I inherited this one.
Server was promoted to a DC in an existing single domain/forest that had one DC.
Client shut down old server without demoting or using metadata cleanup.
Client renamed new server to the name of the old server.
This broke AD/DNS/DHCP and where I got involved.
I was able to change the name of the server back to the name it had when it was promoted. NETDOM shows only the 1 FQDN of the server and AD/DNS/DHCP is working.
However, the original server still shows up in AD. It has a different SID, different SPNs, etc.
The client still wants to rename the new server to the old name but the object exists in AD so that's not possible.
If I run ntdsutil and metadata cleanup I am unable to remove the DC and the error is 'LDAP error 0x35(53 (Unwilling To Perform)'.
Any idea what could be causing this now?
-=Chris