Active Directory

Remove Orphaned Domain Controller

orphaned domain controllers can cause multiple issues when trying to add additional domain controllers, or add applications that rely on Active Directory.

To delete Domain Controllers that No more exists in your Environment from Active Directory, follow the following procedure:

  1. Ensure that you have seized all FSMO roles from this DC before removing it.
  2. Remove old Computer account from “Active Directory Users and Computers” tool from the Domain Controllers OU.
  3. Remove old computer account by using “Active Directory Sites and Services” tool.
  4. Remove old DNS and WINS records of the orphaned Domain Controller.
  5. Use “ADSIEdit” to remove old computer records from the Active Directory:
    1. OU=Domain Controllers,DC=domain,DC=local
    2. CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=domain,DC=local
    3. CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=domain,DC=local
  6. Force Active Directory replication by using “RepAdmin.exe” tool

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s