CoyotesIT
asked on
ocs 2007; replication access denied.
I am having issues with OCS 2007 server. I can add a new user, but ocs is not replicating to the dc and thus will not allow the user to sign in to the chat client
error on DC side;
Log Name: Directory Service
Source: Microsoft-Windows-ActiveDirectory_DomainService
Date: 4/17/2009 3:01:45 PM
Event ID: 2896
Task Category: Replication
Level: Error
Keywords: Classic
User: XYZ\RTCService
Computer: XYZDCP01.XYZ.local
Description:
A client made a DirSync LDAP request for a directory partition. Access was denied due to the following error.
Directory partition:
CN=Configuration,DC=XYZ,DC=local
Error value:
8453 Replication access was denied.
User Action
The client may not have access for this request. If the client requires it, they should be assigned the control access right "Replicating Directory Changes" on the directory partition in question.
Need more info.. Std,Ent,any changes to AD policies, etc.. check perms on the acct enabling users, etc.
ASKER
Sorry, it is 2007 standard edition. we have not made any changes to AD or it policies and the system has been up and running fine for almost 2 years
Sorry, I have only seen that with EE version, in which case lcscmd command line was used to reregister the pool... might have to call MS for this one...
If it were me, since you can build an OCS box in less than an hour, I would just export the users using DBIMPEXP , rebuild, then DBIMPEXP /Import.
If it were me, since you can build an OCS box in less than an hour, I would just export the users using DBIMPEXP , rebuild, then DBIMPEXP /Import.
ASKER
We did end up contacting Microsoft on this issue it seems like the OCS RTC Users had lost there permissions on the active directory domain and they reran the domain prep and it began working correctly.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.