Good day all,
When running the ds query command "dsquery server -domain *.local" a server gets listed that I cannot find in AD nor DNS. Where is this info being pulled from?
This server was not a domain controller but must have had some roles installed at some point. The server in question has long been decommissioned but yet still shows up in dsquery. Any ideas?
Cheers
David
Hi,
Based on my understanding, the server should be an old DC and was not demoted successfully.
Following advice for your reference:
The output of the command should be collected from one of the DCs.
Was all the information the same if your run the command from different DCs.
From my side, i would check the following points:
1, Check if the AD replication is good for all the DCs in the domain.
Dcdiag /v >c:\dcdiag1.log
Repadmin /showrepl >C:\repl.txt
Repadmin /showrepl * /csv>c:\repl.csv
2, A metadata cleanup should be performed on the good DCs.
To clean up server metadata by using Ntdsutil
https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/ad-ds-metadata-cleanup
Feel free to let me know if there are any questions.
Thank you for the assistance, much appreciated. I will do this and post my success!
7 people are following this question.
