PWyatt1
asked on
How to Force Replication in AD with incomplete DC replicating Partners
AD problem in Windows 2003.
Q. How do you force replication between DCs that are all listed in Sites and Services, but only partial lists in each DC's NTDS i.e. no one DC's NTDS listing has all of the DCs listed, but there are at least 2 DCs listed in each NTDS as replication partners.
I have 4 DCs (DC1 and DC2) and 2 of them resolve DNS (NS1 and NS2)
i.e. in Sites and Services, under each DC's NTDS are listed the following:
DC1 <>NS2
DC2
DC2 <> DC1
NS1
NS1 <>DC2
NS2
NS2 <>DC1
NS1
Running replmon shows NS1 and DC1 are not replicating properly and NS2 and DC2 not replicating properly. Toplogy confirms this.
Trying command line: repadmin /syncall /force etc. gives the following error:
DsReplicaSync() failed with status 8452 (0x2104):
The naming context is in the process of being removed or is not replicated from the specified server.
Tried ntdsutil metadata cleanup but there was nothing to do
How does one fix this?
Thanks
Q. How do you force replication between DCs that are all listed in Sites and Services, but only partial lists in each DC's NTDS i.e. no one DC's NTDS listing has all of the DCs listed, but there are at least 2 DCs listed in each NTDS as replication partners.
I have 4 DCs (DC1 and DC2) and 2 of them resolve DNS (NS1 and NS2)
i.e. in Sites and Services, under each DC's NTDS are listed the following:
DC1 <>NS2
DC2
DC2 <> DC1
NS1
NS1 <>DC2
NS2
NS2 <>DC1
NS1
Running replmon shows NS1 and DC1 are not replicating properly and NS2 and DC2 not replicating properly. Toplogy confirms this.
Trying command line: repadmin /syncall /force etc. gives the following error:
DsReplicaSync() failed with status 8452 (0x2104):
The naming context is in the process of being removed or is not replicated from the specified server.
Tried ntdsutil metadata cleanup but there was nothing to do
How does one fix this?
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Forgot to tell you DCdiag reports will have errors that say ""DcGetname"" for missing Host A records.
ASKER
Checked my DNS records and everything is OK w/ A records.
I forgot to tell you I had run a dcdiag /fix with no errors and the report shows conectivity between all partners is OK.
Your dcdiag /fix.dns is an invalid syntax :)
Anyway, DCDIAG is clean.
I went ahead and did the net stop netlogon and start again and force replicate and it came up with the same error:
DsReplicaSync() failed with status 8452 (0x2104):
The naming context is in the process of being removed or is not replicated from the specified server.
Any other suggestions?
I forgot to tell you I had run a dcdiag /fix with no errors and the report shows conectivity between all partners is OK.
Your dcdiag /fix.dns is an invalid syntax :)
Anyway, DCDIAG is clean.
I went ahead and did the net stop netlogon and start again and force replicate and it came up with the same error:
DsReplicaSync() failed with status 8452 (0x2104):
The naming context is in the process of being removed or is not replicated from the specified server.
Any other suggestions?
Yes go to sites and services and for each site right click on each ntds and click check topology. This should correct itself. I have deleted the ntds before and check topology has brought it back.
ASKER
G-r-r-r. Didn't work. I am going to go to each DC and do a "push" replication /force then go back to S&S and check topology. But first I'm going out for a bite to eat. I'm starving! AD problems can wait 1 hour :)
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Zenith that is pretty much what I had said.
ASKER
Finally! Deleted all of them.
Added them back in.
Went to replmon and "synchorized each directory partition..." for each DC.
Went to topology and saw all servers were lnked, although two of them have only one link implying either a missing inbound or outbound link. (I'll check this later).
I went back to S&S and was able to replicate all servers to each other.
Thanks for the help. You get the points.
Added them back in.
Went to replmon and "synchorized each directory partition..." for each DC.
Went to topology and saw all servers were lnked, although two of them have only one link implying either a missing inbound or outbound link. (I'll check this later).
I went back to S&S and was able to replicate all servers to each other.
Thanks for the help. You get the points.
Thanks for the points
ASKER
Sorry, thenone:
You were not supposed to get the points. I tried to split between CiefT and Zenith63, but something screwed up. I will request the admin to award the points accordingly.
You were not supposed to get the points. I tried to split between CiefT and Zenith63, but something screwed up. I will request the admin to award the points accordingly.