DCDIAG /TEST:DNS fails delegation because of old DNS server

richardparry · 2016-01-27T23:26:29.000Z

Running a DCDIAG /TEST:DNS on my DNS servers, I get a fail due to

TEST: Delegations (Del)

ERROR: DNS Server MyLongGoneServer.mydomain.internal IP: 192.168.x.x

Broken delegated domain _msdcs.MYDOMAIN.INTERNAL

I can’t find the record for this server anywhere, especially in the _msdcs section. The name is still sued as a CNAME in mydomain.internal for other purposes

rockn · 2016-01-27T23:32:42.000Z

Give this a read about metadata cleanup.

learn.microsoft.com

Clean up server metadata: Active Directory

richardparry · 2016-01-27T23:46:52.000Z

The server is not available to be deleted via any of these methods, it’s just hanging around in DNS delegation somewhere

psophos · 2016-01-28T09:58:09.000Z

The Metadata cleanup is run on an existing DC.

You’re looking for any remnants of the old server that are hanging around in AD and deleting them.

richardparry · 2016-01-28T18:27:17.000Z

I was running the tests on a DC - can’t find sing ADSIEdit either.

richardparry · 2016-02-02T19:23:47.000Z

OK, found the record tucked into the greyed out _msdcs folder in MYDOMAIN.LAN

Removed reference to old name server and tests now pass bar one warning