Solved

W2K Server Replication Problem

Posted on 2004-09-08
5
344 Views
Last Modified: 2012-05-05
I have two servers that are set up as domain controllers.  AS1, and AS2.  AS1 is the "pdc."  I'm not getting any DNS errors and everything looks fine in the zones, as in, the _msdcs, _sites, _tcp, and _udp folders were created.  Both servers have entries in both forward and reverse lookup and they are correct.  I can also ping both servers from eachother.  AD is replicating fine.  The netlogon share is what's not replicating.

When I restart the FRS I get and Event ID 13508:
The File Replication Service is having trouble enabling replication from AS1 to AS2 for c:\winnt\sysvol\domain using the DNS name as1.prendie.edu. FRS will keep retrying.

I also get an Event ID 3019 from source MXrSmb:
The redirector failed to determine the connection type.

Actually, this is new, I just tried it (restarting netlogon and frs) and got an Event ID 5774 from Netlogon:
Registration of the DNS record '5d59bc26-09da-40dc-a422-111c1b08467e._msdcs.prendie.edu. 600 IN CNAME as2.prendie.edu.' failed with the following error:
DNS RR set that ought to exist, does not exist.  .

I can't get this 2nd domain controller off because when I run dcpromo it says:
The operation failed because:
The Directory Service failed to replicate off changes made locally.
"The DSA operation is unable to proceed because of a DNS lookup failure."

Any help is appreciated.
0
Comment
Question by:salvagbf
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 18

Expert Comment

by:exx1976
ID: 12006079
What machine has your DNS server on it?  Are they both DNS servers?  Are they ocnfigured to point to each other, or themselves??
0
 
LVL 6

Author Comment

by:salvagbf
ID: 12006365
When I originally set it up, I pointed the first to itself for DNS and ran dcpromo and let it set up the DNS on itself.  Then I installed DNS on the second as a secondary DNS server with it pointing only to itself for DNS and ran dcpromo.  I noticed after this that it added another forward lookup for prendie.com when I had specifically only set prendi.edu so I deleted the prendie.com zone.  I'm guessing that's where my problems came from buy that doesn't make any sense.

Right now both dc's have eachother as the second DNS in the IP config.  I've tried uninstalling DNS on the second server but when I reinstall it it immediately comes back up with the previous DNS config.  I was thinking that I shouldn't have set up the second DNS as a secondary but as another standard DNS server...
0
 
LVL 18

Accepted Solution

by:
exx1976 earned 500 total points
ID: 12006796
They should both be set up as AD integrated zones, and they should point to each other for the primary DNS, otherwise you end up with the "Island effect"..  And if your second machine came up with prendie.com, then it sounds to me like you inadvertantly set it up to be prendie.com instead of prendie.edu..   Check the Network tab of My Computer properies and verify that they are both members of Prendie.edu, and then change your DNS to be AD integrated...
0
 
LVL 6

Author Comment

by:salvagbf
ID: 12007315
Wow, don't I feel stupid.  The only problem  was that the reverse lookup zone was running as a standard secondary, everything else was AD integrated.  Chaged that to AD integrated and pointed the servers to eachother's DNS and it's all working.  Thanks so much exx.
0
 
LVL 18

Expert Comment

by:exx1976
ID: 12007594
Glad to help.

-exx
0

Featured Post

Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question