DNS error id 4515

Posted on 2008-10-24
Medium Priority
Last Modified: 2012-06-21
Event Type:      Warning
Event Source:      DNS
Event Category:      None
Event ID:      4515
Date:            10/24/2008
Time:            12:45:22 PM
User:            N/A
Computer:      SERVER
The zone 'domain' was previously loaded from the directory partition MicrosoftDNS but another copy of the zone has been found in directory partition DomainDnsZones.domain.com. The DNS Server will ignore this new copy of the zone. Please resolve this conflict as soon as possible.
If an administrator has moved this zone from one directory partition to another this may be a harmless transient condition. In this case, no action is necessary. The deletion of the original copy of the zone should soon replicate to this server.
If there are two copies of this zone in two different directory partitions but this is not a transient caused by a zone move operation then one of these copies should be deleted as soon as possible to resolve this conflict.
To change the replication scope of an application directory partition containing DNS zones and for more details on storing DNS zones in the application directory partitions, please see Help and Support.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0000: 89 25 00 00               ‰%..    

Looking through this MS article, http://support.microsoft.com/kb/867464, I found some helpful stuff.

I know there is a duplicate located at the location noted in 'Option' 3 of this article, "Domain NC > CN=MicrosoftDNS shown in ADSIEDIT. This is obviously the one being used because its data up to date while the other, located in 'DC=DomainDNSZones,DC=domain,DC=com > CN=MicrosoftDNS' as noted in option 2 of the same article.

The article also goes on to say that the first 2 options are the preferred since they are supported only by Win2003 domains, which mine is. However, if I delete the zone in question I fear all DNS data will be lost.

Is there a better way to go about rectifying this otherwise annoyance?
Question by:sikruis
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 35

Accepted Solution

Joseph Daly earned 1000 total points
ID: 22800916
The below is from EventID.net

1. Stop DNS Server service on all servers except one.
2. On that one, turn off AD integration for all forward or reverse zones for which EventID 4515 appears (we had several).
3. Restart the DNS Server service on the one server.
4. Check the DNS log - all occurrences of EventID 4515 should be gone. If not make sure AD Integration is off and restart the service again until it starts without any 4515 warnings.
5. Enable AD integration. Remember to set the replication scope (Win2003 and higher) and turn on secure updates.
6. If there are other zones on other DNS servers that are not replicated to the server you chose in step 1, stop the DNS Server service on the machine you've been working on, then repeat steps 1 through 5 for zones on a DNS server that hosts the remaining, conflicting zones.
5. Force AD replication to all DCs running DNS.
6. Start DNS Server service on the other DNS servers. Once the replication is complete, the 4515 warnings will be gone.


Author Comment

ID: 22853898
Your answer would've worked. I just went about it a different way by going through the DNS MMC & moving the AD storage zone there. Instead of replicating to 'all domain controllers...', I choose 'all DNS servers in the forest...'. This purged the old DNS data.

Expert Comment

ID: 36241009
Dear xxdcmast,

As I said, I've read that.  I don't understand it.  What do you mean turn off AD integration?  Where do I do that?  What is that?

sikruis, I don't see a Move option in the Action tab.  Is it "Create Default App Dir Partitions" or "New Zone".

Again, I've read all these.  For you that are highly trained, this is easy.  For me this is confusing and a little scary.

Thank you for all and any help you can provide.

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question