Windows server 2008 R2 Event ID 1126
Hi guys! I'm here again!
I have an issue!! I have a windows server 2008 R2 as the main controller in my network. This server has been working perfect for 8 months and it has windows active directory, DNS server, Print and document, web server, and windows server services installed and also Microsoft Exchange 2010. I know that this set up is not recommended specially with Exchange on it. Well, I decided to install a second server with windows server 2008 R2 on it as well..... well, everything went well with the installation and I configured this 2nd server to be a domain controller as well making the 1st server the Global Catalog server. I configured it like this because I want to have a back up of the active directory of the 1st sever, this sever is kind of old and it might crash or something.
Well, here is the issue I have..... the 2nd server can't have a connection with the 1st one to be able to replicate. I troubleshooted with everything possible but not luck...... I used the fallowing troubleshooting methods:
1. both servers can ping each other
2. IPconfig shows that the settings on the NICs are correct. Both servers have static IPs, correct subnet mask, correct gateway, and both of them have the same primary DNS server IP.
3. I used the this article
http://technet.microsoft.com/en-us/library/cc756476(v=ws.10).aspx
and everything passed but this method
Test connectivity from the domain controller that is reporting the error to the global catalog server by using the global catalog services port
the port listed in that method which is 3268 is open in the 1st server but still it can't pass that test.
4. I used repadmin/showrepl and I get 4 errors which all say "Could not find the domain controller for this domain" BUT after 1 hour or so I run the command again and I get all of those 4 successful. However, even with that the 2nd server can't connect to the 1st one and when I restart the 2nd server and I run the command again I go back the Could not find the domain controller......
5. One thing I noticed, in the network places in the 2nd server..... the 1st server it doesn't show up. But, the 2nd server does shows up on the 1st server network places. The 1st server does appear on the network places on all other workstations and the 2nd server as well. This is of kind weird!! also, in the 2nd server just 4 workstations out of 60 show up on the network places.
I already enable and run the DSN client, Function Discovery Resource Publication, SSDP Discovery, and UPnP Device Host services but not luck!
Is there anything else I could try? does anyone has gone through this? I hope you guys can give me a hand.
Thanks!!
I have an issue!! I have a windows server 2008 R2 as the main controller in my network. This server has been working perfect for 8 months and it has windows active directory, DNS server, Print and document, web server, and windows server services installed and also Microsoft Exchange 2010. I know that this set up is not recommended specially with Exchange on it. Well, I decided to install a second server with windows server 2008 R2 on it as well..... well, everything went well with the installation and I configured this 2nd server to be a domain controller as well making the 1st server the Global Catalog server. I configured it like this because I want to have a back up of the active directory of the 1st sever, this sever is kind of old and it might crash or something.
Well, here is the issue I have..... the 2nd server can't have a connection with the 1st one to be able to replicate. I troubleshooted with everything possible but not luck...... I used the fallowing troubleshooting methods:
1. both servers can ping each other
2. IPconfig shows that the settings on the NICs are correct. Both servers have static IPs, correct subnet mask, correct gateway, and both of them have the same primary DNS server IP.
3. I used the this article
http://technet.microsoft.com/en-us/library/cc756476(v=ws.10).aspx
and everything passed but this method
Test connectivity from the domain controller that is reporting the error to the global catalog server by using the global catalog services port
the port listed in that method which is 3268 is open in the 1st server but still it can't pass that test.
4. I used repadmin/showrepl and I get 4 errors which all say "Could not find the domain controller for this domain" BUT after 1 hour or so I run the command again and I get all of those 4 successful. However, even with that the 2nd server can't connect to the 1st one and when I restart the 2nd server and I run the command again I go back the Could not find the domain controller......
5. One thing I noticed, in the network places in the 2nd server..... the 1st server it doesn't show up. But, the 2nd server does shows up on the 1st server network places. The 1st server does appear on the network places on all other workstations and the 2nd server as well. This is of kind weird!! also, in the 2nd server just 4 workstations out of 60 show up on the network places.
