Share via

I have a Domain Controller with a Tombstone Lifetime that has exceeded. How do I bring it back online?

Yogeshwaran 6 Reputation points
2024-09-25T16:04:19.31+00:00

I have a Domain Controller with a Tombstone Lifetime that has exceeded. How do I bring it back online?

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,578 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Marcin Policht 24,630 Reputation points MVP
    2024-09-25T16:49:03.7533333+00:00

    Restore it to an isolated network - and don't connect it to you production network

    If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.

    hth

    Marcin

  2. Yanhong Liu 10,390 Reputation points Microsoft Vendor
    2024-09-26T03:04:35.3+00:00

    Hello,

    The safest way to deal with a DC that has exceeded its tombstone lifetime is to demote it and promote a new DC.

    If you demote a DC, perform metadata cleanup to ensure that all references to the old DC are removed from Active Directory.

    Clean up AD DS server metadata | Microsoft Learn

    Then once the cleanup has replicated you can join the DC back to the domain and promote it again.

    I hope the information above is helpful.

    Best Regards,

    Yanhong Liu

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.