In a school I manage there is going to be some major work done in the room the servers are located, of all rooms in the entire building.<\/p>\n
I have agreed with the school that the staff are not coming in and the network will be unavaialble. That is not the problem.<\/p>\n
The problem I have is I don’t know what to do for the best..<\/p>\n
Do I just leave the domain controllers off and put away safely? or do I try to keep them on somewhere else in the building?
I know I won’t have any issues with tombstoning, or replication timeouts (the 60 day thing), and the machines will be safer powered off. But what happens when the machine is powered up and suddenly jumps 3 weeks into the future, DHCP leases/DNS entries etc.<\/p>\n
Do I need to do anything to prep, what do you guys recommend, just power off and leave them?<\/p>\n
This is only for 3-4 weeks max<\/p>","upvoteCount":14,"answerCount":21,"datePublished":"2025-07-20T11:51:22.240Z","author":{"@type":"Person","name":"richardkh","url":"https://community.spiceworks.com/u/richardkh"},"acceptedAnswer":{"@type":"Answer","text":"\n\n
<\/div>\n
richardkh:<\/div>\n
\nstore them and keep them physically safe<\/p>\n<\/blockquote>\n<\/aside>\n
This would be my preference.<\/p>\n
It’s the least impactful.<\/p>\n
You’ll still have ~5 weeks to fix it should there be an issue, though I don’t foresee any.<\/p>","upvoteCount":4,"datePublished":"2025-07-21T11:27:25.932Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/6","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},"suggestedAnswer":[{"@type":"Answer","text":"
In a school I manage there is going to be some major work done in the room the servers are located, of all rooms in the entire building.<\/p>\n
I have agreed with the school that the staff are not coming in and the network will be unavaialble. That is not the problem.<\/p>\n
The problem I have is I don’t know what to do for the best..<\/p>\n
Do I just leave the domain controllers off and put away safely? or do I try to keep them on somewhere else in the building?
I know I won’t have any issues with tombstoning, or replication timeouts (the 60 day thing), and the machines will be safer powered off. But what happens when the machine is powered up and suddenly jumps 3 weeks into the future, DHCP leases/DNS entries etc.<\/p>\n
Do I need to do anything to prep, what do you guys recommend, just power off and leave them?<\/p>\n
This is only for 3-4 weeks max<\/p>","upvoteCount":14,"datePublished":"2025-07-20T11:51:22.295Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/1","author":{"@type":"Person","name":"richardkh","url":"https://community.spiceworks.com/u/richardkh"}},{"@type":"Answer","text":"
Hi Richard,<\/p>\n
Please take bare-metal backup in an external HDD and shutdown the DC. Please take export of DNS and DHCP in excel and take Backup. If it is a VM Take full backup of VM. Mark the network and FC connections to server if available and take a note of password and IP address as you are shutting down server for long time.<\/p>","upvoteCount":4,"datePublished":"2025-07-20T12:40:56.162Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/2","author":{"@type":"Person","name":"naveenkatikam","url":"https://community.spiceworks.com/u/naveenkatikam"}},{"@type":"Answer","text":"\n\n
<\/div>\n
richardkh:<\/div>\n
\nwhat happens when the machine is powered up and suddenly jumps 3 weeks into the future, DHCP leases/DNS entries etc.<\/p>\n<\/blockquote>\n<\/aside>\n
If they are all off, here are the issues you may see, but none are critical.<\/p>\n
\nDHCP lease confusion (Clients will just request new ones. No big deal).<\/li>\n DNS scavenging issues (if enabled, some stale records might be purged. But clients will re-register).<\/li>\n Kerberos ticket expiry (but these are short-lived anyway). No issues<\/li>\n Event log timestamps being out of sync. (As long as the DCs sync with a reliable NTP source, they’ll correct themselves).<\/li>\n<\/ul>\nIf you’re confident no one needs domain services during the downtime, this is the safest and cleanest option.<\/p>","upvoteCount":14,"datePublished":"2025-07-20T12:54:00.205Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/3","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},{"@type":"Answer","text":"\n\n
<\/div>\n
richardkh:<\/div>\n
\nDo I need to do anything to prep, what do you guys recommend, just power off and leave them?<\/p>\n<\/blockquote>\n<\/aside>\n
How many DCs are there ?