I already enable and run the DSN client, Function Discovery Resource Publication, SSDP Discovery, and UPnP Device Host services but not luck!
Is there anything else I could try? does anyone has gone through this? I hope you guys can give me a hand.
Thanks!!
Chris H
Is netbios enabled on the server?
Also, make sure the browser service is enabled.
ASKER
Thanks for the post!!
You mean on the one I recently set up? (2nd)?
You mean on the one I recently set up? (2nd)?
What errors are you seeing (if any) if you run dcdiag?
Thanks
Mike
Thanks
Mike
Run dcdiag /q on servers and post result here along with ipconfig /all from both the servers
ASKER
Thanks for the help Mike!
I ran the command on the both servers and I get two errors on the Global catalog which is the 1st server:
1. Starting test: Services
Invalid service startup type: EventSystem on SERVER, current value
DEMAND_START, expected value AUTO_START
......................... SERVER failed test Services
2. Starting test: SystemLog
......................... SERVER failed test SystemLog
Everything else is passed and when I run the command on the 2nd server I set up everything is passed!
I ran the command on the both servers and I get two errors on the Global catalog which is the 1st server:
1. Starting test: Services
Invalid service startup type: EventSystem on SERVER, current value
DEMAND_START, expected value AUTO_START
......................... SERVER failed test Services
2. Starting test: SystemLog
......................... SERVER failed test SystemLog
Everything else is passed and when I run the command on the 2nd server I set up everything is passed!
ASKER
I don't see those two errors making any problems with the connection! I might be wrong!! what do you think?
I did some searches for DEMAND_START, expected value AUTO_START you can do the same, I haven't seen that one on my systems, let me see if I can find anything.
Are both of these boxes GCs?
Thanks
Mike
Are both of these boxes GCs?
Thanks
Mike
ASKER
Thanks Mike!! just one box is GC.... the one with the errors!
Set "COM+ Event System" startup type to automatic
ASKER
Thanks Sarang_tinguria!
Mike, I set up the COM+Event System as Sarang_tinguria suggested and I ran the dcdiag and no errors at all.... everything was passed but still 2nd server can't establish a connection with 1st server. What a headache!
Mike, I set up the COM+Event System as Sarang_tinguria suggested and I ran the dcdiag and no errors at all.... everything was passed but still 2nd server can't establish a connection with 1st server. What a headache!
can u post the output of repadmin /replsum
ASKER
Sure! I ran the command on both boxes!
1st server.... the GC
C:\Users\Administrator>rep
Replication Summary Start Time: 2013-01-24 15:53:12
Beginning data collection for replication summary, this may take awhile:
.....
Source DSA largest delta fails/total %% error
FS 06m:12s 0 / 4 0
SERVER 06m:28s 0 / 3 0
Destination DSA largest delta fails/total %% error
FS 06m:28s 0 / 3 0
SERVER 06m:12s 0 / 4 0
2nd server..... the one I recently set up....
C:\Users\administrator.HOG
Replication Summary Start Time: 2013-01-24 15:53:00
Beginning data collection for replication summary, this may take awhile:
.....
Source DSA largest delta fails/total %% error
FS 06m:00s 0 / 4 0
SERVER 06m:16s 0 / 3 0
Destination DSA largest delta fails/total %% error
FS 06m:16s 0 / 3 0
SERVER 06m:00s 0 / 4 0
1st server.... the GC
C:\Users\Administrator>rep
Replication Summary Start Time: 2013-01-24 15:53:12
Beginning data collection for replication summary, this may take awhile:
.....
Source DSA largest delta fails/total %% error
FS 06m:12s 0 / 4 0
SERVER 06m:28s 0 / 3 0
Destination DSA largest delta fails/total %% error
FS 06m:28s 0 / 3 0
SERVER 06m:12s 0 / 4 0
2nd server..... the one I recently set up....
C:\Users\administrator.HOG
Replication Summary Start Time: 2013-01-24 15:53:00
Beginning data collection for replication summary, this may take awhile:
.....
