[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 173
  • Last Modified:

Replication Problems with Windows 2000 Active Directory

Hi

I have 2 servers.. 1 with W2K SP4 and Exchange2K located at Head Office and 1 with W2K SP4 and Exchange 2K located at a Hosting company.
The colocated server contains about 150 mailboxes for our remote sites and the head office server contains about 20 mailboxes just for head office. The colocated server also acts as a front end for the head office server for outlook web access.

There are netscreen firewalls between the boxes on 2MB sDSL link.

All was working fine until a couple of months ago when within a couple of weeks of each other the boxes needed rebooting or crashed.

Since then I have found that progressively we have got to the stage that replication of the Active directory is not taking place.
If I create users on the colocated server then they do not appear in the Global Address Book for Outlook users.
If I create the user account on the head office server, it does not appear at all in the active directory users and computers on the colocated server.


My question is what steps can I take to ensure that replication takes place?
What are the processes involved?
Is this linked to our loss of OWA at the head office site?

Please help as this has got to the stage where I am thinking of reloading my server..which may or may not work.. andwhich I am loath to do because of the risks involved (reloading beskope apps etc)
0
hestiahousing
Asked:
hestiahousing
  • 6
  • 4
1 Solution
 
adamdrayerCommented:
How do I troubleshoot intra-site replication failure?
http://support.microsoft.com/?kbid=249256
0
 
hestiahousingAuthor Commented:
Hi

Thanks for the pointer ... any recommendations for starting point?
I have run dcdiag.exe /test:replications and it says that colo server to head server replications have not taken place since 18/09/04 ...
Any chance that you can give me some info as to what I should check first?
The microsoft document above is quite large, but doesn't give point by point details or syntax for the tools...

Cheers
Sat
0
 
hestiahousingAuthor Commented:
Hi

I have run replmon on both servers and it shows error code 5 reson access denied..

Also if I run repadmin /syncall on btoh servers i get back a win32 error 5.

Any ideas?

Cheers
Sat
0
[Webinar] Kill tickets & tabs using PowerShell

Are you tired of cycling through the same browser tabs everyday to close the same repetitive tickets? In this webinar JumpCloud will show how you can leverage RESTful APIs to build your own PowerShell modules to kill tickets & tabs using the PowerShell command Invoke-RestMethod.

 
adamdrayerCommented:
from another post here:

Error code 5 - "Access denied" - See Q290647. Also, from a newsgroup post: "I have been plagued by the same message on my system for months. Most of the postings I saw claimed that this was due to my system being multi-homed and the order of the priority of the NICs being incorrect. In my case, the suggested remedies did not work. Today I checked and found out the the node "C:\WINNT\sysvol\sysvol" was not shared. After I shared that node to system and Administrator, the error messages stopped."
0
 
hestiahousingAuthor Commented:
hi adamdrayer

thank you for the post ... i have shared the c:\winnt\sysvol\sysvol node on both servers with full control to administrators and system .. but still i get the access denied messages ..
do i need to reboot??

btw, not that it should matter .. but my sysvol folder on the server is on a seperate drive (for performance) ... do you think i need to do anything else?

thanks again
sat
0
 
adamdrayerCommented:
I'm not sure, you can try rebooting though.  I'll keep looking.
0
 
hestiahousingAuthor Commented:
thanks

i can't reboot the servers till tomorrow..
btw, you mentioned a previous question ...how do i get to that question on EE .. i haven't got premium services ..

cheers
sat
0
 
adamdrayerCommented:
Q290647?  that's a Microsoft Knowledge Base Article.  Goto support.microsoft.com and search for it...  Here's the link itself.

http://support.microsoft.com/default.aspx?scid=kb;en-us;290647
0
 
hestiahousingAuthor Commented:
oops ... sorry about that .. it's friday afternoon  .. i think i need some food and a drink :-)

thanks for the link
0
 
hestiahousingAuthor Commented:
Hi All

I have managed to fix the problem myself ... I found the following document on the microsoft website...

http://support.microsoft.com/default.aspx?scid=kb;en-us;288167

it showed me that by stopping the KDC service and resetting  netdom passwordd ... the domain controllers will go back the the PDC emulater for correct keys.

Thanks for all your help

 
0
 
ee_ai_constructCommented:
Question answered by asker or dialog valuable.
Closed, 300 points refunded.
ee_ai_construct (replacement part #xm34)
Community Support Admin
0

Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

  • 6
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now