LDIFDE config file???

Posted on 2009-12-29
Medium Priority
Last Modified: 2012-05-08
How do I ensure that strict replication consistency is enabled for newly promoted domain controllers?

I have attempted to use the documentation available from Microsoft here: http://technet.microsoft.com/en-us/library/cc949134(WS.10).aspx#BKMK_Ensure_Strict.

I created a file as mentioned in the documentation, however I continue to receive an error every time I try to run the command: ldifde -i -f <Path>\<FileName>

The error is in the code snippet below. I have tried variations of removing whitespace and just succeed in getting different error messages.

Any help would be much appreciated.

FYI - In addition to the link above, I also used the following link to attempt to solve the issue myself prior to posting:

Connecting to "<PDC>"
Logging in as current user using SSPI
Importing directory from file "x:\strict_repl.txt"
Loading entries.
There is a syntax error in the input file
Failed on line 3.  The last token starts with 'd'.
0 entries modified successfully.
An error has occurred in the program
No log files were written.  In order to generate a log file, please
specify the log file path via the -j option.

Open in new window

Question by:tamco
  • 2
  • 2

Accepted Solution

tamco earned 0 total points
ID: 26141519
I think I just found a workaround.
I used ADSI Edit and performed the following steps:
  1. Action -> Connect to:
  2. Connection Point -> for Select or type a Distinguished Name or Naming Context: type CN=Operations,CN=ForestUpdates,CN=Configuration,DC=DOMAIN,DC=COM
  3. Click OK
  4. Right-click the attached CN -> New -> Object...
  5. Choose container, click Next
  6. Type 94fdebc6-8eeb-4640-80de-ec52b9ca17fa, click Next
  7. Click More Attributes
  8. Click drop down next to Select a property to view and choose showInAdvancedViewOnly
  9. Next to Edit Attribute type TRUE
  10. Click Set, then click OK, then click Finish
That's it.  Hopefully it works, I won't know for certain until I add another domain controller.
I'm still interested in the proper way to use LDIFDE to accomplish this task.
LVL 19

Expert Comment

ID: 26144273
I was about to say, at the end of the first article you posted, someone else has the same problem and suggests the exact ADSIedit work around you just mentioned!

Was going to ask if you'd tried that yet... :) lol


LVL 19

Expert Comment

ID: 26144309
Would be interesting to see the content of the log file though?

"specify the log file path via the -j option."
LVL 24

Expert Comment

ID: 26144701

Author Comment

ID: 26145259
I was the one to post that solution actually. :-)
I have tried the -j option a few times, every time I receive the error "Unable to open log file."  It doesn't seem to matter what path I use for the log file or if the file already exists or not.
The links listed show me how to turn it on on a case by case basis.  I already completed that, I want to enable this for the domain so any new DC's automatically have it enabled.

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
Scripts are great for performing batch jobs against users, however sometimes the GUI is all you need.
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question