Question

Replication Issue: The target principal name is incorrect

Asked by: Maxwellb

Hi experts,

A while back, I set up a 2K3 machine in anticipation of a new branch opening - the opening date got moved a few months back and now when I started it up after a few months being shut down, I am having replication problems. Everything was working before I shut it down. The new office is in a different site.  Specifically, when I try a manual replicate in AD sites and services from any server in the first site I get the error message, "The following error occurred during the attempt to contact the domain controller Server01. The target principal name is incorrect". As well, when I enter the UNC path to any other machine, I get this error, " Logon failure: the target account name is incorrect". I thought the problem might have occurred because of the daylight savings change - but even after I installed the patch the same problems occurred. I only have one domain in total - no child domains. The event viewer is filled to the brim with KCC and Kerbios errors - specifically, " 1865", "1311", "1566". I can ping the other machines fine, even put their IP address in place of UNC and I will get a share listing of the remote computer.

I ran a dcdiag on it and got these results:

C:\Program Files\Support Tools>dcdiag

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests

   Testing server: Branch2\SERVER04
      Starting test: Connectivity
         ......................... SERVER04 passed test Connectivity

Doing primary tests

   Testing server: Branch2\SERVER04
      Starting test: Replications
         [Replications Check,SERVER04] A recent replication attempt failed:
            From SERVER01 to SERVER04
            Naming Context: DC=ForestDnsZones,DC=ourdomain,DC=ca
            The replication generated an error (-2146893022):
            The target principal name is incorrect.
            The failure occurred at 2007-03-13 19:53:29.
            The last success occurred at 2006-10-31 08:45:48.
            20 failures have occurred since the last success.
         [Replications Check,SERVER04] A recent replication attempt failed:
            From SERVER01 to SERVER04
            Naming Context: DC=DomainDnsZones,DC=ourdomain,DC=ca
            The replication generated an error (-2146893022):
            The target principal name is incorrect.
            The failure occurred at 2007-03-13 19:53:28.
            The last success occurred at 2006-10-31 08:45:48.
            20 failures have occurred since the last success.
         [Replications Check,SERVER04] A recent replication attempt failed:
            From SERVER01 to SERVER04
            Naming Context: CN=Schema,CN=Configuration,DC=ourdomain,DC=ca
            The replication generated an error (-2146893022):
            The target principal name is incorrect.
            The failure occurred at 2007-03-13 19:53:28.
            The last success occurred at 2006-10-31 08:45:48.
            20 failures have occurred since the last success.
         [Replications Check,SERVER04] A recent replication attempt failed:
            From SERVER01 to SERVER04
            Naming Context: CN=Configuration,DC=ourdomain,DC=ca
            The replication generated an error (-2146893022):
            The target principal name is incorrect.
            The failure occurred at 2007-03-13 19:53:27.
            The last success occurred at 2006-10-31 08:45:48.
            20 failures have occurred since the last success.
         [Replications Check,SERVER04] A recent replication attempt failed:
            From SERVER01 to SERVER04
            Naming Context: DC=ourdomain,DC=ca
            The replication generated an error (-2146893022):
            The target principal name is incorrect.
            The failure occurred at 2007-03-13 19:53:27.
            The last success occurred at 2006-10-31 08:45:48.
            20 failures have occurred since the last success.
         REPLICATION-RECEIVED LATENCY WARNING
         SERVER04:  Current time is 2007-03-13 20:42:48.
            DC=ForestDnsZones,DC=ourdomain,DC=ca
               Last replication recieved from SERVER01 at 2006-10-31 08:45:48.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!

               Last replication recieved from SERVER03 at 2006-10-31 07:50:15.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!

            DC=DomainDnsZones,DC=ourdomain,DC=ca
               Last replication recieved from SERVER01 at 2006-10-31 08:45:48.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!

               Last replication recieved from SERVER03 at 2006-10-31 07:50:15.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!

            CN=Schema,CN=Configuration,DC=ourdomain,DC=ca
               Last replication recieved from SERVER01 at 2006-10-31 08:45:48.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!

               Last replication recieved from SERVER03 at 2006-10-31 07:50:15.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!

            CN=Configuration,DC=ourdomain,DC=ca
               Last replication recieved from SERVER01 at 2006-10-31 08:45:48.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!

