Cannot replicate domain controllers: access denied
Posted on 2006-05-19
I have 5 Windows 2000 Domain Controllers: DC1, DC2, DC3, DC4, DC5.
DC1 and DC2 are located at the same site. DC3, DC4 and DC5 are each located at different locations/sites. The 4 sites are connected by T1. DC1 does not replicate with DC2 or any of the other DC’s.
In AD Sites and Services when I try to replicate DC1 with DC2 I get the following error “The following error occurred during the attempt to synchronize the domain controllers: access denied.”
In AD Sites and Services when I try to replicate DC2 with DC1 I get the following error “The following error occurred during the attempt to synchronize the domain controllers: Logon Failure unknown username or bad password.”
I have been trying different things from docs that I have downloaded from MS and other sources, but nothing seems to work. This has been going on for a couple of months. According to MS knowledge base the error “Logon Failure unknown username or bad password” occurs when “A Windows 2000-based domain controller cannot replicate the configuration or the schema partitions with replication partners that belong to another domain of the forest”.
However, my Domain Controllers belong to the same domain, same site, same room, same @*!&ing switch!
Can someone please help me! The DC that is not replicating holds the Forest Level FSMO roles (Schema Master and Domain naming master), is the Primary AD Integrated DNS server and it is also the Terminal Server Licensing server.
I have to get this to replicate!!