Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


DNS error id 4515

Posted on 2008-10-24
Medium Priority
Last Modified: 2012-06-21
Event Type:      Warning
Event Source:      DNS
Event Category:      None
Event ID:      4515
Date:            10/24/2008
Time:            12:45:22 PM
User:            N/A
Computer:      SERVER
The zone 'domain' was previously loaded from the directory partition MicrosoftDNS but another copy of the zone has been found in directory partition DomainDnsZones.domain.com. The DNS Server will ignore this new copy of the zone. Please resolve this conflict as soon as possible.
If an administrator has moved this zone from one directory partition to another this may be a harmless transient condition. In this case, no action is necessary. The deletion of the original copy of the zone should soon replicate to this server.
If there are two copies of this zone in two different directory partitions but this is not a transient caused by a zone move operation then one of these copies should be deleted as soon as possible to resolve this conflict.
To change the replication scope of an application directory partition containing DNS zones and for more details on storing DNS zones in the application directory partitions, please see Help and Support.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0000: 89 25 00 00               ‰%..    

Looking through this MS article, http://support.microsoft.com/kb/867464, I found some helpful stuff.

I know there is a duplicate located at the location noted in 'Option' 3 of this article, "Domain NC > CN=MicrosoftDNS shown in ADSIEDIT. This is obviously the one being used because its data up to date while the other, located in 'DC=DomainDNSZones,DC=domain,DC=com > CN=MicrosoftDNS' as noted in option 2 of the same article.

The article also goes on to say that the first 2 options are the preferred since they are supported only by Win2003 domains, which mine is. However, if I delete the zone in question I fear all DNS data will be lost.

Is there a better way to go about rectifying this otherwise annoyance?
Question by:sikruis
LVL 35

Accepted Solution

Joseph Daly earned 1000 total points
ID: 22800916
The below is from EventID.net

1. Stop DNS Server service on all servers except one.
2. On that one, turn off AD integration for all forward or reverse zones for which EventID 4515 appears (we had several).
3. Restart the DNS Server service on the one server.
4. Check the DNS log - all occurrences of EventID 4515 should be gone. If not make sure AD Integration is off and restart the service again until it starts without any 4515 warnings.
5. Enable AD integration. Remember to set the replication scope (Win2003 and higher) and turn on secure updates.
6. If there are other zones on other DNS servers that are not replicated to the server you chose in step 1, stop the DNS Server service on the machine you've been working on, then repeat steps 1 through 5 for zones on a DNS server that hosts the remaining, conflicting zones.
5. Force AD replication to all DCs running DNS.
6. Start DNS Server service on the other DNS servers. Once the replication is complete, the 4515 warnings will be gone.


Author Comment

ID: 22853898
Your answer would've worked. I just went about it a different way by going through the DNS MMC & moving the AD storage zone there. Instead of replicating to 'all domain controllers...', I choose 'all DNS servers in the forest...'. This purged the old DNS data.

Expert Comment

ID: 36241009
Dear xxdcmast,

As I said, I've read that.  I don't understand it.  What do you mean turn off AD integration?  Where do I do that?  What is that?

sikruis, I don't see a Move option in the Action tab.  Is it "Create Default App Dir Partitions" or "New Zone".

Again, I've read all these.  For you that are highly trained, this is easy.  For me this is confusing and a little scary.

Thank you for all and any help you can provide.

Featured Post

[Webinar On Demand] Database Backup and Recovery

Does your company store data on premises, off site, in the cloud, or a combination of these? If you answered “yes”, you need a data backup recovery plan that fits each and every platform. Watch now as as Percona teaches us how to build agile data backup recovery plan.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
I’m willing to make a bet that your organization stores sensitive data in your Windows File Servers; files and folders that you really don’t want making it into the wrong hands.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

572 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question