Source DSA largest delta fails/total %% error
FS 06m:00s 0 / 4 0
SERVER 06m:16s 0 / 3 0
Destination DSA largest delta fails/total %% error
FS 06m:16s 0 / 3 0
SERVER 06m:00s 0 / 4 0
ASKER
It has 0 fails on both boxes! but still I don't see any users or computers being replicate on the 2nd box! which means the problem still there!
Your replication is working fine to cross verify this you may create a test user and run repadmin /syncall /ADeP then wait for 5-10 mins and check if that appears in other domain controller
ASKER
Thanks for the help Sarang! I tried the command ADep and is not right! command prompt gives me options to enter a different command. I tried the repadmin/syncall yesterday before going home and I was hoping to see some users on the new server today but nop!! meaning that there still a problem.... all users, computers, group policies etc from 1st ( GC ) should replicate or move to 2nd server ( New one ) doesn't it? and there is nothing! One question, I haven't install any roles or services on the new box should I install any? I just installed Windows server 2008 R2 and then I installed the updates and then I ran DCPromo and the rest you guys know it. In the server manager console by default DCpromo installed Active Directory, DNS server, and File server.
By selecting the Active Directory role I noticed that in the system services description has some services disable and stopped. Here are they:
1. Distributed Link Tracking Client Stopped and set to manual
2. File Replication Stopped and disabled
Also, by selecting the File Services Role I noticed that in Role services section it has just one service installed which is File server but has all of these in a list which the status is not installed... Here they are:
1. Distributed File System
2. DFS namespaces
3. DFS Replication
4. File server resource manager
5. Services for network File System
6. Windows search service
7. windows server 2003 File services
8. indexing service
9. BranchCache for network files
Do you think by not having this services installed and the above running has something to do with the issue?
By selecting the Active Directory role I noticed that in the system services description has some services disable and stopped. Here are they:
1. Distributed Link Tracking Client Stopped and set to manual
2. File Replication Stopped and disabled
Also, by selecting the File Services Role I noticed that in Role services section it has just one service installed which is File server but has all of these in a list which the status is not installed... Here they are:
1. Distributed File System
2. DFS namespaces
3. DFS Replication
4. File server resource manager
5. Services for network File System
6. Windows search service
7. windows server 2003 File services
8. indexing service
9. BranchCache for network files
Do you think by not having this services installed and the above running has something to do with the issue?
ASKER
I just check the GC and it has the exact same situation as the above.... the roles and services for Active directory Domain and File services are stopped or not installed.
Disregard that...
ASKER
I have a stupid question and probably I did this wrong...... I have both boxes with the preferred DNS server IP set with the default gateway IP address. Do you think this is causing the issue? I kind see it hard to believe it but I might be wrong.... I tried something else on the 2nd server (New one) to see if it could see the GC... I ran the command nslookup gc._msdcs. my forest domain name and it gave me the IP address and name of the GC..... Also, in the AD console I got an Event ID 1869 which states that Active Directory Domain Services has located a global catalog in the following site...... and it gives me the name of the machine acting as a GC.
One more thing, in the same section I got a warning 1308 stating the fallowing (Below) the name of machine acting as a GC is SERVER and the domain name is HOGAR
The Knowledge Consistency Checker (KCC) has detected that successive attempts to replicate with the following directory service has consistently failed.
Attempts:
3
Directory service:
CN=NTDS Settings,CN=SERVER,CN=Serv
Period of time (minutes):
126
The Connection object for this directory service will be ignored, and a new temporary connection will be established to ensure that replication continues. Once replication with this directory service resumes, the temporary connection will be removed.
Additional Data
Error value:
1908 Could not find the domain controller for this domain.
One more thing, in the same section I got a warning 1308 stating the fallowing (Below) the name of machine acting as a GC is SERVER and the domain name is HOGAR
The Knowledge Consistency Checker (KCC) has detected that successive attempts to replicate with the following directory service has consistently failed.