We did have a major renovation once so what I did was to have BIOS power up DCs at 2000hrs then a scheduled task to “shutdown” at 0700hrs for both DCs ?<\/p>","upvoteCount":3,"datePublished":"2025-07-21T08:46:23.804Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/4","author":{"@type":"Person","name":"adrian_ych","url":"https://community.spiceworks.com/u/adrian_ych"}},{"@type":"Answer","text":"
Hi. There’s 2 DCs, second is just a DC/DNS (i.e all FSMO / DHCP are on one box) There will be dust, there’s major dry rot under the floor. The servers will be well out of the room they are currently in.
It’s whether I try to keep them on, or just store them and keep them physically safe. It’s more for the DC side of it, replication etc, there is a file/print server that will remain off but that’s just a member that will be absolutely fine.<\/p>\n
As far as the staff/management are concerned they know the network is down, It’s not that I have to keep them on for business.<\/p>","upvoteCount":4,"datePublished":"2025-07-21T10:10:39.599Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/5","author":{"@type":"Person","name":"richardkh","url":"https://community.spiceworks.com/u/richardkh"}},{"@type":"Answer","text":"
Thanks. That is what I am thinking. No one expects it to work, and there is only the phone system that will impact (they use DHCP to get the provision URL) but no one will use the phones anyway so that is no problem.<\/p>\n
I could try all sorts of things to power them up and keep them running, but ultimately they could end up being turned off anyway or these contractors knock off the power, the UPS would shut them down but my concern would be security, dust and heat.<\/p>\n
I will probably just delete all the DHCP leases before I turn them off, which would prevent stale ones but like you say the clinets will just get a new one.<\/p>\n
It was more to try and keep the DCs working and in sync, but I am turning both off so it won’t see one missing for 2 weeks, the OS will do nothing when off, it was just that sudden jump to the future I was concerned about<\/p>\n
All data is backed up off site, and to be fair it is only a small domain.<\/p>\n
Thanks<\/p>","upvoteCount":3,"datePublished":"2025-07-21T12:14:56.637Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/7","author":{"@type":"Person","name":"richardkh","url":"https://community.spiceworks.com/u/richardkh"}},{"@type":"Answer","text":"\n\n
<\/div>\n
richardkh:<\/div>\n
\nIt was more to try and keep the DCs working and in sync<\/p>\n<\/blockquote>\n<\/aside>\n
If both are off, nether will see each other anyway. When you bring them back online, they’ll shake hands, welcome each other back from their break and resume work.<\/p>","upvoteCount":5,"datePublished":"2025-07-21T12:31:05.793Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/8","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},{"@type":"Answer","text":"
Keep in mind you will be weeks behind on OS updates when you come back, so leave some fudge time for startup…<\/p>","upvoteCount":4,"datePublished":"2025-07-21T13:30:40.297Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/9","author":{"@type":"Person","name":"somedude2","url":"https://community.spiceworks.com/u/somedude2"}},{"@type":"Answer","text":"\n\n
<\/div>\n
Rod-IT:<\/div>\n
\nIf they are all off, here are the issues you may see, but none are critical.<\/p>\n
\nDHCP lease confusion (Clients will just request new ones. No big deal).<\/li>\n<\/ul>\n<\/blockquote>\n<\/aside>\nOP can mitigate much of this by making the DC’s the last things online, letting leases expire before shutting down, or forcing them to expire, same with DNS scavenging, force the purge.<\/p>","upvoteCount":2,"datePublished":"2025-07-21T14:05:00.232Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/10","author":{"@type":"Person","name":"Jay-Updegrove","url":"https://community.spiceworks.com/u/Jay-Updegrove"}},{"@type":"Answer","text":"
