I have 2 DCs 1 a 2008 server and 1 2003 server I am having a issue on the 2008 server accepting the Global Catalog role. So i want to demote the 2008 server and then repromote it. I cant run dcpromo cause it errors out. So When I run this command dsquery * CN=Infrastructure,DC=ForestDnsZones,DC=domain,DC=local -attr fSMORoleOwner fSMORoleOwner CN=NTDS Settings\0ADEL:558bd1ba-189e-4c9f-a05d-50b44fbcf36a,CN=CHI-DC-01\0ADEL :92e98081-30c8-444d-b4df-5c48870ab8c1,CN=Servers,CN=Default-First-Site-Name,CN=S ites,CN=Configuration,DC=domain,DC=local You will see CN=CHI-DC-01 This is an old server that I removed along time ago. Do you know how I can change it? I did run this vbscript from http://support.microsoft.com/kb/949257 and it still shows the old server. ( not sure if im supposed to wait a while after running script)

You will need to seize the FMSO's role to a DC. Better be on the Win2003 because you want to demote the Win2008. Follow that KB to use ntdsutil for that: http://support.microsoft.com/kb/255504 The global catalog error might be corrected after you will do that. I would try again before demoting it.MCP | MCTS 70-236: Exchange Server 2007, Configuring

Valcon54, Seems the old server reference still exists in your AD. Please go ahead and remove those referecne from AD by using NTDSUTIL command line tool (Process is called as metadata cleanup) Refer below link to understand this better http://support.microsoft.com/kb/216498 once this is done, wait for replication to happen and then run netdom query fsmo to check on what DC all 5 FSMO role exists. after you confirm this, you can go ahead with demotion of windwos server 2008 server and you can promote it back (you should make sure it does not hold any of the FSMO role before demotion. IN case if it holds the FSMO role then transfer it to windows server 2003 ) Regards, _Prashant_MCSA|MCITP SA|Microsoft Exchange 2003 Blog - http://prashant1987.wordpress.com Disclaimer: This posting is provided AS-IS with no warranties/guarantees and confers no rights.

the 5 fsmo roles are already pointing to the 2003 server : Schema owner 2003server.domain.local Domain role owner 2003server.domain.local PDC role 2003server.domain.local RID pool manager 2003server.domain.local Infrastructure owner 2003server.domain.local The command completed successfully.

Great!!! Please have the metadata cleanup performed and remove old DC referecne from your AD and then check Regards, _Prashant_MCSA|MCITP SA|Microsoft Exchange 2003 Blog - http://prashant1987.wordpress.com Disclaimer: This posting is provided AS-IS with no warranties/guarantees and confers no rights.

when i run list servers in site from metadata cleanup i dont see the server i want to remove?

Hello, to get a better overview please upload the following files: ipconfig /all >c:\ipconfig.txt [from each DC/DNS Server] dcdiag /v /c /d /e /s:dcname >c:\dcdiag.txt repadmin /showrepl dc* /verbose /all /intersite >c:\repl.txt ["dc* is a place holder for the starting name of the DCs if they all begin the same (if more then one DC exists)] dnslint /ad /s "DCipaddress" (http://support.microsoft.com/kb/321045) As the output will become large, DON'T post them into the thread, please use Windows Sky Drive (skydrive.live.com) [with open access!] and add the link from it here. Also the /e in dcdiag scans the complete forest, so better run it on COB.Best regards Meinolf Weber MVP, MCP, MCTS Microsoft MVP - Directory Services My Blog: http://msmvps.com/blogs/mweber/ Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.

Hi, > i want to demote the 2008 server and then repromote it. I cant run dcpromo cause it errors out Whats the issue? You didnt mention in your posting. > when i run list servers in site from metadata cleanup i dont see the server i want to remove? Refer to below steps to delete that data: Launch ADSI Edit form your DC-->Connect to your DC-->Select a well known Naming Context: Configuration-->Navigate to CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=domain,DC=local Delete CN=CHI-DC-01, that maybe metadata not be cleaned when you demote that DC. Give us feedback about your issue for further troubleshooting. For more information please refer to following MS articles: Clean up server metadata http://technet.microsoft.com/en-us/library/cc736378(v=WS.10).aspx How to remove data in Active Directory after an unsuccessful domain controller demotion http://support.microsoft.com/kb/216498Lawrence TechNet Community Support

The error i get when i run dcpromo on the 2008 server is the same from this site http://www.zerohoursleep.com/2011/07/dcpromo-out-fails-with-the-directory-service-is-missing-mandatory-configuration-information-and-is-unable-to-determine-the-ownership-of-floating-single-master-operation-roles/ CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=domain,DC=local under that the old server is not listed. (chi-dc-01)

If you re-run that VB script, do you still see the reference to the old DC ? I found that strange that you find a reference in the VB script, but not in NTDSUTIL. (2 DC not sync'ed ?) The script should Echo what DC it use. ( Wscript.Echo "Using DC " & strDnsHostName in it ) MCP | MCTS 70-236: Exchange Server 2007, Configuring

Here is the output of that script C:\Documents and Settings\Administrator.domain\Desktop>cscript fixfsmo.vbs DC=Do mainDnsZones,DC=domain,DC=local Microsoft (R) Windows Script Host Version 5.6 Copyright (C) Microsoft Corporation 1996-2001. All rights reserved. DNS name: DomainDnsZones.domain.local Using DC 2003server.domain.local infra fsmo is CN=NTDS Settings,CN=2008server,CN=Servers,CN=Default-First-Site-Na me,CN=Sites,CN=Configuration,DC=domain,DC=local i dont see the old server chi-dc-01 but i did find ldap records of it in dns which i removed

If I read the output correctly, infra fsmo holder is the win2008 that you try to demote ? The script seem to change the attributeMCP | MCTS 70-236: Exchange Server 2007, Configuring

yes i need to make the 2003 server that role as well as change that fsmoroleowner attribute.

i went in the fSMORoleOwner Attribute and changed it to CN=NTDS Settings,CN=2008server,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=domain,DC=local i used 2008server cause it wont let me use the 2003server gives me an error stating"Operation Failed. Error code 0x20ae The role Owner Attribute could not be read. and now when i run this C:\Documents and Settings\Administrator.DOMAIN\Desktop>dsquery * CN=Infrastructu re,DC=ForestDnsZones,DC=domain,DC=local -attr fSMORoleOwner fSMORoleOwner CN=NTDS Settings,CN=2008server,CN=Servers,CN=Default-First-Site-Name,CN=Sites, CN=Configuration,DC=domain,DC=local so i think that issue is resolved but i dont understand why that script says " infra fsmo is CN=NTDS Settings,CN=2008server," when i do a netdom query fsmo i get this Schema owner 2003server.domain.local Domain role owner 2003server.domain.local PDC role 2003server.domain.local RID pool manager 2003server.domain.local Infrastructure owner 2003server.domain.local so is "infra fsmo" different from "Infrastructure owner " ?

This site resolved my issue http://blog.mpecsinc.ca/2011/03/ad-ds-operation-failed-directory.html now i can demote the 2008 server thanks for all the help im sure i will have more issues when i promote the 2008 server back.