Solved

sbs2003 has kerberos errors trying to replicate to 2000 standard server

Posted on 2004-09-29
3
180 Views
Last Modified: 2013-12-04
a 2003 sbs server was replicating fine to a 2000 standard server across a vpn all fine then all of a sudden error messages of a kerberos nature users on the 2000 side coulndt log on etc managed to sort all out except now the DNS is taken off the 2000 server as it is only the 2000 server that replicates all to the 2003 server the 2003 server cannot replicate and all operrations are on the 2003 server all dns on the 2003 server is tested ok.  dont want to rebuild the 2003 server but will try to jion another 2000 server to elimainate the 2000 side what are the chances that on of the hotfix updates has nadged the 2003 server ????? microsoft have given up when i mentioned this...
0
Comment
Question by:iriley
  • 2
3 Comments
 
LVL 16

Accepted Solution

by:
JamesDS earned 500 total points
ID: 12178232
iriley
Kerberos gets very unhappy when the time on the two machines in question is out by more than 5 minutes. Make sure the two machines are set to the same time and correct timezone.

Cheers

JamesDS
0
 
LVL 1

Author Comment

by:iriley
ID: 13161170
spoke to ms about this after trying suggestion and they were not too happy that it would work ??? eventually found out off one of the staff that the network has always been bad and that someone has rebuilt it 3 times ( STAYED WELL CLEAR CANT FIX FAULTS WHEN PEOPLE ARE TELLING ME INCORRECT INFO)
0
 
LVL 16

Expert Comment

by:JamesDS
ID: 13161225
iriley

For the benefit of other viewers...

Not sure what microsoft would have said to you, but it is a fact that a 5 minute drift on domain controllers (or any member of a domain) will cause kerberos errors and can stop replication on Domain Controllers.

This figure is configurable in GPO, but it is not advised to mess about with kerberos settings without knowing what you're doing.

Therefore, in any situation where replication is failing it is never a bad idea to check that time and timezones are configured correctly.

Nevertheless, thanks for the points and glad you have a direction to go now.

Cheers

JamesDS
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

In today's information driven age, entrepreneurs have so many great tools and options at their disposal to help turn good ideas into a thriving business. With cloud-based online services, such as Amazon's Web Services (AWS) or Microsoft's Azure, bus…
SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
Many functions in Excel can make decisions. The most simple of these is the IF function: it returns a value depending on whether a condition you describe is true or false. Once you get the hang of using the IF function, you will find it easier to us…

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now