This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 39%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EE%3C/text%3E%3C/svg%3E)
Hello,
Recently i have added 4 new domain controllers in our domains.
We have 1 forest with 2 domains.
One is root domain and second is used for workstations/servers. So at this moment we have 5 AD DC, two are in root domain and 3 are in workstation/server domain.
One of the 3 is old AD DC - and i want to delete it. All FSMO roles are already moved to new AD DC, all ports are opened and workstations/servers can reach and communicate with new AD DC.
Problem - at this moment i see that most of workstations and servers are still communicating with old DC. I turned off old DC and started to have problems with some server that they still tried to communicate with DC5D etc.
So I find some information about setting DC priority - but i think it wouldn't help.
How could i force all servers/workstations to communicate with new AD DC instead of old, and so this movement will have less problems?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Please run;
Dcdiag /v /c /d /e /s:%computername% >c:\dcdiag.log
repadmin /showrepl >C:\repl.txt
ipconfig /all > C:\dc1.txt
ipconfig /all > C:\dc2.txt
ipconfig /all > C:\problemworkstation.txt
then put unzipped text files up on OneDrive and share a link.
Hi,
First of all , we need to make sure that all the new DSs are succefully promoted, and there is no replication problem among DCs.
You can check that by command :
Dcdiag /v >c:\dcdiag1.log
Repadmin /showrepl >C:\repl.txt
Repadmin /showreps *
If there are no problems, you can demote the old DC and make a metadata cleanup if necessary.(Before this, back up all the old DC ,and one of the new DCs.)
Best Regards,
Hello
i checked the health of all DC - everything is fine. After ir shutdown old DC we started to have problems with users which are using Direct Access. They can't reach the company resources etc. I can't find any information on DA server that indicates old AD IP and hostname.
Direct Access server is communicating with new DC. What should be the cause..?? @Anonymous @Anonymous
After i turned on old DC everything starts working and clients could connect..
The replication is good ,right?
What's the error message you received?
All the DCs work as DNS server, right?
Best Regards,
After i turned on old DC everything starts working and clients could connect..
Sounds like the problematic ones still have old DNS server addresses. I'd check the DHCP server hands out correct DNS settings. Check DNS settings on member servers and others that are statically assigned,.
--please don't forget to Accept as answer if the reply is helpful--
