Downgrade the domain controller to an independent server or a Member Server (Operation memo)

If another domain controller exists in the domain, it is downgraded to a member server in the domain. (Still in this domain)

1. "Start"-"run"-"dcpromo" command. 2. perform the following steps: Do not tick it. -- "This server is the last domain controller in the domain." Enter the new local administrator (administrators) the password is deleting ad3 and is still in the domain to become a member server. 2. If the domain controller is the last domain controller in the domain, after it is downgraded, no Domain Controller exists in this domain. (Working Group mode) 1. "Start"-"run"-"dcpromo" command. 2. The procedure is as follows: because the machine is the last domain controller and is a "global catalog ". Check that "this server is the last domain controller in the domain" has become an independent server. 3. If this domain controller is a "global catalog", downgrade it, it no longer plays the role of "global catalog". Therefore, please first determine whether there are other "Global Catalog" roles on the network. Otherwise, user login operations will be affected. 1. append the domain controller to the "Global Catalog" function "start"-"run"-"dssite. MSC command Global Catalog explanation: After other domain controllers are installed in the directory forest, you can use Active Directory
The site and service tool changes the default location of the Global Catalog to another domain controller. You can also configure any domain controller to host a global catalog based on your organization's requirements for service login requests and search queries. Global
The more catalog servers, the faster the response to user queries. However, enabling many domain controllers as Global Catalog servers will increase the replication traffic in the network, thus affecting the response speed.

The Global Catalog executes two key Active Directory roles-Logon and query:

Login
. In the local mode domain, the Global Catalog enables active directory by providing the account with universal group member identity information 6 (the account sends login requests to the domain controller)
The network logon of the client. In fact, not only
And the identity of each object, or even the startup of each computer, must reference the Global Catalog server. In multi-domain installation, at least one
The Global Catalog domain controller is running and valid. When a user uses a non-default primary user name (UPN)
The Global Directory Server must also be valid during logon. (For details about logon, see "Logon Name: UPN and Sam account name ).
If the global directory is invalid when the user starts the network logon process, the user can only log on to the local computer, but cannot log on to the network. The only exception is that if you are a member of the domain administrator (domain admin) group, you can log on to the network if the Global Catalog is invalid.

Query
.
In a directory forest that contains multiple domains, the Global Catalog allows the client to conveniently and quickly perform searches across all domains without having to search each domain one by one. Global Catalog enables the directory structure in the directory forest to end users who search for information
Transparent. The vast majority of Active Directory Network Communication is related to queries:
Users, administrators, and programs request information about directory objects. The query process is more frequent than the directory update process. If more than one domain controller is specified as a Global Catalog server
The response time of the user who finds the directory information is less, but the network replication traffic increases. Therefore, the relationship between them must be balanced.