Restart the domain controller in Directory Services Restore Mode (locally or remotely)

By Vikas Bagwe -

Locally Restart a Domain Controller in Directory Services Restore Mode

To take a domain controller offline, restart it in Directory Services Restore Mode and log on as the local Administrator. If you have physical access to the domain controller, you can start in Directory Services Restore Mode locally.
In Directory Services Restore Mode, the domain controller is running as a member server and not a domain controller. When you start Windows 2000 Server in this mode, the local Administrator account is authenticated by the local Security Accounts Manager (SAM) database. Therefore, logging on requires using the local Administrator password, not an Active Directory domain password.
Requirements
·         Credentials: local Administrator account
·         Tool: N/A
To locally restart in Directory Services Restore Mode
1.       Restart the domain controller.
2.       When the screen for selecting an operating system appears, press F8.
3.       Select Directory Services Restore Mode from the Windows Advanced Options menu.
4.       When prompted, log on as the local Administrator.



Remotely Restart a Domain Controller in Directory Services Restore Mode


To take a domain controller offline, restart it in Directory Services Restore Mode and log on as the local Administrator. If the administrative computer has Terminal Services Client installed and the domain controller has Terminal Services installed and configured in Remote administration mode, you can connect to the domain controller, modify the boot.ini file, and restart the domain controller in Directory Services Restore Mode.
In Directory Services Restore Mode, the domain controller is running as a member server and not a domain controller. When you start Windows 2000 Server in this mode, the local Administrator account is authenticated by the local SAM database. Therefore, logging on requires using the local Administrator password, not an Active Directory domain password.
Requirements
  • Credentials: local Administrator account
  • Tools: Terminal Services Client, Notepad
To remotely restart in Directory Services Restore Mode
1.       On a Terminal Services client, connect to the domain controller you want to restart in Directory Services Restore Mode. Perform the following steps on the remote domain controller.
2.       When connected, open a command prompt and change to the system directory.
3.       At the command prompt, type the following and then press ENTER:
4.  Attrib -r -s -h boot.ini
5.       To open the boot.ini file, type the following and then press ENTER:
6.  Notepad boot.ini
7.       Modify the default entry to include the /SAFEBOOT:DSREPAIR switch, as shown in the following example:
8.  multi(0)disk(0)rdisk(0)partition(2)\WINNT="W2K DC \\  name>" /fastdetect /SAFEBOOT:DSREPAIR
Note: The /SAFEBOOT:DSREPAIR switch works for domain controllers running Windows 2000 Server family.
9.       Save the modified boot.ini file and close Notepad.
10.    On the Start menu, click Shut Down and then click Restart. During the restart process, the Terminal Services Client reports the session is disconnected.
Caution: Be sure to click Restart and not Shut Down at this step. If you click Shut Down, you cannot remotely restart the domain controller.
11.    Wait for a period adequate for the restart process to complete on the remote domain controller, and then reconnect the client session.
12.    When reconnected, log on as the local Administrator.
13.    Before continuing with offline procedures, open a command prompt and change to the system directory.
14.    At the command prompt, type the following and then press ENTER:
15.Notepad boot.ini
16.    Delete the /SAFEBOOT:DSREPAIR switch from the default entry in the boot.ini file and save the file. Close Notepad.
Important: If you restart the domain controller before you modify the boot.ini file, the domain controller remains offline.
17.    At the command prompt (still in the system directory), type the following and then press ENTER:
18.Attrib +r +s +h boot.ini
The boot.ini file is now returned to its original state, which starts the domain controller normally.

Ref: http://technet.microsoft.com/en-us/library/bb727062.aspx

Comments

Post a Comment

Popular posts from this blog

How To Add Print Button to Blogger Posts

By -
This tutorial explains how to add a small print button below the post titles to print It is really necessary to Add Print Button to Blogger Posts, if there were any visitors or viewers want to print one or more posts in a blog. Like this below : Click Here to See the Example  (scroll at the end of post to find printer button icon) How to Add Print Button to Blogger Posts ? ... First Step 1. Go to Dashboard, click Design, click Edit HTML 2. Click Expand Widget Templates 3. Find code of HTML below : </head> you can use (Ctrl+F) to find easily
Read more

INSTALL CISCO VPN CLIENT ON WINDOWS 10 (32 & 64 BIT). FIX REASON 442

By -
Image
This article shows how correctly install Cisco VPN Client (32 & 64 bit) on Windows 10 (32 & 64 bit) using simple steps, overcome the ‘ This app can’t run on this PC ’ installation error , plus fix the Reason 442: Failed to enable Virtual Adapter error message . The article applies to New Windows 10 installations or Upgrades from earlier Windows versions and all versions before or after Windows 10 build 1511 .  To simplify the article, we’ve broken it into the following two sections: How to Install Cisco VPN client on Windows 10 (clean installation or upgrade from previous Windows), including Windows 10 build prior or after build 1511 . How to Fix Reason 442: Failed to enable Virtual Adapter on Windows 10 Figure 1. The Cisco VPN Client Reason 442: Failed to enable Virtual Adapter error on Windows 10 HOW TO INSTALL CISCO VPN CLIENT ON WINDOWS 10 (NEW INSTALLATIONS OR O/S UPGRADES) The instructions below are for new or clean Windows 10 installa
Read more