               Last replication recieved from SERVER03 at 2006-10-31 08:05:23.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!

            DC=ourdomain,DC=ca
               Last replication recieved from SERVER01 at 2006-10-31 08:45:48.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!

               Last replication recieved from SERVER03 at 2006-10-31 08:31:42.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!

         REPLICATION-RECEIVED LATENCY WARNING
          Source site:
         CN=NTDS Site Settings,CN=HomeNetwork,CN=Sites,CN=Configuration,DC=brodi
enet,DC=ca
          Current time: 2007-03-13 20:42:48
          Last update time: 2006-10-31 08:05:08
          Check if source site has an elected ISTG running.
          Check replication from source site to this server.
         ......................... SERVER04 passed test Replications
      Starting test: NCSecDesc
         ......................... SERVER04 passed test NCSecDesc
      Starting test: NetLogons
         ......................... SERVER04 passed test NetLogons
      Starting test: Advertising
         ......................... SERVER04 passed test Advertising
      Starting test: KnowsOfRoleHolders
         [SERVER01] DsBindWithSpnEx() failed with error -2146893022,
         The target principal name is incorrect..
         Warning: SERVER01 is the Schema Owner, but is not responding to DS RPC
Bind.
         [SERVER01] LDAP bind failed with error 8341,
         A directory service error has occurred..
         Warning: SERVER01 is the Schema Owner, but is not responding to LDAP Bi
nd.
         Warning: SERVER01 is the Domain Owner, but is not responding to DS RPC
Bind.
         Warning: SERVER01 is the Domain Owner, but is not responding to LDAP Bi
nd.
         Warning: SERVER01 is the PDC Owner, but is not responding to DS RPC Bin
d.
         Warning: SERVER01 is the PDC Owner, but is not responding to LDAP Bind.

         Warning: SERVER01 is the Rid Owner, but is not responding to DS RPC Bin
d.
         Warning: SERVER01 is the Rid Owner, but is not responding to LDAP Bind.

         Warning: SERVER01 is the Infrastructure Update Owner, but is not respon
ding to DS RPC Bind.
         Warning: SERVER01 is the Infrastructure Update Owner, but is not respon
ding to LDAP Bind.
         ......................... SERVER04 failed test KnowsOfRoleHolders
      Starting test: RidManager
         ......................... SERVER04 failed test RidManager
      Starting test: MachineAccount
         ......................... SERVER04 passed test MachineAccount
      Starting test: Services
         ......................... SERVER04 passed test Services
      Starting test: ObjectsReplicated
         ......................... SERVER04 passed test ObjectsReplicated
      Starting test: frssysvol
         ......................... SERVER04 passed test frssysvol
      Starting test: frsevent
         ......................... SERVER04 passed test frsevent
      Starting test: kccevent
         An Warning Event occured.  EventID: 0x8000061E
            Time Generated: 03/13/2007   20:42:02
            Event String: All domain controllers in the following site that
         An Error Event occured.  EventID: 0xC000051F
            Time Generated: 03/13/2007   20:42:02
            Event String: The Knowledge Consistency Checker (KCC) has
         An Warning Event occured.  EventID: 0x80000749
            Time Generated: 03/13/2007   20:42:02
            Event String: The Knowledge Consistency Checker (KCC) was
         An Warning Event occured.  EventID: 0x8000061E
            Time Generated: 03/13/2007   20:42:02
            Event String: All domain controllers in the following site that
         An Error Event occured.  EventID: 0xC000051F
            Time Generated: 03/13/2007   20:42:02
            Event String: The Knowledge Consistency Checker (KCC) has
         An Warning Event occured.  EventID: 0x80000749
            Time Generated: 03/13/2007   20:42:02
            Event String: The Knowledge Consistency Checker (KCC) was
         An Warning Event occured.  EventID: 0x8000061E
            Time Generated: 03/13/2007   20:42:02
            Event String: All domain controllers in the following site that
         An Error Event occured.  EventID: 0xC000051F
            Time Generated: 03/13/2007   20:42:02
            Event String: The Knowledge Consistency Checker (KCC) has
         An Warning Event occured.  EventID: 0x80000749
            Time Generated: 03/13/2007   20:42:02
            Event String: The Knowledge Consistency Checker (KCC) was
         An Warning Event occured.  EventID: 0x8000061E
            Time Generated: 03/13/2007   20:42:02
            Event String: All domain controllers in the following site that
         An Error Event occured.  EventID: 0xC000051F
            Time Generated: 03/13/2007   20:42:02
            Event String: The Knowledge Consistency Checker (KCC) has
         An Warning Event occured.  EventID: 0x80000749
            Time Generated: 03/13/2007   20:42:02
            Event String: The Knowledge Consistency Checker (KCC) was
         ......................... SERVER04 failed test kccevent
      Starting test: systemlog
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   19:50:52
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   19:50:52
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   19:59:36
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:00:06
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:15:28
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:23:42
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:24:18
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:25:09
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:25:10
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:25:13
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0xC0001B6E
            Time Generated: 03/13/2007   20:25:35
            (Event String could not be retrieved)
         An Error Event occured.  EventID: 0x00000457
            Time Generated: 03/13/2007   20:25:52
            (Event String could not be retrieved)
         An Error Event occured.  EventID: 0x00000457
            Time Generated: 03/13/2007   20:25:54
            (Event String could not be retrieved)
         An Error Event occured.  EventID: 0x00000457
            Time Generated: 03/13/2007   20:25:56
            (Event String could not be retrieved)
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:26:00
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:26:00
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x00000457
            Time Generated: 03/13/2007   20:26:17
            (Event String could not be retrieved)
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:27:55
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:36:30
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:42:49
            Event String: The kerberos client received a
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 03/13/2007   20:42:49
            Event String: The kerberos client received a
         ......................... SERVER04 failed test systemlog
      Starting test: VerifyReferences
         ......................... SERVER04 passed test VerifyReferences

