Solved

PDC not replicating to BDC

Posted on 1998-02-19
8
377 Views
Last Modified: 2013-12-23
The replication between my PDC (set up as en exportserver) and my BDC (set up as the import computer) does not work.
I want to replicate the logon-scripts on the PDC who reside inn the "\winnt\system32\repl\import\scripts" directory to the same directory on the BDC.

On both machines the replication-service logs on as an administrator. The "Repl$" shareperms. are set to full control to this user on both NT 4.0 SP3 servers. The directory permissions for the "\winnt\system32\repl\import" on both machines alse have full control perms.
The replication services are both running and there are no errors (or any other messages from the replicator for that matter) in their eventlogs. It's just that nothing happens at all.

On the PDC i configured the "C:\WINNT\System32\Repl\Import" directory as the export dir with the following settings: subdir=scripts, locks=no, stabilize=no, subtree=yes.

On the BDC i configured the "C:\WINNT\System32\Repl\Import" directory as the import dir with the following settings:
subdir=scripts, locks=no, status=no master (that's the problem i think), last update=empty.

I know that when you set the export dir it suggests the "C:\OS\WINNT\System32\Repl\Export" directory by default but as the scripts reside in the "import\scripts" directory i choose that dir. as the export dir. This prevents me from having to copy the scripts from the PDC's "repl\import" dir. to the PDC "repl\export" dir. in order the get them replicated to the BDC.

Also, the "From" and "To" lists on both machines are empty as they are both on the same domain and IP subnet.
The two machines connect through TCP/IP only.
There is no problem with the connection between the two because i can copy files freely between them.

Again, i get no errors anywhere but nothing happens either.

Please help,
Steven
0
Comment
Question by:srodenburg
  • 4
  • 4
8 Comments
 
LVL 2

Accepted Solution

by:
moellert earned 50 total points
ID: 1571007
The replication service is a bit tricky under NT. Seems very simple to implement, but then ...
OK, now let´s have a look at your question.
There are two articles in the KB.
Q158994 and Q157448. I hope they will help you.
Here a short summary.
On the export server start Regedt32.exe and open the key
HKLM\system\CCS\Control\SecurePipeServers\winreg\AllowedPaths.
Double-click the machine entry and ADD (!!!) the following string under the last entry
System\CurrentControlSet\Services\Replicator

Second, control if your repluser (I think your Administrator ) has minimum Read access to the WINREG key

Don´t forget to restart your server.
0
 

Author Comment

by:srodenburg
ID: 1571008
The "System\CurrentControlSet\Services\Replicator" value in the key that you discribed was already there.
Also, the currently logged on user AND the user that start the replicator service are are the same (an Administrator).

Anywhere else i can look ?
0
 
LVL 2

Expert Comment

by:moellert
ID: 1571009
What about the second part of my answer, the security settings are the WINREG key ?
0
 

Author Comment

by:srodenburg
ID: 1571010
??? what do you mean with "the security settings are the WINREG key". Do you mean it's possible to give permissions to individual registry keys. I've looked for this in regedit.exe (i prefer it over regedt32.exe) but did not find anything like it. Please clarify.
0
Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

 
LVL 2

Expert Comment

by:moellert
ID: 1571011
To modify the security setting of a special Registry key you have to use the regedt32.exe, cause the regedit.exe is just an implementation from Win95 ( OK, it is a bit nicer, easier to use, has a better search engine and so on, but what else does it give to us 8-)))  )
Serius now, open the regedt32.exe and find the key mentioned above. Then click security - permissions and you have the chance to modify all you want.
0
 

Author Comment

by:srodenburg
ID: 1571012
Well, i did what you said. The user (=administrator) that is used by the Replicator Service on both the PDC and the BDC has full control of the WINREG key and it's subkeys on both machines (he had not but the administrators group had by the way). I rebooted both machines.
The PDC is still quiet as a mouse (reports nothing at all about replication) but the BDC gives a new error in it's eventlog i had not seen before. The error is "The replication server could not update directory scripts from the source on CASPER due to error 32." and "System error 32 occurred." The server CASPER is the PDC and also the export-server.

What does this error mean?
0
 
LVL 2

Expert Comment

by:moellert
ID: 1571013
Is it possible for you to implement NETBEUI just for testing ?
0
 

Author Comment

by:srodenburg
ID: 1571014
I solved the problem! The error "The replication server could not update directory scripts from the source on CASPER due to error 32." means that the file that the replicator wanted to copy to the BDC was in use. Possibly someone logging on at that time. The replicator has worked great ever since.
Thanks for all your help!
0

Featured Post

Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

Join & Write a Comment

Enterprise networks where VoIP phones have been deployed frequently use port configurations that allow both a computer and an IP phone to be plugged into the same switch port but use different VLANs. On Cisco equipment I'm referring to the "native V…
A common practice in small networks is making file sharing easy which works extremely well when intra-network security is not an issue. In essence, everyone, that is "Everyone", is given access to all of the shared files - often the entire C: drive …
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now