How To Decommission a Domain Controller (Best Practice)

preview_player
Показать описание
In this video we cover the steps necessary to successfully decommission a domain controller in your environment. We specifically walk through transferring FSMO (Flexible Single Master Operation) roles to another DC using Powershell.

Once the DC has been decommissioned we take you step by step on the processes that are needed for post decommission and cleanup. You'll need to make sure you clean up Sites and Services, DNS and update any static IPs that may be pointing to the old, decommissioned DC. For those machines that have DHCP enabled, you would just need to update that and verify those client settings get those updated records. The steps in this video also work for Server 2016 and Server 2019 to demote a Domain Controller.

More information on transferring FSMO Roles:

00:00 Intro of video
00:11 Begin Transferring FSMO Roles
01:51 Remove AD Role and Demote DC
04:38 Post Decom Cleanup AD
05:02 Post Decom Cleanup Sites and Services
05:45 Post Decom Cleanup DNS
06:18 Post Decom Cleanup Updating DNS for static IPs
  1. the Sysadmin Channel
  2. decommission domain controller
  3. decommission dc
  4. Get-DnsClientServerAddress demo
  5. demote domain controller
  6. demote 2012 r2 dc
Рекомендации по теме
How to demote 0:06:20

How to demote an Active Directory Domain Controller

How To Decommission 0:08:15

How To Decommission a Domain Controller (Best Practice)

How to remove 0:02:25

How to remove a computer from a Domain Controller

Decommissioning a Domain 0:06:07

Decommissioning a Domain Controller

How to decommission 0:09:01

How to decommission domain controller

How to demote 0:01:57

How to demote a domain controller in Windows Server

How to Demote 0:10:36

How to Demote a Domain Controller running Windows Server 2016

How to perform 0:05:17

How to perform Metadata Cleanup on a Domain Controller

Demote the last 0:02:54

Demote the last Domain Controller in domain with Powershell

33. How to 0:08:33

33. How to Demote a Domain Controller Windows Server 2022

14. How To 0:08:35

14. How To Remove Or Demote Additional Domain Controller(ADC) In Windows Server 2019

How to Demote 0:05:14

How to Demote Active Directory !! Completely Removal AD+DNS in Windows Server 2022 !! Step By Step !

Decommission a DC: 0:10:14

Decommission a DC: How to demote and remove a Domain Controller on Windows Servers

Windows Server 2019 0:13:05

Windows Server 2019 Training 09 - How to Remove or Demote Additional Domain Controller from Forest

How To Demote 0:06:55

How To Demote Remove Active Directory Users And Computer Domain Controller Windows Server 2019

Removing a domain 0:11:38

Removing a domain controller (Windows Server 2012)

Server 2016 And 0:03:27

Server 2016 And 2012 R2 - Demote and Remove Active Directory Role Tutorial

15. How to 0:13:20

15. How to Remove Or Demote Child Domain In Windows Server 2019

Remove Domain in 0:09:20

Remove Domain in Windows Server 2016

How to remove 0:02:53

How to remove Domain Controller DC role from Active Directory Windows 2008

How to Properly 0:23:31

How to Properly Decommission a Domain Controller | Best Practices with Command Line

Demote a domain 0:05:03

Demote a domain controller in Windows Server (step-by-step guide)

Force Demotion of 0:05:20

Force Demotion of an Active Directory Domain Controller

Delete a Failed 0:04:41

Delete a Failed Active Directory Domain Controller running Windows Server 2012 R2

Комментарии
Автор

Too long didn't watch. TLDW;

00:00 - Intro
00:11 - Begin Transferring FSMO Roles
01:51 - Remove AD Role and Demote DC
04:38 - Post Decom Cleanup AD
05:02 - Post Decom Cleanup Sites and Services
05:45 - Post Decom Cleanup DNS
06:18 - Post Decom Cleanup Updating DNS for static IPs

TheSysadminChannel
Автор

Fantastic! Thank you. It's a clear outline of how to proceed.

laurajacobs
Автор

You deserve more subs. :)
Side note - I'm an old hand and the vid shows why I don't like powershell. I know why you showed the script and in large ent, the powershell makes sense, but here, in the instance of changing the IP, the one step in UI is a very complex multi step in powershell. We've changed Windows from the winner that killed other systems with UI, ... into those systems. Thats no reflection on your excellent vid, just on the wider admin in win..

Thanks for the video!

AdmVrln
Автор

Great stuff, just started a new sys admin role and one project was to decom 5 dc's don't ask me why there are so many which I thought that was absurd too but that's the deal haha.

TheOirishhAmerican
Автор

Any idea if there is any risk just shuttinbg down a DC to see if there are issues with ADDS still installed? I can not think of a single reason why this should be an issue. The idea is we leave it down for a few weeks and then bring it back online to perform the demote only. Of course there will be replication issues with the DCs and partners but thats to be expected. It will not be doewn for more than 180 days and when brought back, the DCs will just play catch up. I could remove ADDS and then power them off but I would prefer not to at this stage.

I am a subscriber. Excellent channel. Keep up the good work.

James-sclz
Автор

thanks for sharing the content! I'm not a pro but at 04:08 your porshell comandlet is set to do what you mention not to, it's forcing demotion ( -Force:$true )

TK-rrgj
Автор

do you have a video on how to migrate old DC to a new DC? thx

KLNYC
Автор

Can you please let me know what is - 3, 4 meaning in that command ? I am from India .

Lifestyle-mffh
Автор

You could explain the options of the cli commands. If you mention that they are out there to search for them the answer will be so the procedure in text guides so what is the point of the video to follow blindly .... and upon that you call it best practice?
You also checked for the DHCP and DNS roles. The point of the video would be for them to be active and not offline. You are trying to catch the most usecase scenario by other users not the easiest one

ierosgr