I’m up to date with July, next aren’t due til the 12th August, so that won’t be a problem. I do updates manually anyway and always wait a week or 2 as microsoft have a track record of breaking something each patch Tuesday<\/p>","upvoteCount":3,"datePublished":"2025-07-21T14:13:14.056Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/11","author":{"@type":"Person","name":"richardkh","url":"https://community.spiceworks.com/u/richardkh"}},{"@type":"Answer","text":"
From an OS/domain perspective, there is no concern. If the network doesn’t need to be functional, you can shut it all down.<\/p>\n
Make sure you know about any service dependencies for startup order (DHCP reservations, for example).<\/p>\n
I would think the biggest concern will be the hardware’s age, and whether it will power up after an extended outage. Also protecting the equipment from ingesting any dust while it’s off. Drywall dust is incredibly harmful to electronics.<\/p>\n
Also, make sure you have good/tested backups. Just in case.<\/p>","upvoteCount":3,"datePublished":"2025-07-21T14:45:12.424Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/12","author":{"@type":"Person","name":"phildrew","url":"https://community.spiceworks.com/u/phildrew"}},{"@type":"Answer","text":"
The hardware is only 15 months old. I’ll power down and store safely somewhere covered up.<\/p>","upvoteCount":2,"datePublished":"2025-07-21T18:18:56.958Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/13","author":{"@type":"Person","name":"richardkh","url":"https://community.spiceworks.com/u/richardkh"}},{"@type":"Answer","text":"
Even better if you still have the original boxes with packaging materials!! We used to do 3-year lease cycles with IBM, they “required” we ship everything back in the original packaging…somehow, we always ended up with a few boxes missing for some reason…<\/p>","upvoteCount":2,"datePublished":"2025-07-21T18:20:07.667Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/14","author":{"@type":"Person","name":"Jay-Updegrove","url":"https://community.spiceworks.com/u/Jay-Updegrove"}},{"@type":"Answer","text":"\n\n
<\/div>\n
richardkh:<\/div>\n
\nThanks. That is what I am thinking. No one expects it to work, and there is only the phone system that will impact (they use DHCP to get the provision URL) but no one will use the phones anyway so that is no problem.<\/p>\n<\/blockquote>\n<\/aside>\n
At least you will not get calls as to why users have issues…heehee<\/p>","upvoteCount":2,"datePublished":"2025-07-22T02:59:45.367Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/15","author":{"@type":"Person","name":"adrian_ych","url":"https://community.spiceworks.com/u/adrian_ych"}},{"@type":"Answer","text":"
Short story…<\/p>\n
I been at my job for 9 years now. In all that time we have NEVER shut the entire data center down for ANY period of time.<\/p>\n
We did a re-organization of the data center about 6 months ago. We shut EVERY THING down for about 6 hours. We had off and on issues with things for about 2 weeks before things settled. We fought with NAC, we fought segmentation, we fought A/V…things we never thought we’d need to deal with.<\/p>\n
Though the DCs may be fine being off for 4-5 weeks…other things in your environment might not be happy about it.<\/p>\n
Be prepared.<\/p>","upvoteCount":2,"datePublished":"2025-07-22T14:25:23.467Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/16","author":{"@type":"Person","name":"general-tsao","url":"https://community.spiceworks.com/u/general-tsao"}},{"@type":"Answer","text":"\n\n
<\/div>\n
General Tsao:<\/div>\n
\nsegmentation<\/p>\n<\/blockquote>\n<\/aside>\n
Situations are different of course everywhere, in this case it is a basic network, 2 DCs, file/print server and a handful of clinets. No one logs in remotely, and if a PC is switched on during the downtime it simply won’t work and whoever didn’t read the email would have to go home!
