So, in my environment we have a good number of Read Only domain controllers. Occasionally, i've had to demote one for various reasons. I've run into issues every time where the demotion process moves the KRBTGT account for the DC to the Recycle Bin. Once there, the server can't be promoted again because the object exists in the recycle bin. I've tried to restore the object, but it look like it restores the account, but doesn't completely remove it from the recycle bin, so it still fails. This is the first company i've worked for that uses RODC's...is this normal behavior? If so, is there anything I can do other than give the server a different name and try again? Thanks for any feedback or suggestions in advance...
Seth