I have a question about ntdsutil in a multi-domain enviroment. We have a flat domain model with an empty root. After unsuccessful demotion of DC in child domain, I used NTDS to remove server metadata from child domain ( connecting to another DC in child domain ). However after having replication problems after promoting same DC back I found that metadata for that server also existed in ROOT domain? Do you need to remove metadata from both child and root domain? Also I noticed that using NTDS from child DC I could connect to any of the ROOT DC's using the credentials for the child DC! Make sense? I'm not sure how far I could go ( like deleting servers in root domain ) but
how would I know unless I tried! Another words is there a permmisions issue with this utility in a multi-domain enviroment. I do have control of the root but I cannot have our net admins at our remote sites in a child domain using this tool and deleting servers from AD. Any info greatly appreciated. John Shukovsky NJDHS This E-mail, including any attachments, may be intended solely for the personal and confidential use of the sender and recipient (s) named above. This message may include advisory, consultative and/or deliberative material and, as such, would be privileged and confidential and not a public document. Any Information in this e-mail identifying a client of the department of Human Services is confidential. If you have received this e-mail in error, you must not review, transmit, convert to hard copy, copy, use or disseminate this e-mail or any attachments to it and you must delete this message. You are requested to notify the sender by return e-mail.
begin:vcard n:Shukovsky;John tel;cell:609-226-7553 tel;work:609-292-5921 x-mozilla-html:FALSE org:NJ Department of Human Services;Network Operations adr:;;;;;; version:2.1 fn:John Shukovsky end:vcard