Attempts:
3
Directory service:
CN=NTDS Settings,CN=SERVER,CN=Serv
Period of time (minutes):
126
The Connection object for this directory service will be ignored, and a new temporary connection will be established to ensure that replication continues. Once replication with this directory service resumes, the temporary connection will be removed.
Additional Data
Error value:
1908 Could not find the domain controller for this domain.
How we should Configuere DNS on our DC :-->
Every DNS server should Point to its own IP as a primary DNS and DNS located in remote site as a secondary DNS in TCP/IP properties
All the unused NIC's to be disabled
Valid DNS Ip from ISP to be configuered in DNS forwarders Do not configuere local DNS in forwarders
Public DNS IP's Should not be used at any NIC Card except Forwarders
Domain Controllers should not be multi-homed
Running VPN server and RRas server makes the DC multihomed refer http://support.microsoft.com/default.aspx?scid=kb;en-us;272294
If anything above is incorrect please correct it and run "ipconfig /flushdns & ipconfig /registerdns " and restart DNS service using "net stop dns & net start dns"
DNS best practices
http://technet.microsoft.com/en-us/library/cc778439(v=WS.10).aspx
Checklist: Deploying DNS for Active Directory
http://technet.microsoft.com/en-us/library/cc757116(v=ws.10)
DNS Arguments
http://blogs.technet.com/b/askds/archive/2010/07/17/friday-mail-sack-saturday-edition.aspx#dnsbest
Every DNS server should Point to its own IP as a primary DNS and DNS located in remote site as a secondary DNS in TCP/IP properties
All the unused NIC's to be disabled
Valid DNS Ip from ISP to be configuered in DNS forwarders Do not configuere local DNS in forwarders
Public DNS IP's Should not be used at any NIC Card except Forwarders
Domain Controllers should not be multi-homed
Running VPN server and RRas server makes the DC multihomed refer http://support.microsoft.com/default.aspx?scid=kb;en-us;272294
If anything above is incorrect please correct it and run "ipconfig /flushdns & ipconfig /registerdns " and restart DNS service using "net stop dns & net start dns"
DNS best practices
http://technet.microsoft.com/en-us/library/cc778439(v=WS.10).aspx
Checklist: Deploying DNS for Active Directory
http://technet.microsoft.com/en-us/library/cc757116(v=ws.10)
DNS Arguments
http://blogs.technet.com/b/askds/archive/2010/07/17/friday-mail-sack-saturday-edition.aspx#dnsbest
Refer DNS best practices above and make necessary corrections BTW what error you see if you manually replicate connection objects from sites and services..?
ASKER
Sarang_tinguria,
Thanks for helping me troubleshooting this issues!!! All the suggestions, references, and links you provided me above are correct on both boxes are set up as suggested above. I did change what the first suggestion said which is "Every DNS server should Point to its own IP as a primary DNS and DNS located in remote site as a secondary DNS in TCP/IP properties "..... I removed the IP address of the gateway from the primary DNS Server on both boxes and set their owns IPs which will point to themselves and for the alternate DNS Server I set up the IPs of their neighbors...... For example, GC has the new server machine's IP address as its alternate DNS Server and the new server machine has the GC IP address as its alternate DNS Server.
When I go to sites and services in the new server machine and manually try to replicate the connections I get this error
...... but when I manually replicate the connections on the GC it successfully replicates without any problems!
Also, I check the DNS Manager on the GC and under Forward Lookup Zones and under the forest name folder ( not the _msdcs. folder) I noticed two folders in gray color, usually they are yellow, :)....... well this two gray folders are the _msdcs folder and FileS folder..... I want to let you know that the name of the new server machine is FS and its domain is FileS.... which is under the forest of HOGAR.local being the GC. Well, under _msdcs folder is a NS record that its data is server.hogar.local and timestamp is static.... I go to its properties and on in the security tap is a red x saying "The requested security is either unavailable or can't be displayed"..........