   Running partition tests on : ForestDnsZones
      Starting test: CrossRefValidation
         ......................... ForestDnsZones passed test CrossRefValidation

      Starting test: CheckSDRefDom
         ......................... ForestDnsZones passed test CheckSDRefDom

   Running partition tests on : DomainDnsZones
      Starting test: CrossRefValidation
         ......................... DomainDnsZones passed test CrossRefValidation

      Starting test: CheckSDRefDom
         ......................... DomainDnsZones passed test CheckSDRefDom

   Running partition tests on : Schema
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom

   Running partition tests on : Configuration
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom

   Running partition tests on : ourdomain
      Starting test: CrossRefValidation
         ......................... ourdomain passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... ourdomain passed test CheckSDRefDom

   Running enterprise tests on : ourdomain.com
      Starting test: Intersite
         ......................... ourdomain.com passed test Intersite
      Starting test: FsmoCheck
         ......................... ourdomain.com passed test FsmoCheck

C:\Program Files\Support Tools>





A gracious 500 points to anyone who can solve this issue.
Thank you kindly,
Max

This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.

Subscribe now for full access to Experts Exchange and get

Instant Access to this Solution

  • Plus...
  • 30 Day FREE access, no risk, no obligation
  • Collaborate with the world's top tech experts
  • Unlimited access to our exclusive solution database
  • Never be left without tech help again

Subscribe Now

Asked On
2007-03-13 at 21:16:44ID22447953
Tags

name

,

target

,

principal

,

incorrect

Topics

Windows Networking

,

Microsoft Server

,

Active Directory

Participating Experts
3
Points
500
Comments
27

Trusted by hundreds of thousands everyday for fast, accurate and reliable tech support.

  • "The time we save is the biggest benefit of Experts Exchange to Warner Bros. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange." Mike Kapnisakis, Warner Bros.
  • "Our team likes having a resource that is more secure than just using Google and most experts using this service really know their stuff. It's nice to look here first versus using Google." Dayna Sellner, Lockheed Martin
  • "Anytime that I've been stumped with a problem, 9 out of 10 times Experts Exchange has either the accepted solution or an open discussion of the potential solution to the problem." Kenny Red, eBay Inc.

See what Experts Exchange can do for you.

Got a question?

We've got the answer.

Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.

Screenshot of Experts Exchange Knowledgebase

Need individual assistance?

Our experts are ready to help.

If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.

Screenshot of Experts Exchange Knowledgebase

Want to learn from the best?

Read articles from industry experts.

Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.

Screenshot of an Article

Working on a long term project?

Store your work and research.

