Link to home
Start Free TrialLog in
Avatar of dusa-it
dusa-it

asked on

Unable to delegate 'Replicate Now' function in AD Sites and Services

I want to give a AD group the ability to force an AD replication so they can go into the NTDS for a particular server in an AD site, right click on antoher server in that site and select Replicate Now.  I have run Delegate Control for every level in AD Sites and Services (Site Container, Site Name, Servers Container) giving this group full control at each step.  But when a user in this group performs the 'Replicate Now' they get the following error:

Replicate Now

The following error occurred during the attempt to sycnronize naming context Configuration from domain controller <DC1> to domain controller <DC2>:  Replication access was denied.

The operation will not continue.

Is there some other way to perfrom this function and/or what step am I missing?

I am running all W2K3 Domain Controllers in Native 2000 mode.

Avatar of Netman66
Netman66
Flag of Canada image

They need to be Domain Admin or better to do this.

ASKER CERTIFIED SOLUTION
Avatar of Netman66
Netman66
Flag of Canada image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of dusa-it
dusa-it

ASKER

I knew that if a user was in the Doman Admins group that this function worked, I was looking to find a way to get the Replicate Now function to work if someone was _not_ in the Domain Admins group.
Glad that worked out.  Seems a bit overkill, but if that's what you need and it worked out then perfect.

Cheers,
NM
Avatar of dusa-it

ASKER

Thanks for the link, I posted the other comment without refreshing after you first comment.  Thanks Again.
Anytime.