Now, I go to the FileS folder which is a NS record and its data is fs.files.hogar.local and timestamp is static...... this file has the same error under the security tap. Manually replicating the connection on the FS machine (New server) throws and error saying that the replication can't continue because the GC is denying the access (Pic above).... and having these errors on the NS records which kind are related, it looks like an access rights issue not a network connection issue..... what do you think? I'm trying the manual replication on the FS machine as the administrator or maybe I need to set up the FS server on the GC with some high access rights... I'm not sure what's going on!! Do you have any idea by what stated?
Thanks man!
Thanks for helping me troubleshooting this issues!!! All the suggestions, references, and links you provided me above are correct on both boxes are set up as suggested above. I did change what the first suggestion said which is "Every DNS server should Point to its own IP as a primary DNS and DNS located in remote site as a secondary DNS in TCP/IP properties "..... I removed the IP address of the gateway from the primary DNS Server on both boxes and set their owns IPs which will point to themselves and for the alternate DNS Server I set up the IPs of their neighbors...... For example, GC has the new server machine's IP address as its alternate DNS Server and the new server machine has the GC IP address as its alternate DNS Server.
When I go to sites and services in the new server machine and manually try to replicate the connections I get this error
...... but when I manually replicate the connections on the GC it successfully replicates without any problems! Also, I check the DNS Manager on the GC and under Forward Lookup Zones and under the forest name folder ( not the _msdcs. folder) I noticed two folders in gray color, usually they are yellow, :)....... well this two gray folders are the _msdcs folder and FileS folder..... I want to let you know that the name of the new server machine is FS and its domain is FileS.... which is under the forest of HOGAR.local being the GC. Well, under _msdcs folder is a NS record that its data is server.hogar.local and timestamp is static.... I go to its properties and on in the security tap is a red x saying "The requested security is either unavailable or can't be displayed"..........
Now, I go to the FileS folder which is a NS record and its data is fs.files.hogar.local and timestamp is static...... this file has the same error under the security tap. Manually replicating the connection on the FS machine (New server) throws and error saying that the replication can't continue because the GC is denying the access (Pic above).... and having these errors on the NS records which kind are related, it looks like an access rights issue not a network connection issue..... what do you think? I'm trying the manual replication on the FS machine as the administrator or maybe I need to set up the FS server on the GC with some high access rights... I'm not sure what's going on!! Do you have any idea by what stated?
Thanks man!
Go to any client system and try accessing \\FS and \\server and check if it works or it throws error
ASKER
I tried 4 different client computers and all of them can see and have access to \\FS and \\server.....
ASKER
I have a Netgear Firewall! Do you think I should check that or do you think that might be blocking the New box from connecting to the GC? I see it kind of hard to believe that the firewall is blocking it but there is always a chance....
ASKER
Hey guys! I managed to do a manual replication from sites and services without any errors!! but still I don't see the users and computers from GC server in the new box!! Also, I tested them by creating an user on the new box and the GC to see if they will synchronize... I waited like 2 hours but NOP! I didn't do it!
ASKER
Hey guys!
I ran the command dcdiag/test:dns on the GC and It fails when running enterprise tests on my domain. Here is it!
Running enterprise tests on : HOGAR.local
Starting test: DNS
Summary of test results for DNS servers used by the above domain
controllers:
DNS server: 2001:0:4137:9e76:78:3a16:3
(fs.files.hogar.local.)
1 test failure on this DNS server
PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.
0.0.0.0.0.0.0.0.0.0.0.0.ip
16:3f57:fe2d
......................... HOGAR.local passed test DNS
Do you think it has something to do with the IPv6? IPv6 is enable. I ran the same command on the second box and everything was passed!
Thanks!
I ran the command dcdiag/test:dns on the GC and It fails when running enterprise tests on my domain. Here is it!
Running enterprise tests on : HOGAR.local
Starting test: DNS
Summary of test results for DNS servers used by the above domain
controllers:
DNS server: 2001:0:4137:9e76:78:3a16:3
(fs.files.hogar.local.)
1 test failure on this DNS server
PTR record query for the 1.0.0.0.0.0.0.0.0.0.0.0.0.