Save solutions to your questions, answers you’ve discovered through searching plus helpful articles in your personal knowledgebase for easy future access.

Screenshot of Experts Exchange Knowledgebase

Access the answers to your technology questions today.

Subscribe Now

30-day free trial. Register in 60 seconds.

What Makes Experts Exchange Unique?

Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.

Trusted by the world's most respected brands.

image of each brand's logo

Faithfully serving IT professionals since 1996.

Experts Exchange Logo

Try it out and discover for yourself.

Subscribe Now

30-day free trial. Register in 60 seconds.

Related Solutions

  1. LDAP Services for NDS
    I've set up LDAP Services for NDS but I can't seem to search for users in the entire tree, only those in the OU specified in my LDAP client. Is there anyone out there who has experience with Novell's LDAP server who has suggestions?
  2. NDS required for a small WAN?
    Is NDS required to share data and/or E-Mail across a small WAN of four Servers. I have Netware 4.11 installed at all locations and having trouble with the NDS concept. The servers are connected thru Frame-Relay. Also, is is dangerous to remove NDS if necessary?
  3. Problem with the NDS backup
    After create the backup.nds file in the nwconfig console, nobody can connect to the server with a new login ! The NDS is dead !?!. How can I activate the NDS / DS again? The DS is started! The backup.nds file is in the SYS:SYSTEM directory. To restore the backup.nds is not...
  4. NDS root server
    What will happen if the root server in an NDS tree goes down. This had another 6 servers in the tree
  5. Netware 4.11 NDS
    I am currently running Netware 4.11 and am having a problem with the server syncing with the other servers. The server was installed months ago but is still listed as new in NDS. Attempts to update it or delete it give the -654 partition busy or -673 partition not connected. ...
  6. NDS to AD Migration
    We have a Novell 6 network of about 150 schools that each have one or more servers. We have an Exchange 2003 Active Directory that contains email accounts for all users so all users already have Active directory accounts. We will EVENTUALLY be migrating all the school servers...

Free Tech Articles

  1. WARNING: 5 Reasons why you should NEVER fix a computer for free.
    It is in our nature to love the puzzle. We are obsessed. The lot of us. We love puzzles. We love the challenge. We thrive on finding the answer. We hate disarray. It bothers us deep in our soul. W...
  2. SCCM OSD Basic troubleshooting
    SCCM 2007 OSD is a fantastic way to deploy operating systems, however, like most things SCCM issues can sometimes be difficult to resolve due to the sheer volume of logs to sift through and the dispe...
  3. Migrate Small Business Server 2003 to Exchange 2010 and Windows 2008 R2
    This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Windows 2008 R2 with Exchange 2010. For this migration to work you will need the fo...
  4. Create a Win7 Gadget
    This article shows you how to create a simple "Gadget" -- a sort of mini-application supported by Windows 7 and Vista. Gadgets can be dropped anywhere on the desktop to provide instant information, ...
  5. Outlook continually prompting for username and password
    There have been a lot of questions recently regarding Outlook prompting for a username and password whilst using Exchange 2007. There are a few reasons why this would happen and I will try to cover t...
  6. Backup Exchange 2010 Information Store using Windows Backup
    There seems to be quite a lot of confusion around the ability to backup Exchange 2010 using the built in Windows Backup feature. This stems from the omission of this feature prior to Exchange 2007 s...

Cloud Class Webinars

  1. Avoiding Bugs in Microsoft Access
    Alison Balter takes and in-depth look at avoiding bugs in Access. In this webinar you will learn about using the immediate window to debug your applications, invoking the debugger, using breakpoints to troubleshoot, stepping through code, setting the next statement to execute, ...
  2. Top 10 Best New Features in Visio 2010
    Scott Helmers gives live demonstrations of the top 10 new features in Visio 2010. This webinar will teach you how to create compelling diagrams by adding shapes to the page with a single click, linking the shapes in a diagram to data in Excel (or SQL Server, or SharePoint), ...
  3. IT Consultant Business Secrets Revealed
    Michael Munger, Experts Exchange tech pro and IT consultant, pulls back the curtain on his very successful businesses and answers question on every IT consultant and business owner should know about. He shares secrets on what he did to solve the 5 most common problems in IT, ...
  4. Disaster Recovery and Business Continuity
    Quest CTO, Mike Billon, gives an overview of the steps involved in building a dunamic disaster recovery plan. Through case studies and an examination of software/hardware tooles for monitoring and testing, you'll gain a better understandin of where you are, where you want ...
  5. Organize Your Visio Diagrams with Containers and Lists
    Scott Helmers uses cross functional flowcharts, wireframe diagrams, data graphic legends and seating charts to teach you: how to ustilize all three new structured diagram components in Visio 2010, the best practices for organizeing shapes in previous version of Visio, how to organize ...
  6. How to Us Objects, Properties, Events and Methods in Microsoft Access
    Alison Dalter gives an in-depbth look at objects, properties, events and methods in Microsoft Access. In this webinar you will learn about using the object browser, referring to objects, working with properties and methods, working with object variables, understanding the ...

