Delete Corrupt AD Integrated DNS Zone

windows-server-2008 domain-name-system
8,703

Zow. You've got a mess there!

You might try deleting the DNS zone using ADSIEDIT. If it was a forest-wide zone, you're going to find the zone in the ForestDNSZones NC, under the MicrosoftDNS container.

If it was a domain-wide zone, you'll find the zone in DomainDNSZones NC under the same container.

(You really should be backing-up AD and should have probably restored from backup when this happened, but that's another rant for another question.)

Share:
8,703

Related videos on Youtube

Admin
Author by

Admin

Updated on September 17, 2022

Comments

  • Admin
    Admin almost 2 years

    I have a Windows 2008 server which failed to boot due to a corrupted NTDS database. I managed to recover AD in AD Restore Mode, using ESENTUTL to repair the corruption. The system now boots, but my DNS zones were active directory integrated, and one of them has been corrupted.
    I figured I would just re-create them, but when i try to remove the corrupted zone i get an error..

    "Zone Cannot be Deleted. Active Directory Service unavailble"

    I can access AD fine via AD users & computers and also ADSI Edit but cannot find a way of manualy or forcefuly removing the corrupted DNS zone.

    when i try to use ADSIEdit to remove the entry from DC=DomainDNSZones i get the error....

    Operation Failed. Error code: 0x20ef
    The directory service encountered an unknown failure.

    000020ef: SvcErr: DSID-020503E2, problem 5005
    (UNABLE_TO_PROCEED), data 8203

    Any help appreciated.

  • Ameer Deen
    Ameer Deen about 15 years
    I'm aware that this would have been a very different job (much easier) having a system state backup, however I'm not the Sys Admin for the this server, just the guy called in to try and resolve the mess. As for ADSI edit please see the amended post above.
  • Spence
    Spence about 15 years
    Sorry for sounding snobby-- I've definitely been "that guy" who has to clean up such a mess. I'm curious how LDP.EXE does for you deleting the DNS zone container.
  • Spence
    Spence about 15 years
    Good to hear it's resolved. Slap that sysadmin around a little bit and get him / her to start taking regular backups!

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

MSDCS zone missing
What's wrong with my reverse lookup zone?
DcDiag: "Warning: The Active Directory zone on this DC/DNS server was not found (probably a misconfiguration)" meaning?
Destination host unreachable - Windows Server 2008
Can't add client machine to windows server 2008 domain controller
local domain DNS vs global DNS setup
Wrong IP address registering in DNS
Unable to register a client to domain
Windows Server 2008 Domain alias for users to log on to?
Can't ping NETBIOS name of Server 2008 R2 domain