0.0.0.0.0.0.0.0.0.0.0.0.ip
16:3f57:fe2d
......................... HOGAR.local passed test DNS
Do you think it has something to do with the IPv6? IPv6 is enable. I ran the same command on the second box and everything was passed!
Thanks!
thats fine....you may ignore this error
please post a fresh dcdiag /q from both servers and repadmin /replsum and ipconfig /all
to finalise this thread
to finalise this thread
ASKER
Thanks!
Here is the dcdiag/ q for the 2nd server(Below).... I don't think those errors have anything to do with the real problem. they are just printer drivers. I got a blank page on the GC server meaning I didn't have any errors
An error event occurred. EventID: 0x00000457
Time Generated: 01/29/2013 17:26:00
Event String:
Driver Canon iR-ADV 4025/4035 UFR II required for printer !!SERVER!Canon at FCM is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 01/29/2013 17:26:03
Event String:
Driver HP LaserJet Professional P1606dn required for printer !!SERVER!Finances HP is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 01/29/2013 17:26:05
Event String:
Driver Canon iR1730/1740/1750 UFRII LT required for printer !!SERVER!Canon Parent Lounge is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 01/29/2013 17:26:08
Event String:
Driver Canon iR-ADV C5045/5051 UFR II required for printer !!SERVER!Canon Finances is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 01/29/2013 17:26:08
Event String:
Driver Adobe PDF Converter required for printer Adobe PDF is unknown. Contact the administrator to install the driver before you log in again.
......................... FS failed test SystemLog
Here is the readmin/relsum for 2n server:
C:\Users\Administrator>rep
Replication Summary Start Time: 2013-01-29 17:33:19
Beginning data collection for replication summary, this may take awhile:
.....
Source DSA largest delta fails/total %% error
FS 40m:38s 0 / 4 0
SERVER 47m:52s 0 / 3 0
Destination DSA largest delta fails/total %% error
FS 47m:52s 0 / 3 0
SERVER 40m:38s 0 / 4 0
C:\Users\Administrator>
and here is the for the GC server:
C:\Users\Administrator>rep
Replication Summary Start Time: 2013-01-29 17:34:09
Beginning data collection for replication summary, this may take awhile:
.....
Source DSA largest delta fails/total %% error
FS 41m:28s 0 / 4 0
SERVER 48m:42s 0 / 3 0
Destination DSA largest delta fails/total %% error
FS 48m:42s 0 / 3 0
SERVER 41m:28s 0 / 4 0
C:\Users\Administrator>
Here is the IPconfig/all for 2nd server:
C:\Users\Administrator>ipc
Windows IP Configuration
Host Name . . . . . . . . . . . . : FS
Primary Dns Suffix . . . . . . . : FileS.HOGAR.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : FileS.HOGAR.local
HOGAR.local
Ethernet adapter Local Area Connection 3:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) Gigabit 2P I350-t LOM
Physical Address. . . . . . . . . : 90-B1-1C-17-B0-79
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::f8ca:a5c6:93b3:9c09%
IPv4 Address. . . . . . . . . . . : 192.168.1.210(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 395358492
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-90-D3-F7-00
DNS Servers . . . . . . . . . . . : 192.168.1.210
192.168.1.187
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{F18FF478-1830-441F
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Teredo Tunneling Pseudo-Interface:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
C:\Users\Administrator>
and Here is for the GC server:
C:\Users\Administrator>ipc
Windows IP Configuration
Host Name . . . . . . . . . . . . : SERVER
Primary Dns Suffix . . . . . . . : HOGAR.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : HOGAR.local
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
Physical Address. . . . . . . . . : 00-22-19-31-3F-B1
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::21a5:b60a:bc14:ce51%
IPv4 Address. . . . . . . . . . . : 192.168.1.187(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 234889753
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-FF-81-27-00
DNS Servers . . . . . . . . . . . : 192.168.1.187
192.168.1.210
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{ACF409AD-84B0-4978
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 9:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
C:\Users\Administrator>
I see that everything is working without any problems!!! besides the problem I mentioned above when running command dcdiag/test:dns but STILL don't see any users and computers replicated on the 2nd server from the GC server.
