The operation failed because: Active Directory Domain Services could not configure the computer account $ to the remote Active Directory Domain Controller account . "Access is denied".

           Error occurred during demotion of domain controller

Hello Friends! Hope You are doing well. I am back again with a new solution for this error. Recently I faced this issue while demoting one of our DC. I was thinking what could be the possible reason. Replication is all good and sysvol also in sync. I referred the MS article and it was asking to configure above permission in default domain controller policy. I will share that link here. But I did not follow that.

I was looking for a simple solution . I got that and it is very easy.

Steps:-

1) In error message it will show the other DC name where the current DC (to be demoted) unable to configure.

2) Now go to Active Directory sites and services and expand it until you find the Other server. On that server provide full control (properties->security->Add the DC to be demoted-> Provide full control) to the DC to be demoted.

3) Go to Domain Controllers OU in dsa.msc and find out the DC to be demoted . Then go to the object tab and uncheck the  protected from accidental deletion box.

Please share your feedback if it worked for you. See you soon with a new solution.