Today, I was trying to remove an old windows 2003 R2 DC server in our domain, when I run DCPROMO command to demote it, I received the following error message:
The operation failed because: The attempt at remote domain controller DC2016 to remove domain controller CN=DC1,CN=Servers,CN=Default-First-Name,CN=Sites….from the forest was unsuccessful. “Access is Denied”
It you ran into the same issues with me, don’t panic, you can try to follow steps to fix your issues.
- Login to Domain Controller server and open Active Directory Sites and Services.
- Right-click the Domain Controller (which you would like to demote it) and select Properties.
- Select Object and uncheck Protected object from accidental Deletion and then Click OK.
- Click Retry.
Now, it should fix the issues and demote the old Domain Controller server.
Hope you enjoy this post.
Author: Cary Sun
Cary Sun has a wealth of knowledge and expertise in data center and deployment solutions. As a Principal Consultant, he likely works closely with clients to help them design, implement, and manage their data center infrastructure and deployment strategies.
With his background in data center solutions, Cary Sun may have experience in server and storage virtualization, network design and optimization, backup and disaster recovery planning, and security and compliance management. He holds CISCO CERTIFIED INTERNETWORK EXPERT (CCIE No.4531) from 1999. Cary is also a Microsoft Most Valuable Professional (MVP), Microsoft Azure MVP, Veeam Vanguard and Cisco Champion. He is a published author with several titles, including blogs on Checkyourlogs.net, and the author of many books.
Cary is a very active blogger at checkyourlogs.net and is permanently available online for questions from the community. His passion for technology is contagious, improving everyone around him at what they do.
Blog site: https://www.checkyourlogs.net
Web site: https://carysun.com
Blog site: https://gooddealmart.com
Amazon Author: https://Amazon.com/author/carysun