RODC: promotion "target object referred by a link value is recycled"

Vrijedi za: Windows Server 2012 R2 DatacenterWindows Server 2008 R2 Datacenter

Scenario


Attempting to promote an RODC with the same name as a previous RODC that has been demoted from the domain.

The recycle bin is enabled.

It has been less that the number of days configured for the msDS-deletedObjectLifetime.

Promotion is failing with the error "replication operation failed because the target object referred by a link value is recycled"

Cause


During the demotion of the previous RODC that had the same name the KRBTGT_##### service account object was deleted and moved to the recycle bin.

The KRBTGT_##### object contains the attribute msDS-KrbTgtLinkBL that's contains a backlink reference to the server object.

During the promotion process when we are replicating secrets the backlink is found and errors out the promotion.

Resolution


You can view the objects in the Active Directory Administrative Center if using 2012 and above.

Using either PowerShell or LDP delete the KRBTGT_##### object(s) that are in the recycle bin.