demoted domain controller cannot be removed from list of domain controllers

Discussion in 'Windows Server' started by Gary, Aug 1, 2008.

  1. Gary

    Gary Guest

    I was having all kinds of active directory issues, so I finally demoted our
    windows 2000 server. we have a windows 2003 server that has all the FSMO
    roles and is global catalog server.
    several other servers are member servers only.

    dcpromo didnt work initially, so I had to force it, then followed the
    instructions for cleaing up metadata.

    I did all of that, but when I went to add the server back, it could not be
    added because it alread existed.

    the only place I can still find a reference to the server is in Active
    Directory Users and Computers under Domain Controllers, I attempt to delete
    it it tells me the object is a containter and contains othr objects. I go
    ahead and tell it to delete and it tells me:
    the object mywindows2000server (or some of the objects it contains) cannot
    be deleted because: access is denied.

    what should I look at next?
    gary
     
    Gary, Aug 1, 2008
    #1
    1. Advertisements

  2. Gary

    Gary Guest

    I tried changing the UserAccountControl to 4096 as per MS, but still cannot
    delete the demoted windows 2000 domain controller.

    I looked in Sites and Services, and under default-first-site-name, servers,
    mywindows2003server I see the NTDS settings.
    NTDS settings show 1 object, and it is mywindows2000 server that has been
    forcilby demoted and that I want to delete.

    should I just delete it from here?
    any reason why I shouldnt?
     
    Gary, Aug 1, 2008
    #2
    1. Advertisements

  3. Meinolf Weber, Aug 1, 2008
    #3
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.