31.8 C
Dubai
Thursday, August 18, 2022
spot_img

Demote Windows Server 2016 Domain Controllers

Had to Demote/Rename and Promote them back as Windows Server 2016 Domain Controllers. Lets see how to do it.

To list FSMO Roles –

netdom query fsmo

If they Hold It , you can move them easily using PowerShell.

Move-ADDirectoryServerOperationMasterRole -Identity DS001 -OperationMasterRole 0,1,2,3,4

image

Uninstall Using PowerShell –

Import-Module ADDSDeployment
Uninstall-ADDSDomainController -DemoteOperationMasterRole:$true -Force:$true

image

Or use GUI below ,

Open Server manager , Remove roles and features.

image

Uncheck / Remove Active Directory Domain Services.

image

Click on Demote this Domain Controller

image

Choose Next

image

Check Proceed with Removal

Choose next.

image

Enter the Administrator password

image

Start – Run –dssite.msc (Active Directory Sites and Services) – Delete the Stale Object Servers Object. once the replication completes

image

Waiting for the Replication to finish across sites rename and promote them back again.  By default replication interval across sites is 180 Minutes.

Optional –

Force Replication across sites  – (Do Not run below on large Environments – As it lists All ADobjects and tries to sync them)

Get-ADObject -Filter * | Sync-ADObject –Destination DS0003

Force Topology Creation –

repadmin /kcc DS003

For Replication between domain controllers with existing replication links –

repadmin /syncall /AePdq
Satheshwaran Manoharan
Satheshwaran Manoharanhttps://www.azure365pro.com
Specialized in Microsoft Azure - Office 365 / Microsoft Exchange; conducted numerous projects worldwide in designing, supporting, and implementing messaging and virtualization infrastructure for medium-sized and large enterprises. Further, I am a Cloud Architect and Technical Advisor for various start-ups.

Related Articles

LEAVE A REPLY

Please enter your comment!
Please enter your name here