[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 320
  • Last Modified:

Event ID 8270 logged after removing an exchange server from a domain

The site I am at had two domains. DomainA is the main internal domain for the network and I haven't don't anything there, DomainB was in fact just a single Windows 2000 DC in a domain of its own, it lived in their DMZ and hosted IIS and their OWA service by having Exchange 2000 Server setup as a front end.

I have decommissioned the Front End server and demoted the DC so that DomainB no longer exists. I appear to have missed something out though because I get Event ID 8270 as follows:

LDAP returned the error [34] Unavailable when importing the transaction
dn: <SID=0102000000000005200000002A020000>
changetype: Modify
member:add:<GUID=65B59419-87FE-4AC7-AA60-48526315D253>
-
 DC=DomainA,DC=co,DC=uk

This Event is logged 2 times, on an hourly basis. The GUID is identical in both occurences.
The event is then logged another 2 times 1 minute later with a second, different GUID.

MSKB article 313267 refers to this situation and suggests that I correct a missing group membership using AD Users and Computers, adding the "Exchange Domain Servers" group from the remote domain (in this case, DomainB)

Of course I can't do that because DomainB doesn't exist any more.

Can you suggest a way I can stop my DC, or my remainging Exchange Server or whatever it is that is trying to talk to something in DomainB, stop it from trying any more? Some kind of manual process of removal?

I have looked in every properties dialog in Exchange System Manager, the old Exchange front end server is not listed anywhere any more. I have also checked in AD USers and Comptuers, Group Policy and AS Sites and Services, and Domains and Trusts.

I guess I might have to fire up ADSI edit and hunt down the GUID? Remove references to it manually? I'm scared of ADSIedit. It is dangerous.

Advice greatly appreciated,

Joe
The event
0
joesinc
Asked:
joesinc
  • 2
1 Solution
 
joesincAuthor Commented:
I already tried EVENTID.net, it's a great website but on this occasion they could only tell me the stuff Microsoft said too. It references fixing group membership of the "Exchange Domain Servers" group from the remote domain, but of course I have deleted the other domain, so I can't do that.

I need to find out a way to stop my server trying to contact the other domain.

Still stumped :-(

Cheers for looking that up though, I appreciate the effort,

Joe
0
 
joesincAuthor Commented:
Solved!

Found two entries in Recipient Update Services that were pointing to previously-existing, never-exchange servers in different domains.

Removed these old entries and the event logs stopped appearing..

Joe
0
 
NetminderCommented:
Closed, 500 points refunded.
Netminder
Site Admin
0

Featured Post

The 14th Annual Expert Award Winners

The results are in! Meet the top members of our 2017 Expert Awards. Congratulations to all who qualified!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now