With the comments I have had, the consensus is shut down and store safe. I could move to another room but I could risk someone coming and messing around.<\/p>\n
There might be some iPads floating around but otherwise nothing else uses the network out of hours.<\/p>","upvoteCount":3,"datePublished":"2025-07-22T14:47:34.839Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/17","author":{"@type":"Person","name":"richardkh","url":"https://community.spiceworks.com/u/richardkh"}},{"@type":"Answer","text":"
Thank you for all the comments and support. It was just one of those things that was bothering me all week, do I turn off or do I try and keep them on. It was never for the end users, just for the servers.<\/p>\n
The hardware is not old and they will be safer off locked up and covered away from any building work.<\/p>","upvoteCount":3,"datePublished":"2025-07-22T14:50:14.598Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/18","author":{"@type":"Person","name":"richardkh","url":"https://community.spiceworks.com/u/richardkh"}},{"@type":"Answer","text":"\n\n
<\/div>\n
richardkh:<\/div>\n
\nI don’t even need 2 in this situation (but I always install 2 DCs where possible)<\/p>\n<\/blockquote>\n<\/aside>\n
And you should, it’s best practise, to protect the domain.<\/p>","upvoteCount":2,"datePublished":"2025-07-22T14:53:18.966Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/19","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},{"@type":"Answer","text":"
Just power down, move, and keep unplugged. The e tended downtime isn’t an issue.when powering back up, power on your networking equipment first… switches, firewalls, etc. Then power on DCs, then other stuff.<\/p>\n
There’s nothing you need to do to prep DCHP. Backups are always a good idea, but that’s true even if there was no work going on.<\/p>","upvoteCount":2,"datePublished":"2025-07-22T14:57:39.036Z","url":"https://community.spiceworks.com/t/shutting-down-entire-domain-for-a-few-weeks/1225231/20","author":{"@type":"Person","name":"kevinhsieh","url":"https://community.spiceworks.com/u/kevinhsieh"}}]}}
richardkh
July 20, 2025, 11:51am
1
In a school I manage there is going to be some major work done in the room the servers are located, of all rooms in the entire building.
I have agreed with the school that the staff are not coming in and the network will be unavaialble. That is not the problem.
The problem I have is I don’t know what to do for the best..
Do I just leave the domain controllers off and put away safely? or do I try to keep them on somewhere else in the building?
I know I won’t have any issues with tombstoning, or replication timeouts (the 60 day thing), and the machines will be safer powered off. But what happens when the machine is powered up and suddenly jumps 3 weeks into the future, DHCP leases/DNS entries etc.
Do I need to do anything to prep, what do you guys recommend, just power off and leave them?
This is only for 3-4 weeks max
14 Spice ups
Hi Richard,
Please take bare-metal backup in an external HDD and shutdown the DC. Please take export of DNS and DHCP in excel and take Backup. If it is a VM Take full backup of VM. Mark the network and FC connections to server if available and take a note of password and IP address as you are shutting down server for long time.
4 Spice ups
Rod-IT
July 20, 2025, 12:54pm
3
If they are all off, here are the issues you may see, but none are critical.
DHCP lease confusion (Clients will just request new ones. No big deal).
DNS scavenging issues (if enabled, some stale records might be purged. But clients will re-register).
Kerberos ticket expiry (but these are short-lived anyway). No issues
Event log timestamps being out of sync. (As long as the DCs sync with a reliable NTP source, they’ll correct themselves).
If you’re confident no one needs domain services during the downtime, this is the safest and cleanest option.
14 Spice ups
How many DCs are there ?
We did have a major renovation once so what I did was to have BIOS power up DCs at 2000hrs then a scheduled task to “shutdown” at 0700hrs for both DCs ?
3 Spice ups
richardkh
July 21, 2025, 10:10am
5
Hi. There’s 2 DCs, second is just a DC/DNS (i.e all FSMO / DHCP are on one box) There will be dust, there’s major dry rot under the floor. The servers will be well out of the room they are currently in.
It’s whether I try to keep them on, or just store them and keep them physically safe. It’s more for the DC side of it, replication etc, there is a file/print server that will remain off but that’s just a member that will be absolutely fine.
As far as the staff/management are concerned they know the network is down, It’s not that I have to keep them on for business.
4 Spice ups
Rod-IT
July 21, 2025, 11:27am
6
This would be my preference.
It’s the least impactful.
You’ll still have ~5 weeks to fix it should there be an issue, though I don’t foresee any.
4 Spice ups
richardkh
July 21, 2025, 12:14pm
7
Thanks. That is what I am thinking. No one expects it to work, and there is only the phone system that will impact (they use DHCP to get the provision URL) but no one will use the phones anyway so that is no problem.
