Problems with replication after DNS problems in trusted domain Windows 2008 R2
We had some problems with DNS for newly added trust. There is 2 DC for the first domain. The next DC we set up with trust have now replication errors. See attached files with dcdiag and dcdiag /test:dns output.
There ia also a screen shot with replicate error in "Sites and Services"
These servers are in Hyper-V
Can anyone help?
dcdiag.txt
dns.txt
Replicate-error.JPG
There ia also a screen shot with replicate error in "Sites and Services"
These servers are in Hyper-V
Can anyone help?
dcdiag.txt
dns.txt
Replicate-error.JPG
There is also some useful info here:
http://support.microsoft.com/kb/312862
Have a look at the "Detecting null Server-Reference attributes" section, and more importantly, the "Repairing the null Server-Reference attributes" - This last section should explain how to correct the error in the dcdiag output:
[1] Problem: Missing Expected Value
Base Object: CN=NEWDC,OU=Domain Controllers,DC=new,DC=NEW
Base Object Description: "DC Account Object"
Value Object Attribute Name: frsComputerReferenceBL
Value Object Description: "SYSVOL FRS Member Object"
If you need any help working through it, let me know.
Cheers,
Pete
http://support.microsoft.com/kb/312862
Have a look at the "Detecting null Server-Reference attributes" section, and more importantly, the "Repairing the null Server-Reference attributes" - This last section should explain how to correct the error in the dcdiag output:
[1] Problem: Missing Expected Value
Base Object: CN=NEWDC,OU=Domain Controllers,DC=new,DC=NEW
Base Object Description: "DC Account Object"
Value Object Attribute Name: frsComputerReferenceBL
Value Object Description: "SYSVOL FRS Member Object"
If you need any help working through it, let me know.
Cheers,
Pete
ASKER
Hi,
These thing have been tried out.
1. IPv6 are not in use and disabled during installation
2. Run replicate as Schema admin did not help
BR
These thing have been tried out.
1. IPv6 are not in use and disabled during installation
2. Run replicate as Schema admin did not help
BR
ASKER
Hi Pete
The named tools in the article shows errors.
ntfrs ds:
ERROR - Cannot bind w/authentication to computer, output.txt; 000006ba (1722)
ERROR - Cannot bind w/o authentication to computer, output.txt; 000006ba (1722)
ERROR - Cannot RPC to computer, output.txt; 000006ba (1722)
Adsiedit error message attached as an image
ADSIEDIT-error.JPG
The named tools in the article shows errors.
ntfrs ds:
ERROR - Cannot bind w/authentication to computer, output.txt; 000006ba (1722)
ERROR - Cannot bind w/o authentication to computer, output.txt; 000006ba (1722)
ERROR - Cannot RPC to computer, output.txt; 000006ba (1722)
Adsiedit error message attached as an image
ADSIEDIT-error.JPG
Hi,
Have you test the connection between two domain controllers for replication security errors?
Try these steps: http://technet.microsoft.com/en-us/library/cc949123(WS.10).aspx
Regards,
Faraz H. Khan
Have you test the connection between two domain controllers for replication security errors?
Try these steps: http://technet.microsoft.com/en-us/library/cc949123(WS.10).aspx
Regards,
Faraz H. Khan
ASKER
Hi Faraz
I run the securitycheck and get the output in attached text file. There are some errors here. Do you know how to fix?
There are similar errors for the other DC too.
Best regards
Stale
dcdiag-securitycheck.txt
I run the securitycheck and get the output in attached text file. There are some errors here. Do you know how to fix?
There are similar errors for the other DC too.
Best regards
Stale
dcdiag-securitycheck.txt
Hi,
Most obviously the permission issue as I checked, can you make sure that you are using enterprise admin account?
Regards,
Faraz H. Khan
Most obviously the permission issue as I checked, can you make sure that you are using enterprise admin account?
Regards,
Faraz H. Khan
ASKER
Hi Faraz
yes, i'm sure of using enterprie administrator account
BR
Stale
yes, i'm sure of using enterprie administrator account
BR
Stale
ASKER
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Try couple of things and then check
1. Disable IPv6 if you donot use it.
2. Launch replication with an account which has schema admin right. Try with administrator account just to check.
Regards,
Faraz H. Khan