How to Demote Active Directory in Windows Server 2012 R2

In this article, we will learn that How to demote a domain controller in windows server 2012 active directory domain services and I will be using windows server 2012 R2 as an example.

In the previous version of windows servers DCPROMO.exe utility was present to perform the same function but in windows server 2012 R2 it is deprecated so, how can we demote domain controller DC in windows server. First of all log into the windows server and open server manager.

Select the Manage drop-down menu by clicking on “Manage” at the top right corner.

Click on “Remove roles and features” as it will open up remove roles and features wizard.

Press “Next” and the wizard will ask you to select the server from which you want to remove the domain controller feature, select your server and press “Next”

It will bring you to the server roles and from the list select “Active directory domain services”

A new window will be popped up click on remove features.

Now press “Next” and it will throw an error message that active directory controller needs to be demoted before the AD DS role can be removed.

Click on demote this domain controller and it will open up a new windows console.

Enter the credentials and Click “Next”

Check the Box “proceed with removal” and press “Next”

It will ask for the new administrator password to enter the credentials and press “Next”. In review options window it will be explaining the selections so select demote if you want to demote the domain controller.

It will sometime in demoting and in the end it will restart your server so once the server restarts it will become a member of a domain that is was previously a domain controller in.

Now it’s time to verify whether active directory DS is removed or not so logon to DNS service by using the administrator account credentials and then launch the DNS console to verify the obliteration of service records for the removed domain controller.

Leave a Reply