JSI Tip 9774. Metadata cleanup has been improved in Windows Server 2003 SP1.

Prior to SP1 (Service Pack 1) for Windows Server 2003, removing data from Active Directory after an unsuccessful domain controller demotion entailed performing 15 steps in Ntdsutil.exe.

After you install SP1, you no longer have to connect to the specific domain controller using the ntdsutil metadata cleanup connections command, and you don't have to list and select the Active Directory domain, site, and server using the ntdsutil metadata cleanup Select Operation Target command.

With SP1:

1. Open a CMD.EXE window.

2. Type ntdsutil and press Enter.

3. Type metadata cleanup and press Enter.

4. Type remove selected server<DistinguishedNameOfServerWhoseMetadataYouWantToRemove> and press Enter.

NOTE: You can also use the remove selected server<DistinguishedNameOfServerWhoseMetadataYouWantToRemove> on <TargetDC> command to specify the NetBIOS or distinguished name of the domain controller on which the removal is performed.

Prior to SP1, the remove selected server command deleted the NTDS settings object for the domain controller, deleted all inbound connections to the DC being removed, and removed the DC's FRS member object from the sysvol replica set.

After SP1, the remove selected server command performs those same tasks, PLUS deletion of the computer account of the DC being removed, deletion of the FRS subscriber objects, deletions of all outbound Active Directory connections from the DC being removed, deletions of inbound and outbound FRS connections from any non-sysvol FRS replica set that the removed DC was a member of, and if the removed DC held any operations masters roles, ntdsutil.exe will attempt to seize the roles to a valid domain controller.

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.