I could try all sorts of things to power them up and keep them running, but ultimately they could end up being turned off anyway or these contractors knock off the power, the UPS would shut them down but my concern would be security, dust and heat.
I will probably just delete all the DHCP leases before I turn them off, which would prevent stale ones but like you say the clinets will just get a new one.
It was more to try and keep the DCs working and in sync, but I am turning both off so it won’t see one missing for 2 weeks, the OS will do nothing when off, it was just that sudden jump to the future I was concerned about
All data is backed up off site, and to be fair it is only a small domain.
Thanks
3 Spice ups
Rod-IT
July 21, 2025, 12:31pm
8
If both are off, nether will see each other anyway. When you bring them back online, they’ll shake hands, welcome each other back from their break and resume work.
5 Spice ups
somedude2
July 21, 2025, 1:30pm
9
Keep in mind you will be weeks behind on OS updates when you come back, so leave some fudge time for startup…
4 Spice ups
OP can mitigate much of this by making the DC’s the last things online, letting leases expire before shutting down, or forcing them to expire, same with DNS scavenging, force the purge.
2 Spice ups
richardkh
July 21, 2025, 2:13pm
11
I’m up to date with July, next aren’t due til the 12th August, so that won’t be a problem. I do updates manually anyway and always wait a week or 2 as microsoft have a track record of breaking something each patch Tuesday
3 Spice ups
phildrew
July 21, 2025, 2:45pm
12
From an OS/domain perspective, there is no concern. If the network doesn’t need to be functional, you can shut it all down.
Make sure you know about any service dependencies for startup order (DHCP reservations, for example).
I would think the biggest concern will be the hardware’s age, and whether it will power up after an extended outage. Also protecting the equipment from ingesting any dust while it’s off. Drywall dust is incredibly harmful to electronics.
Also, make sure you have good/tested backups. Just in case.
3 Spice ups
richardkh
July 21, 2025, 6:18pm
13
The hardware is only 15 months old. I’ll power down and store safely somewhere covered up.
2 Spice ups
Even better if you still have the original boxes with packaging materials!! We used to do 3-year lease cycles with IBM, they “required” we ship everything back in the original packaging…somehow, we always ended up with a few boxes missing for some reason…
2 Spice ups
At least you will not get calls as to why users have issues…heehee
2 Spice ups
Short story…
I been at my job for 9 years now. In all that time we have NEVER shut the entire data center down for ANY period of time.
We did a re-organization of the data center about 6 months ago. We shut EVERY THING down for about 6 hours. We had off and on issues with things for about 2 weeks before things settled. We fought with NAC, we fought segmentation, we fought A/V…things we never thought we’d need to deal with.
Though the DCs may be fine being off for 4-5 weeks…other things in your environment might not be happy about it.
Be prepared.
2 Spice ups
richardkh
July 22, 2025, 2:47pm
17
General Tsao:
segmentation
Situations are different of course everywhere, in this case it is a basic network, 2 DCs, file/print server and a handful of clinets. No one logs in remotely, and if a PC is switched on during the downtime it simply won’t work and whoever didn’t read the email would have to go home!
With the comments I have had, the consensus is shut down and store safe. I could move to another room but I could risk someone coming and messing around.
There might be some iPads floating around but otherwise nothing else uses the network out of hours.
3 Spice ups
richardkh
July 22, 2025, 2:50pm
18
Thank you for all the comments and support. It was just one of those things that was bothering me all week, do I turn off or do I try and keep them on. It was never for the end users, just for the servers.
The hardware is not old and they will be safer off locked up and covered away from any building work.
3 Spice ups
Rod-IT
July 22, 2025, 2:53pm
19
And you should, it’s best practise, to protect the domain.
2 Spice ups
Just power down, move, and keep unplugged. The e tended downtime isn’t an issue.when powering back up, power on your networking equipment first… switches, firewalls, etc. Then power on DCs, then other stuff.
There’s nothing you need to do to prep DCHP. Backups are always a good idea, but that’s true even if there was no work going on.
2 Spice ups
