How to demote a Domain Controller (DC) in Windows Server 2012 Active Directory Domain Services (AD DS)

Home > Blogs > Windows Server 2012 > How to demote a Domain Controller (DC) in Windows Server 2012 Active Directory Domain Services (AD DS)

How to demote a Domain Controller (DC) in Windows Server 2012 Active Directory Domain Services (AD DS)

2 19 Rick Trader
Added by March 14, 2013

In this blog we will explore how to demote a domain controller in Windows Server 2012 Active Directory Domain Services (AD DS).

In previous versions of Windows Server to demote a domain controller you would use the DCPROMO.exe utility.  In Windows Sever 2012 the DCPROMO utility has been deprecated.

In Windows Server 2012 we will use Server Manager or PowerShell to demote the DC.  In this blog I will be using the GUI to demote the server manager. So let’s get started.

To demote a DC from AD DS complete the following steps:

Use Server Manager to remove the Active Directory Domain Services Role.

Launch Server Manager, select the Manage drop down menu, select Remove roles and features.

  1. Review the Before You Begin page, Click Next.
  2. On the Select installation type page ensure Role-based or feature-based installation radial button is selected, click Next.
  3. On the Select destination server page Select the desired server from the Server Pool.

Note:  The 2012 Server Manager allows roles and features to be installed remotely.

  1. On the Remove Roles and Features Wizard, click on the Active Directory Domain Services box to remove the check box.

 

  1. The Remove Roles and Features dialog box Remove features that require Active Directory Domain Service pops up, select Remove Features.
  2. On the Remove Roles and Features Wizard dialog box Validation Results box will appearThe domain controller must be demoted before continuing.  Click on Demote this domain controller.

  1. On the Active Directory Domain Services Configuration Wizard enter the required credentials to demote this server, click Next.

Note:  To demote replica domain controller you must be at the least a Domain Admin to remove an entire domain from the forest or to demote the last DC of a Forest you must provide Enterprise Admin credentials.

Note:  Only select Force the removal of this domain controller if the DC and not communicate with the remaining DCs.

 

  1. On the New Administrator Password, enter and confirm the new local administrator account password, click Next.

  1. On the Review Options verify the information is correct and click Demote.

This will begin the demotion process.  To finish the demotion the server will automatically restart.

Note:  When the server restarts it will be a member of the domain that is was previously a domain controller in.

Note:  The Binaries for AD DS are still installed on the server.  If this server is not going to be promoted back to a domain controller in the future rerun the Remove Roles and Features Wizard to remove the AD DS Role from the server.

Verifying the Removal of AD DS

  1. Logon to the server hosting the DNS service for the domain using the Administrator account credentials.
  2. Launch the DNS console and verify the deletion of Service Records for the removed domain controller.

Active Directory Domain Services is now been removed from this server.

Until then, RIDE SAFE!

Rick Trader
Windows Server Instructor – Interface Technical Training
Phoenix, AZ

Videos You May Like

A Simple Introduction to Cisco CML2

0 3876 0

Mark Jacob, Cisco Instructor, presents an introduction to Cisco Modeling Labs 2.0 or CML2.0, an upgrade to Cisco’s VIRL Personal Edition. Mark demonstrates Terminal Emulator access to console, as well as console access from within the CML2.0 product. Hello, I’m Mark Jacob, a Cisco Instructor and Network Instructor at Interface Technical Training. I’ve been using … Continue reading A Simple Introduction to Cisco CML2

Creating Dynamic DNS in Network Environments

0 638 1

This content is from our CompTIA Network + Video Certification Training Course. Start training today! In this video, CompTIA Network + instructor Rick Trader teaches how to create Dynamic DNS zones in Network Environments. Video Transcription: Now that we’ve installed DNS, we’ve created our DNS zones, the next step is now, how do we produce those … Continue reading Creating Dynamic DNS in Network Environments

Cable Testers and How to Use them in Network Environments

0 720 1

This content is from our CompTIA Network + Video Certification Training Course. Start training today! In this video, CompTIA Network + instructor Rick Trader demonstrates how to use cable testers in network environments. Let’s look at some tools that we can use to test our different cables in our environment. Cable Testers Properly Wired Connectivity … Continue reading Cable Testers and How to Use them in Network Environments

Write a Comment

See what people are saying...

  1. Pingback: Can’t log in to Windows Server 2012 after removing AD DS – Internet and Tecnnology Answers for Geeks

Share your thoughts...

Please fill out the comment form below to post a reply.