DC replication, authentication, time sync issues - active directory

Posted on 2009-02-20
Last Modified: 2012-05-06
Getting the error below constantly on one of our DCs.  This is the PDC emulator in the domain.   We're finding what may be replication issues, and machines are syncing time with a different server that does not hold any domain roles.  Any idea?

Event Type:      Warning
Event Source:      Health Service Script
Event Category:      None
Event ID:      1000
Date:            2/20/2009
Time:            11:41:20 AM
User:            N/A
AD Replication Monitoring : encountered a runtime error.
Failed to obtain the InfrastructureMaster using a well known GUID.
The error returned was: 'Failed to get the 'fSMORoleOwner' attribute from the object 'LDAP://<WKGUID=2fbac1870ade11d297c400c04fd8d5cd,DC=ForestDnsZones,DC=martekbio,DC=net>'.
The error returned was: 'There is no such object on the server.' (0x80072030)' (0x80072030)

For more information, see Help and Support Center at
Question by:artthegeek
    LVL 16

    Accepted Solution

    Since you're using System Center Operation Manager, here's someone with the same problem in its forerunner, MOM:
    LVL 3

    Author Comment

    We're investigating based on your comment, stay tuned...
    LVL 3

    Author Comment

    Two other symptoms to toss in - maybe related, maybe not:  

    Domain Workstations and servers are time syncing to a server in a different site.  It does not hold a domain master role, does hold the GC for that site.

    Another DC error as well:

    Alert: The system clock has not been synchronized for some time
    Source: servername
    Path: servername
    Last modified by: System
    Last modified time: 3/2/2009 9:19:24 AM
    Alert description: The time service has not synchronized the system time for 86400 seconds because none of the time service providers provided a usable time stamp. The time service is no longer synchronized and cannot provide the time to other clients or update the system clock. Monitor the system events displayed in the Event  Viewer to make sure that a more serious problem does not exist.
    LVL 16

    Assisted Solution


    Domain members will sync to the DC that authenticated them.  The DCs should then sync to the PDC emulator in their domain.  Has the PDC role been moved at all?
    On the DC with the odd error, what does
    w32tm /monitor
    On the same one, you could try
    w32tm /resync /rediscover
    followed by another
    w32tm /monitor
    any change in the output?
    Any new time errors in the event log after this?

    NB - Use W32Tm.exe rather than net.exe for time source management if you have XP or Server 2003 or newer.
    LVL 3

    Author Comment

    Thanks - we'll be doing some testing this week - stay tuned.
    LVL 3

    Author Closing Comment

    Both of you were right on.  The time sync issue I knew, and had fixed once after some nasty telco issues.  Human error stepped in next - time server settings were put in manually on DCs at one site after the first fix, this is what threw much of it out of whack.  Once I removed the settings & resync'd, that was fine.  
    It did need the ADHO to stop the ID1000 error.

    Thank you both.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    Suggested Solutions

    Log files are useful in diagnosing and repairing problems.  This is a list of common log files and their standard locations that I've compiled.   While this is not exhaustive, it is a pretty good list that I've found to be useful.  I may update it f…
    Citrix XenApp, Internet Explorer 11 set to Enterprise Mode and using central hosted sites.xml file.
    This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
    Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…

    746 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now