Solved

DNS replication scope could not be set

Posted on 2006-06-14
9
2,204 Views
Last Modified: 2009-02-03
I have one forest with one root domain and 4 child domains. By default the _msdcs.root.domain should replicate to all DNS servers in the active Directory forest. But somehow it's set to To all DNS servers in the AD domain, when I tried to change it back to replicate to the forest, it gives me the error " the replication scope could not be set. for more information, see 'DNS zone replication in active directory' in help and support. the error was: the name limit for the local computer network adapter card was exceeded.

i did some research on it. i do not have a stub zone, and the domain partitions are correct. How do I fix the problem?

thanks
0
Comment
Question by:katie_miguel
  • 4
  • 4
9 Comments
 

Author Comment

by:katie_miguel
ID: 16906769
hello, anyone?
0
 
LVL 51

Accepted Solution

by:
Netman66 earned 500 total points
ID: 16907924
Delete it and recreate it.

When you do, give it time to replicate the deletion before you attempt to add it back.

When you create it, it's a Primary Zone, is AD Integrated and will replicate to all DNS servers in the Forest.

Name it _msdcs.rootdomain.com (obviously your domain name would apply).

NM
0
 
LVL 51

Expert Comment

by:Netman66
ID: 16907929
One last step is to restart Netlogon on all DCs so they reregister.

0
 

Author Comment

by:katie_miguel
ID: 16913539

do i just need to delete it at the root domain or do i need to delete it through out the forest? would there be temp problems once it's deleted? after it's recreated, will it contain all the svr records? and will it replicate to all the child domains?

thanks
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 

Author Comment

by:katie_miguel
ID: 16913563
oh, i think i need to change it to primary zone, then save the zone file, and delete it, wait it to replicate, then recreate it use the existing zone file.
0
 
LVL 51

Expert Comment

by:Netman66
ID: 16913635
Sorry for being late.

You just need to delete it on the main DNS server - if the zones are AD Integrated, then they'll delete themselves on the other servers.  This is why I stress to wait for replication to completely remove it before you add it back.

Unless you have static entries in the _msdcs (which I haven't know anyone to do) then there is no need trying to save the zone file.

0
 

Author Comment

by:katie_miguel
ID: 16913930
Cool, thanks, netman. it worked. i got it all fixed.

talk to you soon.
0
 
LVL 51

Expert Comment

by:Netman66
ID: 16914002
You bet!

:o)
0
 

Expert Comment

by:healthmanagement
ID: 23086035
Hi - i have the same problem. BUT if I delete the _msdcs.domain.local zone do i then have to rebuild all of the sub folders below it? Or will it auto-populate somehow depending on my child domains? I only have 1.
Thanks

0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
Learn about cloud computing and its benefits for small business owners.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now