In this blog post, I’ll show How to Demote a Windows Domain Controller to a member server.
Demoting a Windows Server domain controller Is a very common task In the lifecycle of every Active Directory Infrastructure and it’s something every Systems Administrator or Systems Engineer will have to do some day.
Saying that many admins are still keeping their old Windows Server DCs online because of they afraid they will break Active Directory when removing it, This post will show you how to do the right way and optimize your Infrastructure.
It’s a known that old and unmanaged Domain Controller cause 80% of Active Directory replication and Health Issue.
First, and before demoting your Domain Controller, make sure the items below are fulfilled
- You’ve moved the FSMO roles to another Server
- You have at least two domain controllers in the forest
- Active Directory Replication Is working 100%
- The Domain Controller Is not the last DC In the forest
To complete this process, you will need to use a user account with Domain Admins permissions.
To get started, Logg into the Domain Controller with an admin user account and run the command below.
Dcpromo
This will start the Active Directory Domain Services Installation wizard
“OK” to confirm that the Server will no longer act a global catalog server
Click next
Again, click next and wait, this part can take a few minutes to complete
“Finish” and restart the Server
After restart log Into the Server and you will see that the server is now just a member server.