Also, I'm attaching two pictures showing the folders in the GC server under Forward lookup Zones and under HOGAR.local. I think these folders are missing something and when I try to see the security tap on the files inside of these folders it gives me an error.
The _msdcs folder shouldn't have more files or folders? and FileS folder as well? I think these two folders on the GC server are missing something and that is why I don't see any users or computers replicated to the 2nd server. What do you think?
Thanks a lot!
Here is the dcdiag/ q for the 2nd server(Below).... I don't think those errors have anything to do with the real problem. they are just printer drivers. I got a blank page on the GC server meaning I didn't have any errors
An error event occurred. EventID: 0x00000457
Time Generated: 01/29/2013 17:26:00
Event String:
Driver Canon iR-ADV 4025/4035 UFR II required for printer !!SERVER!Canon at FCM is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 01/29/2013 17:26:03
Event String:
Driver HP LaserJet Professional P1606dn required for printer !!SERVER!Finances HP is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 01/29/2013 17:26:05
Event String:
Driver Canon iR1730/1740/1750 UFRII LT required for printer !!SERVER!Canon Parent Lounge is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 01/29/2013 17:26:08
Event String:
Driver Canon iR-ADV C5045/5051 UFR II required for printer !!SERVER!Canon Finances is unknown. Contact the administrator to install the driver before you log in again.
An error event occurred. EventID: 0x00000457
Time Generated: 01/29/2013 17:26:08
Event String:
Driver Adobe PDF Converter required for printer Adobe PDF is unknown. Contact the administrator to install the driver before you log in again.
......................... FS failed test SystemLog
Here is the readmin/relsum for 2n server:
C:\Users\Administrator>rep
Replication Summary Start Time: 2013-01-29 17:33:19
Beginning data collection for replication summary, this may take awhile:
.....
Source DSA largest delta fails/total %% error
FS 40m:38s 0 / 4 0
SERVER 47m:52s 0 / 3 0
Destination DSA largest delta fails/total %% error
FS 47m:52s 0 / 3 0
SERVER 40m:38s 0 / 4 0
C:\Users\Administrator>
and here is the for the GC server:
C:\Users\Administrator>rep
Replication Summary Start Time: 2013-01-29 17:34:09
Beginning data collection for replication summary, this may take awhile:
.....
Source DSA largest delta fails/total %% error
FS 41m:28s 0 / 4 0
SERVER 48m:42s 0 / 3 0
Destination DSA largest delta fails/total %% error
FS 48m:42s 0 / 3 0
SERVER 41m:28s 0 / 4 0
C:\Users\Administrator>
Here is the IPconfig/all for 2nd server:
C:\Users\Administrator>ipc
Windows IP Configuration
Host Name . . . . . . . . . . . . : FS
Primary Dns Suffix . . . . . . . : FileS.HOGAR.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : FileS.HOGAR.local
HOGAR.local
Ethernet adapter Local Area Connection 3:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) Gigabit 2P I350-t LOM
Physical Address. . . . . . . . . : 90-B1-1C-17-B0-79
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::f8ca:a5c6:93b3:9c09%
IPv4 Address. . . . . . . . . . . : 192.168.1.210(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 395358492
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-90-D3-F7-00
DNS Servers . . . . . . . . . . . : 192.168.1.210
192.168.1.187
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{F18FF478-1830-441F
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Teredo Tunneling Pseudo-Interface:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
C:\Users\Administrator>
and Here is for the GC server:
C:\Users\Administrator>ipc
Windows IP Configuration
Host Name . . . . . . . . . . . . : SERVER
Primary Dns Suffix . . . . . . . : HOGAR.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : HOGAR.local
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
Physical Address. . . . . . . . . : 00-22-19-31-3F-B1
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::21a5:b60a:bc14:ce51%
IPv4 Address. . . . . . . . . . . : 192.168.1.187(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 234889753
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-FF-81-27-00
DNS Servers . . . . . . . . . . . : 192.168.1.187
192.168.1.210
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{ACF409AD-84B0-4978
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 9:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
C:\Users\Administrator>
I see that everything is working without any problems!!! besides the problem I mentioned above when running command dcdiag/test:dns but STILL don't see any users and computers replicated on the 2nd server from the GC server.
