Tuesday, July 23, 2019

Recovery Global catalog in win 2003 server with ntdsutil

Active directory recovery windows 2003 server

*Global catalag error.

1. dcdiag /v
Starting test: FsmoCheck
   Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1355
   A Global Catalog Server could not be located - All GC's are down.
   Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1355
   A Primary Domain Controller could not be located.
   The server holding the PDC role is down.
   Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
   A Time Server could not be located.
   The server holding the PDC role is down.
   Preferred Time Server Name: \\iics-ads.ipeka.net
   Locator Flags: 0xe00003e5
   Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1355
   A KDC could not be located - All the KDCs are down.

2. nltest.exe /dsregdns
3. ntdsutil
4. ntdsutil: roles
5. fsmo maintenance: connection
server connections: connect to server iics-fm
Binding to iics-fm ...
DsBindW error 0x6ba(The RPC server is unavailable.)
6. server connections: connect to server iics-ads
Binding to iics-ads ...
Connected to iics-ads using credentials of locally logged on user.
server connections: q

7. fsmo maintenance: seize infrastructure master
Attempting safe transfer of infrastructure FSMO before seizure.
FSMO transferred successfully - seizure not required.
Server "iics-ads" knows about 5 roles
Schema - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,
CN=Configuration,DC=ipeka,DC=net
Domain - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,
CN=Configuration,DC=ipeka,DC=net
PDC - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,CN=
Configuration,DC=ipeka,DC=net
RID - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,CN=
Configuration,DC=ipeka,DC=net
Infrastructure - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,C
N=Sites,CN=Configuration,DC=ipeka,DC=net

8. fsmo maintenance: seize pdc
Attempting safe transfer of PDC FSMO before seizure.
FSMO transferred successfully - seizure not required.
Server "iics-ads" knows about 5 roles
Schema - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,
CN=Configuration,DC=ipeka,DC=net
Domain - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,
CN=Configuration,DC=ipeka,DC=net
PDC - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,CN=
Configuration,DC=ipeka,DC=net
RID - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,CN=
Configuration,DC=ipeka,DC=net
Infrastructure - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,C
N=Sites,CN=Configuration,DC=ipeka,DC=net

9. fsmo maintenance: seize rid master
The Selected Server is already the RID role owner

10. fsmo maintenance: seize schema master
Attempting safe transfer of schema FSMO before seizure.
FSMO transferred successfully - seizure not required.
Server "iics-ads" knows about 5 roles
Schema - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,
CN=Configuration,DC=ipeka,DC=net
Domain - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,
CN=Configuration,DC=ipeka,DC=net
PDC - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,CN=
Configuration,DC=ipeka,DC=net
RID - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,CN=
Configuration,DC=ipeka,DC=net
Infrastructure - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,C
N=Sites,CN=Configuration,DC=ipeka,DC=net

11. fsmo maintenance: seize domain naming master
Attempting safe transfer of domain naming FSMO before seizure.
FSMO transferred successfully - seizure not required.
Server "iics-ads" knows about 5 roles
Schema - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,
CN=Configuration,DC=ipeka,DC=net
Domain - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,
CN=Configuration,DC=ipeka,DC=net
PDC - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,CN=
Configuration,DC=ipeka,DC=net
RID - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,CN=Sites,CN=
Configuration,DC=ipeka,DC=net
Infrastructure - CN=NTDS Settings,CN=IICS-ADS,CN=Servers,CN=Default-First-Site,C
N=Sites,CN=Configuration,DC=ipeka,DC=net

12. fsmo maintenance: q

13. ntdsutil: q
       Disconnecting from iics-ads...


RESULT:
C:\Program Files\Support Tools>netdom query fsmo
Schema owner                iics-ads.ipeka.net

 Domain role owner           iics-ads.ipeka.net

 PDC role                    iics-ads.ipeka.net

 RID pool manager            iics-ads.ipeka.net

 Infrastructure owner        iics-ads.ipeka.net

 The command completed successfully.



Remove old server from domain controller without DCpromo.

C:\Program Files\Support Tools>ntdsutil

1. ntdsutil: metadata cleanup
2. metadata cleanup: connection
3. server connections: connect to server iics-ads
Binding to iics-ads ...
Connected to iics-ads using credentials of locally logged on user.
server connections: select operation target
4. server connections: q
5. metadata cleanup: select operation target
6. select operation target: list domains
Found 1 domain(s)
0 - DC=ipeka,DC=net
select operation target: select domain 0
No current site
Domain - DC=ipeka,DC=net
No current server
No current Naming Context
select operation target: list sites
Found 1 site(s)
0 - CN=Default-First-Site,CN=Sites,CN=Configuration,DC=ipeka,DC=net

7. select operation target: list servers in site
No current site
No current site
Domain - DC=ipeka,DC=net
No current server
No current Naming Context

8. select operation target: list sites
Found 1 site(s)
0 - CN=Default-First-Site,CN=Sites,CN=Configuration,DC=ipeka,DC=net

9. select operation target: list servers in sites
No current site
No current site
Domain - DC=ipeka,DC=net
No current server
No current Naming Context

10.metadata cleanup: q
11. ntdsutil: q
Disconnecting from iics-ads...

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)