Join the Community

Give a Little. Get a Lot.

Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.

Join the Community

Answers

 

by: Jay_Jay70Posted on 2007-03-13 at 21:19:11ID: 18716053

how long did you leave the machine off for.....AD cannot deal with being left out for more than 60 days (may have increased cannot remember)

 

by: MaxwellbPosted on 2007-03-13 at 21:20:54ID: 18716060

Yes, I am quite sure it was off for more than 60 days.

Thanks,
Max

 

by: Jay_Jay70Posted on 2007-03-13 at 21:23:42ID: 18716067

there are supposedly ways to bring this back up but they are long and complex and i do not know them

You ned to remove AD from that Server  DCPROMO /Forceremoval and then run a metadata cleanup on your domain

http://www.petri.co.il/delete_failed_dcs_from_ad.htm

http://support.microsoft.com/default.aspx?scid=kb;EN-US;216498

Then you can re add it

 

by: MaxwellbPosted on 2007-03-13 at 21:28:59ID: 18716085

Is it better to reformat the entire server, and start from scratch with a new server name?

Thanks,
Max

 

by: MaxwellbPosted on 2007-03-13 at 21:34:13ID: 18716101

 

by: MaxwellbPosted on 2007-03-13 at 21:35:32ID: 18716108

Would depromoting and repromoting the DC fix the UNC issue?

Thanks,
Max

 

by: maestropsmPosted on 2007-03-13 at 21:37:19ID: 18716113

No that isn't necessary - I will lookup my notes but I had a similar situation last month and it was fairly easy to resolve. Does the file directory on either server have several Gigs of information to sync? Let me take a look at my notes on my resolution from last month and I'll give you an answer - it was fairly simple but does require doing some registry editing.

 

by: Jay_Jay70Posted on 2007-03-13 at 21:38:57ID: 18716117

in theory yes it can be done...if there is a simple solution then fire away....whatever you do you are going to have to run the metadata cleanup

 

by: MaxwellbPosted on 2007-03-13 at 21:59:28ID: 18716175

maestropsm,

The AD database is very small - only about 50 computers and a few more user accounts.

I looked at the "dcdiag" log and it indicated that the "tombstone" life had been exceeded:

"WARNING:  This latency is over the Tombstone Lifetime of 60 days!"

Jay_Jay70,

After uninstalling AD from the server, for stability issues (and since I haven't worked with this server yet), is it better to reformat the server?

I am not really that interested in increasing the "tombstone" life - like you said, doing it that way seems to be more complicated than it needs to be.



But, will depromotion and repromotion fix the UNC issues as well?

Thanks,
Max

 

by: maestropsmPosted on 2007-03-13 at 22:02:14ID: 18716182

OK I found the article you would need to follow - depends on how confortable you are following these knds of articles. http://support.microsoft.com/kb/315457/ It's the same process if you have a Backup Domain Controller and your SysVol Server is out of sync for more than 60 days. Essentially you have to lookup the GUID in Actice Directory Users and Conputers then perform the BurFlags modification to force the replication to come out of the tombstone state and rebuild the directories. Hope that points you in the right direction.

 

by: maestropsmPosted on 2007-03-13 at 22:05:37ID: 18716191

If you want to make your life simple - yes I would just rebuild the system - but you will need to go in to the replication parent and remove it from the directory you are replicating to and the delete the computer object from active directory. But hey - getting it fixed the hard way is sometimes good experience in case it happens to a more critical system in the future.