Also, I'm attaching two pictures showing the folders in the GC server under Forward lookup Zones and under HOGAR.local. I think these folders are missing something and when I try to see the security tap on the files inside of these folders it gives me an error.
The _msdcs folder shouldn't have more files or folders? and FileS folder as well? I think these two folders on the GC server are missing something and that is why I don't see any users or computers replicated to the 2nd server. What do you think?
Thanks a lot!
ASKER
If I use DCPROMO to uninstall the DC in the new box would mess up my first server ( GC )? I tried everything and this would be my last option and then just reinstall it again or even just reinstall the whole OS on this new server and start from fresh.
Thanks,
Thanks,
Try deleteing hogar.local zone and recreate it by new zone wizard
What is status of _msdcs.hogar.local and what is status of this zone on other DC
What is status of _msdcs.hogar.local and what is status of this zone on other DC
ASKER
Thanks man!
I just found out something really stupid! I think I set up this new box wrong when running the DCPROMO!!! When I ran it I choose in the "Choose a deployment configuration" the option to Create a new domain in the existing forest and It should have been add a domain controller to an existing forest!!! I'M SO STUPID!!!!!!!!!! No wonder I don't see the users and computers on this new server!!! Grrrrrrrr!!! I'm so sorry!! do you think that is why I don't see anything been replicated to this new server? I think so.....
I need to change that!! Do you think by running DCPROMO I can change it and not mess up my first sever? or will I need to reinstall the whole OS and start from a fresh installation on the new server?
Thanks man!
I just found out something really stupid! I think I set up this new box wrong when running the DCPROMO!!! When I ran it I choose in the "Choose a deployment configuration" the option to Create a new domain in the existing forest and It should have been add a domain controller to an existing forest!!! I'M SO STUPID!!!!!!!!!! No wonder I don't see the users and computers on this new server!!! Grrrrrrrr!!! I'm so sorry!! do you think that is why I don't see anything been replicated to this new server? I think so.....
I need to change that!! Do you think by running DCPROMO I can change it and not mess up my first sever? or will I need to reinstall the whole OS and start from a fresh installation on the new server?
Thanks man!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Will it mess up the first server or domain HOGAR.local? in the DCPROMO should I check the box the says Delete the domain because this server is the last domain controller in the domain?
Thanks
Thanks
Parent and Child are two different domains hence you will need to click on that check box
ASKER
GREAT!!!!! I removed the DC and ran DCPROMO again and I picked Add domain this time!! and everything went well!!! NOW it replicated all users and computers from first server to the new server!!!! i ran dcdiag/showrepl and replsum on both servers and everything is passed! I ran dcdiag also and it gave me some erros about the fs.FILES.HOGAR.local but that doesn't really matter!! any other good commands to run to make sure everything is running good? I will try to create a TEST user on both server to see if replicates without any problems!!! I want thank you sarang_tinguria for all the help you provided me!!! THANK YOU SO MUCH!! I really appreciate the time you took to help me out!!
Thanks!!
Thanks!!
I picked Add domain this time!! >>> I think you might have selected "Add a Domain Controller to existing domain" under existing forest
dcdiag /q repadmin /replsum is enough to check
create test user then run repadmin /syncall /adep and wait 5-10 Mins so that it replicates to other DC
dcdiag /q repadmin /replsum is enough to check
create test user then run repadmin /syncall /adep and wait 5-10 Mins so that it replicates to other DC
ASKER
Yeah! I meant Add a Domain Controller to existing domain...... if I create an user how long I need to wait to see it on the other server without any repadmin/syncall command.
for intersite :- Replication cycle set by you
for intrasite :- 5-10 mins
for intrasite :- 5-10 mins
ASKER
Thanks!!!!