We were trying to Demote a 2008R2 Server. AD wouldn't let us and gave the error.
The operation failed because:
Active Directory Domain Services could not transfert the remaining data in directory partition DC=DomainDnsZones, DC=, DC=Domainame, DC to Active Directory Domain Controller
New Domain Controller.
"The directory service is missing mandatory configuration information, and is unable to determine the ownership of floating single-master operation roles."
We got looking and two of our sub-domains list servers that are at least 5 years old as domainReplica in ADSI Edit, which coincide with the event viewer.Event ID2022 The operations master roles held by this directory server could not transfer to the following remote directory server.
We had tried Ndtsutil and there are no servers in there by that name. As mentioned these are really really old servers. I have worked here almost six years and it is before my time for one of them. We have the root domain-which is fine. Two sub-domains have
this problem all the other ones are fine.
I go to:
1-adsiedit in one of the problem domains.
2-Right click adsiedit, pick Default naming context, ok
3-Right click the domain under "Default naming context", properties
4-scroll down to domainReplica...the server listed is a really old one.
5-try to edit that entry
6-clear, ok
7-apply.... Operation failed. Error code: 0x209a Access to the attribute is owned by the Security Accounts Manager (SAM). 0000209A: SvcErr: DSID-031A1021, problem 5003 (WILL_NOT_PERFORM), data 0
Peter Andersen