Step-By-Step: Manually Removing A Domain Controller Server

September 2nd, 2022 | Tags:

Use of DCPROMO is still the proper way to remove a DC server in an Active Directory infrastructure. Certain situations, such as server crash or failure of the DCPROMO option, require manual removal of the DC from the system by cleaning up the server’s metadata. The following detailed steps will help you accomplish this:

Step 1: Removing metadata via Active Directory Users and Computers

    1. Log in to DC server as Domain/Enterprise administrator and navigate to Server Manager > Tools > Active Directory Users and Computers
    2. Expand the Domain > Domain Controllersmeta1
    3. Right click on the Domain Controller you need to manually remove and click Deletethumbnail image 1 of blog post titled Step-By-Step: Manually Removing A Domain Controller Server

  1. Click Yes to confirm within the Active Directory Domain Services dialog boxthumbnail image 2 of blog post titled Step-By-Step: Manually Removing A Domain Controller Server
  2. In next dialog box, select This Domain Controller is permanently offline and can no longer be demoted using the Active Directory Domain Services Installation Wizard (DCPROMO) and click Deletethumbnail image 3 of blog post titled Step-By-Step: Manually Removing A Domain Controller Server
  3. If the domain controller is global catalog server, in next window click Yes to continue with deletion
  4. If the domain controller holds any FSMO roles in next window, click Ok to move them to the domain controller which is available

Step 2: Removing the DC server instance from the Active Directory Sites and Services

  1. Go to Server manager > Tools > Active Directory Sites and Services
  2. Expand the Sites and go to the server which need to remove
  3. Right click on the server you which to remove and click Deletethumbnail image 4 of blog post titled Step-By-Step: Manually Removing A Domain Controller Server
  4. Click Yes to confirmthumbnail image 5 of blog post titled Step-By-Step: Manually Removing A Domain Controller Server

Step 3: Remove metadata via ntdsutil 

  1. Right Click on Start > Command Prompt (admin)
  2. Type ntdsutil and enterthumbnail image 6 of blog post titled Step-By-Step: Manually Removing A Domain Controller Server
  3. You are then presented with the metadata cleanup prompt
    meta8
  4. Next type remove selected server <servername>
    NOTE: Replace <servername> with domain Controller server you wish to removethumbnail image 7 of blog post titled Step-By-Step: Manually Removing A Domain Controller Server
  5. Click Yes to proceed when presented with the warning window
  6. Execute the quit command twice to exit out of the console

NOTE: This post was originally posted on CANITPRO.NET and was co-authored by Microsoft MVP Dishan Francis

https://docs.microsoft.com/en-us/archive/blogs/canitpro/

No comments yet.