Wednesday , August 16 2017

Demote Windows Server 2016 Domain Controllers

Had to Demote/Rename and Promote them back as Windows Server 2016 Domain Controllers. Lets see how to do it.

To list FSMO Roles –

netdom query fsmo

If they Hold It , you can move them easily using PowerShell.

Move-ADDirectoryServerOperationMasterRole -Identity DS001 -OperationMasterRole 0,1,2,3,4

image

Uninstall Using PowerShell –

Import-Module ADDSDeployment
Uninstall-ADDSDomainController -DemoteOperationMasterRole:$true -Force:$true

image

Or use GUI below ,

Open Server manager , Remove roles and features.

image

Uncheck / Remove Active Directory Domain Services.

image

Click on Demote this Domain Controller

image

Choose Next

image

Check Proceed with Removal

Choose next.

image

Enter the Administrator password

image

Start – Run –dssite.msc (Active Directory Sites and Services) – Delete the Stale Object Servers Object. once the replication completes

image

Waiting for the Replication to finish across sites rename and promote them back again.  By default replication interval across sites is 180 Minutes.

Optional –

Force Replication across sites  – (Do Not run below on large Environments – As it lists All ADobjects and tries to sync them)

Get-ADObject -Filter * | Sync-ADObject –Destination DS0003

Force Topology Creation –

repadmin /kcc DS003

For Replication between domain controllers with existing replication links –

repadmin /syncall /AePdq

About Satheshwaran Manoharan

Satheshwaran Manoharan is an Microsoft Exchange Server MVP , Publisher of CareExchange.in Supporting/Deploying/Designing Microsoft Exchange for some years. Extensive experience on Microsoft Technologies.

Check Also

Startup Options on this PC are Configured Incorrectly – Bit locker

Enabling Bitlocker giving Error in Surface Pro Devices – Error : The Startup Options on ...

Leave a Reply

Your email address will not be published.