Unable to create a new object on active directory

I have no idea what went wrong but for the last day or so we are getting the following error message everytime we try to create a new user or distrobution group, we are getting the following error:

Error:
Active Directory operation failed on ntfs1.mclellan.local. This error is not retriable. Additional information: The directory service was unable to allocate a relative identifier.
Active directory response: 00002010: SvcErr: DSID-031A0FC0, problem 5003 (WILL_NOT_PERFORM), data 0


The server cannot handle directory requests.

Exchange Management Shell command attempted:
new-DistributionGroup -Name 'testteam' -Type 'Distribution' -OrganizationalUnit 'mclellan.local/Users' -SamAccountName 'testteam' -Alias 'testteam'

This is a major problem as we cannot add two new joiners on to the network. I have already searched through google and nothing that really points me to the right direction.

Thanks in advance
aniga42Asked:
Who is Participating?
 
AkhaterCommented:
yes I knew it would give you error

you have to seize the role

from the DC open cmd

ntdsutil
roles
connections
connect to server localhost
quit
seize role rid master

0
 
AkhaterCommented:
your RID (Relative Identifier) master is down.

please go to a domain controller open active directory users and computer right click on the domain select operation masters and go to the RID tab. does it give you an error ?

if so seize the role to another dc
0
 
aniga42Author Commented:
Thanks for the reply Akhater,
Yes the Operations Master says 'ERROR' and when we click on change we are getting the following error:

The transfer of the operations master cannot be performed because: the requested FSMO operation failed. the current  FSMO holder could not be contacted.

Any ideas?
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
aniga42Author Commented:
Akhater, the old server that had the role is still very much active on the network, can I perform the seizure/commands you gave me within the same server or do I have to perform the action on a new a different DC?

Thanks
0
 
AkhaterCommented:
if the other server is still online go and check the same on the other server do you also get an error or what ?
0
 
aniga42Author Commented:
Yes I am getting exactly the same error on the other server too.
0
 
AkhaterCommented:
then u shld have had a server once upon a time

try running netdom quesry fsmo what is the result
0
 
aniga42Author Commented:
Akhater, Thanks for all your help, I did go ahead and seized the role, all seems to be working happilly.

regards
0
 
AkhaterCommented:
glad to know
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.