Solved

Morphed folders problem

Posted on 2008-06-18
13
516 Views
Last Modified: 2010-04-21
Hi
Ive been having major GPO problems and picked up that we have some morphed foders, so in the policcies folder i have
 
> Sysvol\domain.com\Policies
> Sysvol\domain.com\Policies_NTFRS_xxxxxx

as well as

> Sysvol\domain.com\Policies_NTFRS_xxxxxx

So the folder is renamed but there is no original folder. I know how to resolve the issue with the "good" and "bad" folders but in the other case i just have the "bad" folder, what do i do to resolve this?

Thanks
D
0
Comment
Question by:supernaut76
  • 8
  • 5
13 Comments
 
LVL 51

Expert Comment

by:Netman66
ID: 21818588
You can reinitialize FRS on that one server.

There are two methods:

1)  Non-Authoritative.  
2)  Authoritative.

This artcle describes both methods.

http://support.microsoft.com/kb/290762

I would start with the Non-Authoritative (D2) method on this one server.  Create a Policies folder beforehand.  You could copy the contents of the NTFRS_xxxx folder into it also if you like.  Stop the NTFRS service before creating and copying the data.

If that doesn't help, then you must D4 the good server and D2 the one that was missing the Policies folder.

Let us know.
0
 

Author Comment

by:supernaut76
ID: 21819445
thanks but im not sure which is the good server, seeing as all the servers have the same policies replicated?.
0
 
LVL 51

Expert Comment

by:Netman66
ID: 21822628
Do you have a server that doesn't have the NTFRS folders but does contain a Policies folder that has as many objects in it as there are Group Policy Objects in GPMC?

If so, use that one as the good one.

I want you to start with the bad server and a non-authoritative FRS rebuild - that's a D2 on one server.  If that cures the problem, go no further.  Otherwise, go with a D2/D4 approach.
0
 

Author Comment

by:supernaut76
ID: 21824502
ive cheked several servers they all have the same folders under the polices folder, im assuming the morphed folders have been replicated throughout?
0
 

Author Comment

by:supernaut76
ID: 21824562
sorry ive just relaised i made a mistake in my intial description.

Its actually more like
> Sysvol\domain.com\Policies\{Policy}
> Sysvol\domain.com\Policies\{Policy_NTFRS_xxxxxx}

There are 3 morphed folders in here with no corresponding original policy. Hope that amkes more sense?
0
 
LVL 51

Accepted Solution

by:
Netman66 earned 250 total points
ID: 21824860
There may have been (or still is) a replication problem with these servers.  One or more policies were added or changed while the replication wasn't working - and from all the DCs.  Once replication started working these folders would have been created due to collisions.

Pick a server.
The Policies folder should contain GUID folders without the NTFRS added to them.
Stop NTFRS on all servers and fix one of them so there are no FRS collision folders on it.
This is the server that will be the D4 server.
Delete the contents of all the other server's Policies folders.
All others will be D2.
Restart NTFRS on the D4 server - wait one minute.
Restart NTFRS on the D2 servers.

You might want to cut and paste those folders somewhere else temporarily so we can retreive them if necessary.


0
Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

 

Author Comment

by:supernaut76
ID: 21828633
We have 50 DCs and ive checked most of them and they all have the same 3 morphed folders, i dont think there is  a dc without the 3 morphed folders.
0
 
LVL 51

Expert Comment

by:Netman66
ID: 21831077
50 DCs....wow.  That's gotta hurt.

Are you able to script something to determine if any of the contents across theses 50 servers is different?
0
 

Author Comment

by:supernaut76
ID: 21831135
it does but we are planning on doing some consolidation over the next few months. I can try sctipting something but might take a while seeing as i havent written something like that before. might be faster for me to check them manually.
0
 

Author Comment

by:supernaut76
ID: 21831270
Right i checked all the servers and they all have the same 3 morphed folders.
0
 

Author Comment

by:supernaut76
ID: 21845319
I renamed the offending folders _bad., waited for replication and now ultrasound gives my sysvol a green health rating. Im assuming all is well again.

0
 
LVL 51

Expert Comment

by:Netman66
ID: 21871402
Perfect.
0
 

Author Closing Comment

by:supernaut76
ID: 31468249
Wasnt exactly the answer i was looking for but sound advice none the less.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

26 Experts available now in Live!

Get 1:1 Help Now