I recently had, despite all my protections, a domain controller die on me. After several failed attempts to save time I finally came to the conclusion that I really was just going to have to start over.
So, step 1 - I went to Users and Computers to delete the domain controller object out of the Domain Controller container.
And Windows immediately asks why in the world I'm not doing this the RIGHT way. Well, because I'm an idiot.
I first tried this from my jump box where I do all my administration and was more than a little concerned when I got this error.
Windows cannot delete object
LDAP://ads2-hq.domain.local/CN=ADS1-HQ,OU=Domain Controllers,DC=domain.local because: The specified module could not be found.
Here's a picture.
So, I was trying to delete ads1-hq, but here was this error on my jump box telling me there was an issue with ads2-hq. I tried it a couple of more times, you know, because I'm crazy. And because I needed a screen cap for this post.
Then I consoled over to the domain controller (ads2-hq in this case) and retried the operation directly. It worked without error.
So, apparently if you're going to go hard deleting domain controllers out of your AD, you have to do it from another domain controller.
For those running without a GUI - well, you're on your own. But at least you have some direction on what this error means.
https://superit.in/windows-cannot-delete-the-object-ldap-dc01-superit-in-cndc01oudomain-controllerdcsuperitdcin-because-the-specified-module-could-not-be-found/
ReplyDelete