Wednesday , October 16 2019

Decommissioning Child Domain gracefully – Operation Failed

If the domain is a Child domain and if you wish to delete Child domain entries / Trust from the root forest.

We need to Choose “Delete the domain because this server is the last domain controller in the domain”

clip_image001[5]

image

We received an error while decommissioning the child domain

The Operation Failed because :

Active Directory Domain Services Could not be removed on this Active Directory Domain Controller because this is the last AD DC in the domain, and the domain has a child directory partition

DC=DomainDnsZones,DC=domain,DC=com.

image

Use ntdsutil to Delete the Child domain

Open the CMD prompt
NTDSUtil
Domain Management (In 2008 it changes to “partition management”)
Connections => connect to server DC01
Quit
List <— to see zones
Delete NC DC=DomainDNSZones,DC=Domain DC=Com (This Deletes the CrossRef Object)
Force replication, validate that the partition is gone.
Restart DNS, the service will re-add the partition.

image

Now Demote the Last domain in the Child domain. it should allow you to demote without any issues.

About Satheshwaran Manoharan

Satheshwaran Manoharan is an Microsoft Office Server and Services MVP , Publisher of Azure365pro.com. Specialized in Office365 / Microsoft Exchange / Virtualization , Sathesh is an Messaging Expert supporting/Designing/Deploying many medium size businesses to large enterprises when it comes to Corporate messaging and Virtualization Infrastructure

Check Also

Save Public IPs using F5 LTM Policies

F5 has different modules and one of them is LTM – Local Traffic Manager . ...

Leave a Reply

Your email address will not be published.