OneStopPCHelp
asked on
Forced Primary Master Windows 2000 Standard Server
I had two servers both Windows 2000 standard servers. One failed from hardware issues. I performed a force on the member server to make it the domain master. The second server will not be comming back into the scope. When I try to add a user it gives an error that It cannot update schema. How would I go about correcting this issue? I did the force admin under the recomendation instruction recieved from Experts exchange. Thier were five commands performed at the command promtp.
also run netdiag for me and post any failings
ASKER
will do
I think as u told in the question the both of those servers are in Windows Domain, I continue with that knowledge.
It seems you have failed a server which is installed first in your domain (i.e. the first domain controller in your domain)
In windows domain there are 5 FSMO roles doing different tasks
The first server of your Forest/Domain gets all of those 5 roles into it seft, so that server will be the Master for all of the domain controllers.
A perticular FSMO role called "RID Master" (Relative ID master) is doing the issue of unique IDs which is required by the Active Directory when it creates new Objects on AD. the objects are for example Users, groups, Computers etc. If there are no enough IDs for creating new objects it fails giving the error mentioned by u.
You have to elect a new RID master which is the other server mannually using "NTDSUTIL" command line utility by seizing the old server.
use this link (how to do it)
http://technet2.microsoft.com/WindowsServer/en/library/e8b6ccc4-cae8-46ea-86ed-bf5f1899cdb81033.mspx?mfr=true
It seems you have failed a server which is installed first in your domain (i.e. the first domain controller in your domain)
In windows domain there are 5 FSMO roles doing different tasks
The first server of your Forest/Domain gets all of those 5 roles into it seft, so that server will be the Master for all of the domain controllers.
A perticular FSMO role called "RID Master" (Relative ID master) is doing the issue of unique IDs which is required by the Active Directory when it creates new Objects on AD. the objects are for example Users, groups, Computers etc. If there are no enough IDs for creating new objects it fails giving the error mentioned by u.
You have to elect a new RID master which is the other server mannually using "NTDSUTIL" command line utility by seizing the old server.
use this link (how to do it)
http://technet2.microsoft.com/WindowsServer/en/library/e8b6ccc4-cae8-46ea-86ed-bf5f1899cdb81033.mspx?mfr=true
ASKER
i'm remoted in and looks like it doesn'r reconise this command i will have to transfer it to the machine and run it what kind of switch did you wish for ? /q /v /l ?
ASKER
It ran but told me I was allready the rid master
ASKER
here is exacly what error says
windows cannot validate the uniqueness of the proposed user name with global catalog server becuase:
the server is not operational. yata yata yata
windows cannot validate the uniqueness of the proposed user name with global catalog server becuase:
the server is not operational. yata yata yata
ok then go to the Active directory Domains and Trusts
and
Select Defult site > Servers > your server >NTDS Settings
right click on NTDS Setting and select Properties and on Properties page select the Global Catelog Checkbox and select ok
and
Select Defult site > Servers > your server >NTDS Settings
right click on NTDS Setting and select Properties and on Properties page select the Global Catelog Checkbox and select ok
ASKER
ahh but the appserver isn't listed thier
OK on Select Defult site > Servers right click and go to New > select server and type the name of the server and add it
ASKER
I don't have the option to for new however i do have connect to domain controller and if i select this my appserver is listed. what i have is the domainname.local listed in the tree if i try to expand it nothing.
ASKER
this isn't under domain and trust it is unser sites and services
ASKER
so i added the global now we had a missunderstanding
ASKER
still unable to add a user
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes same error when i tried yesterday. I went ahead and did a reboot this morning after after my post and now am able to add users again. Forgot MS must reboot for everything. Thank you
can you please confirm role placement
http://support.microsoft.com/default.aspx?scid=kb;en-us;255690