Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 169
  • Last Modified:

Active Directory Replication Problem

Server 1 is the Operations Master for our domain. Recently Server 2 was introduced and stored a copy of Active Directory. Server 1 was taken offline for a while. 40+ computers were then added to the domain via Server 2. Then Server 1 was brought back online and replication will not occur. I have used the Repamin tool to verify that the reason the servers will not synchronize is because Server 2 has reached the tombstone period and cannot be synchronized.
Can anyone tell me how I can sync these servers back together without haveing to demote Server 2, lose all of the computer accounts and have to join Server 2 and the 40+ computers back to the domain.
0
dbsltd
Asked:
dbsltd
  • 2
  • 2
1 Solution
 
LauraEHunterMVPCommented:
If Server1 was taken offline for longer than 60 days, it is useless from an Active Directory perspective.  By returning this DC to your domain, you have placed yourself in a USN Rollback condition, described here: http://support.microsoft.com/kb/875495.

In a nutshell, you will need to forcibly remove Server1 from Active Directory using the dcpromo /forceremoval option, then perform a metadata cleanup of Server1 from Server2 as described here: http://support.microsoft.com/kb/216498. (If you did not transfer/seize the FSMO roles from Server1 to Server2 when Server1 was taken offline, do so now as described here: http://support.microsoft.com/kb/324801) But mostly you should read and follow all of the instructions in KB 875495 in order to correct this issue.  Once the issue has been corrected, you can re-run dcpromo on Server1 to re-introduce it as a domain controller within Active Directory.

0
 
dbsltdAuthor Commented:
What about the fact that Server 1 (orignal server) is the operations master for the domain? Do I need to do anything here?

Thanks for your quick response.
0
 
LauraEHunterMVPCommented:
"If you did not transfer/seize the FSMO roles from Server1 to Server2 when Server1 was taken offline, do so now as described here: http://support.microsoft.com/kb/324801."
0
 
dbsltdAuthor Commented:
Thank you very much. Worked a treat.
0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now