 

by: maestropsmPosted on 2007-03-13 at 22:09:13ID: 18716198

If you haven't already done so I would download a tool from Microsoft called FRSDiag. I opened a case months ago with Microsoft and they had to reimburse me becasue they were no help. Using the FRSDiag I was able to trace the problem to it's source and solution.

I don't think the Depromotion Repromotion would do anything about your replication since it's linked to a parent directory structure in AD.

 

by: Jay_Jay70Posted on 2007-03-13 at 22:12:39ID: 18716207

i agree, a rebuild will make life much easier as there is quite a bit of work to fix this :)

Just make sure you clean your metadata for the rest of the directory

 

by: MaxwellbPosted on 2007-03-13 at 22:15:30ID: 18716215

When you say "rebuild", I believe maestropsm is referring to "rebuilding the system", as in "reformat". Are you referring to "rebuilding" the AD on that server? ie. depromotion, repromotion?

maestropsm, please correct me if I am wrong.

Thanks for all your help,
Max

 

by: maestropsmPosted on 2007-03-13 at 22:27:46ID: 18716258

I was refering to re-format and reinstall the whole system but Jay jay is right you should do the metadata clean to truly scrub the system from AD.

 

by: MaxwellbPosted on 2007-03-13 at 22:30:01ID: 18716264

Do I need to reformat the entire system or just do the depromotion, then clean up the metadata, then repromote it?

Thanks,
Max

 

by: Jay_Jay70Posted on 2007-03-13 at 22:35:39ID: 18716280

yes we are both on the same page :) format the old server completely and rebuild it from scratch

Then clean AD

 

by: MaxwellbPosted on 2007-03-13 at 23:26:45ID: 18716435

So...

1. Depromote
2. Reformat
3. Clean metadata
4. Repromote

Does this look good?

Thanks,
Max

 

by: Jay_Jay70Posted on 2007-03-14 at 00:58:09ID: 18716744

sounds good to me...your depromote is pretty much irrelevent as you are formatting

 

by: MaxwellbPosted on 2007-03-14 at 01:00:40ID: 18716752

So I no not need to depromote it first before the format?

 

by: Jay_Jay70Posted on 2007-03-14 at 01:01:47ID: 18716760

forceremoval switch simply removes AD from that server and nowhere else, if you are formatting it there is no point

 

by: MaxwellbPosted on 2007-03-14 at 01:03:04ID: 18716764

Ok, thanks - I am heading over to that branch first thing in the morning

 

by: Jay_Jay70Posted on 2007-03-14 at 01:03:46ID: 18716772

good luck mate

 

by: MaxwellbPosted on 2007-03-15 at 22:33:31ID: 18732707

Thanks everyone for the help! Worked perfectly after the reformat / metadata cleanup. I will split the points between you two.

Thanks,
Max

 

by: Jay_Jay70Posted on 2007-03-15 at 22:37:21ID: 18732714

nice work :)

 

by: maestropsmPosted on 2007-03-16 at 06:24:22ID: 18734510

Glad to help.

 

by: nbhaskarPosted on 2009-09-12 at 01:27:38ID: 25315627

Plesea reset secure channel

20120131-EE-VQP-002

3 Ways to Join

30-Day Free Trial

The Experts

98% positive feedback on 31,087 answers since March 2000. angeliii is a Microsoft Most Valuable Professional for his work with MS SQL Server & Develoment.

He has also proven his knowledge of Visual Basic Programming, PHP Scripting and Oracle Databases.

The Experts

97% positive feedback on 10,752 answers since July 2000. lrmoore has more than 18 years experience in the networking industry.

The six-time Mircosoft MVPs specialties include firewalls, virtual private networking, and network management.

Testimonials

"...and excellent source for support... Kind of like having your very own IT dept." Electriciansnet

Testimonials

"I was apprehensive at signing up at first. However... it has already made my life as an IT administrator much easier." JaCrews

Testimonials

"WOW! You guys have great, active, and knowledgeable people on here." moore50

Business Clients

Business Clients

In the Press

"If you’ve got a question... Experts Exchange can supply an answer.”

In the Press

"...an invaluable aid for both IT professionals and those who require tech support."

In the Press

"where IT professionals provide quick answers on just about any topic"

Business Account Plans

Loading Advertisement...