Jul 26 2023 11:38 PM
We have a strange issue with a domain with 2 DC.
Originally the domain had 2 DC name it DC1 and DC2.
DC2 has been successfully demoted.and there was only DC1 remaining.
Now a new DC, DC3, has been installed and promoted.
All went fine but the initial synchronization of the SYSVOL fails.
The error states that it cannot reach the "old demoted" DC2.
We checked the AD and that DC is not present anymore.
There was still an entry in the AD Site and Services which we removed.
Any attempt to restart DFSR sync fails with the same error.
Is there a way to force DFSR on the new DC to make the initial Sync with the active DC ?
Jul 27 2023 03:42 AM
Jul 27 2023 03:50 AM
The demoted DC was DC2, I don't know which was holding the FSMO roles at that time.
For sure they were moved successfully.
I found this article, sorry if it's in italian, that explain how to solve it
Changing the parameter on the new DC "moved" the problem to the active DC that now reports that it has to replicate to the new DC.
We planned to perform an authorative syncronization on the former DC and a non-authorative sync on the new one
thanks
Jul 27 2023 03:56 AM
Jul 27 2023 10:18 AM
Sounds like the demotion did not complete cleanly. You can perform cleanup to remove the remnants.
Clean up Active Directory Domain Controller server metadata
Step-By-Step: Manually Removing A Domain Controller Server