why I shouldnt?






"Gary" <garym_dontspame@hotmail.com> wrote in message
news:u1MHpl98IHA.4588@TK2MSFTNGP02.phx.gbl...
>I was having all kinds of active directory issues, so I finally demoted our
>windows 2000 server. we have a windows 2003 server that has all the FSMO
>roles and is global catalog server.
> several other servers are member servers only.
>
> dcpromo didnt work initially, so I had to force it, then followed the
> instructions for cleaing up metadata.
>
> I did all of that, but when I went to add the server back, it could not be
> added because it alread existed.
>
> the only place I can still find a reference to the server is in Active
> Directory Users and Computers under Domain Controllers, I attempt to
> delete it it tells me the object is a containter and contains othr
> objects. I go ahead and tell it to delete and it tells me:
> the object mywindows2000server (or some of the objects it contains) cannot
> be deleted because: access is denied.
>
> what should I look at next?
> gary
>
>
 
Re: demoted domain controller cannot be removed from list of domain controllers

Hello Gary,

Did you follow exactly this one:
http://support.microsoft.com/kb/555846/en-us

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm

> I was having all kinds of active directory issues, so I finally
> demoted our
> windows 2000 server. we have a windows 2003 server that has all the
> FSMO
> roles and is global catalog server.
> several other servers are member servers only.
> dcpromo didnt work initially, so I had to force it, then followed the
> instructions for cleaing up metadata.
>
> I did all of that, but when I went to add the server back, it could
> not be added because it alread existed.
>
> the only place I can still find a reference to the server is in Active
> Directory Users and Computers under Domain Controllers, I attempt to
> delete
> it it tells me the object is a containter and contains othr objects.
> I go
> ahead and tell it to delete and it tells me:
> the object mywindows2000server (or some of the objects it contains)
> cannot
> be deleted because: access is denied.
> what should I look at next?
> gary
 
Back
Top