DCPromo DNS delegation name server issue

vallee2018 331 Reputation points
2020-08-08T15:54:30.607+00:00

Hello,

I already added a new domain controller. Ran repadmin /replsummary and confirmed it is replicating properly.

Today I just demoted a domain controller following the instructions here https://tekbloq.com/2017/05/15/decommission-uninstall-a-windows-2008-r2-domain-controller/

The process went well except at the point where DNS delegation was to be removed. I received the error 16493-dcpromoerror.png

I notice that when I run ipconfig /all on my PC it still shows the IP of the demoted domain controller.

I do see an SRV record in DNS-ServerName-Domain-FowardLookupZone-DomainName-DomainDNSZones-Sites-DefaultFirstSite-tcp referencing the retired domain controller. Should I manually delete this?

In DNS it does show only the correct two domain controllers. (I had to manually remove the retired one after the DCPromo error above. When I removed it I received the message "Do you want to delete the glue record ServerName.DomainName with the IP address and I said yes.

What else needs to be done to correct the lack of removal of the DNS delegation by DCPromo?

Thanks,
Roger

Windows DHCP
Windows DHCP
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.DHCP: Dynamic Host Configuration Protocol (DHCP). A communications protocol that lets network administrators manage centrally and automate the assignment of Internet Protocol (IP) addresses in an organization's network.
1,039 questions
0 comments
Accepted answer
  1. Anonymous
    2020-08-08T16:44:23.817+00:00

    when I run ipconfig /all on my PC it still shows the IP of the demoted domain controller.

    I'd check the DHCP server has been updated to hand out the new domain controller ip addresses then do ipconfig /renew

    What else needs to be done

    may need to perform some cleanup.
    https://video2.skills-academy.com/en-us/windows-server/identity/ad-ds/deploy/ad-ds-metadata-cleanup

    --please don't forget to Accept as answer if the reply is helpful--

3 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Gloria Gu 3,896 Reputation points
    2020-08-10T08:58:46.797+00:00

    Hi,

    In regards to your issue, here're my suggestions:

    1. You can mannually delete the SRV RR of your demoted DNS server.
    2. You can use 'ipconfig /release''ipconfig /renew' command to mannually reobtain an IP address on the client. And then use 'ipconfig /all' to show the current ip address.
      Or you can try to add the two DC in the advanced TCP/IP setting on PC.
      16762-23.png

    If my answer is helpful to you, please remember to mark them as answer. Thank you!

    Best regards,
    Gloria

    0 comments
  2. vallee2018 331 Reputation points
    2020-08-11T17:07:36.567+00:00

    Hello,

    It looks like I just needed to update the DHCP Scope and Server Options. Once I did this, the new domain controller is now showing as the secondary DNS server.

    Thanks,
    Roger

  3. Anonymous
    2020-08-12T12:33:28.623+00:00

    Glad to hear of success.

    --please don't forget to Accept as answer if the reply is helpful--

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.