Microsoft KB Archive/282272

= Error Message Occurs When You Demote a Domain Controller =

Article ID: 282272

Article Last Modified on 2/28/2007

-

APPLIES TO


 * Microsoft Windows Server 2003, Enterprise Edition (32-bit x86)
 * Microsoft Windows Server 2003, Standard Edition (32-bit x86)

-



This article was previously published under Q282272



SYMPTOMS
When you demote a Windows domain controller by using the Active Directory Installation wizard (Dcpromo.exe), you may receive a the following error message:

This domain controller holds the last replica of the following application directory partitions:

DC=MSTAPI,DC= ,DC=com



CAUSE
This behavior can occur if you installed the domain controller by using the Configure Your Server wizard. When you use this wizard, it automatically creates a program partition or a non-domain naming context called DC=MSTAPI,DC= ,DC=com.



RESOLUTION
If you created the partition by using the Configure Your Server wizard, and you used the default name of Mstapi, if this name is not in use, use the Tapicfg.exe tool to remove this name. To do so, run the following command, where .com is your domain DNS name:

'''tapicfg remove /directory:mstapi. .com'''

If the partition was created manually, or if it was created by using another program, you can remove it by using the Ntdsutil utility:
 * 1) Open a command prompt, and then type ntdsutil.
 * 2) From the Ntdsutil prompt, type domain management.
 * 3) In the Domain Management window, type connections.
 * 4) Type connect to server.

After the binding message appears, you will have a successful connection to your server.
 * 1) In the Server Connections window, type quit.
 * 2) In the Domain Management window, type list . A list of the naming contexts on this server appears.
 * 3) To remove the application directory partition replica, type remove nc replica.
 * 4) At the Ntdsutil prompt, type Q, and then press ENTER until you are returned to the CMD command prompt.

You can now successfully demote this domain controller. You may have to restart this domain controller before you start the Active Directory Installation wizard again.



MORE INFORMATION
Windows supports program naming contexts, also referred to as non-domain naming contexts. This feature allows the MIcrosoft Active Directory directory service to host dynamic data without significantly impacting network performance by enabling you to control the scope of replication and placement of replicas. With Active Directory services, you can create a new type of naming context or partition, referred to as the application partition. This naming context can contain a hierarchy of any type of object except security principals (users, groups, and computers), and it can be configured to replicate to any set of domain controllers in the forest that are not necessarily all in the same domain.

Keywords: kbenv kberrmsg kbprb KB282272

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.