Solved

NTDS KCC 1801

Posted on 2010-11-15
7
1,017 Views
Last Modified: 2012-05-10
Hi,

We have remote site that I created a new site for and moved the only domain controller to.  The thing that I noticed is that now I am getting a warning message that states:

Warning NTDS KCC 1801

The partition DC=DomainDnsZones,DC=vertex,DC=local should be hosted at site CN=LAX,CN=Sites,CN=Configuration,DC=vertex,DC=local, but has not been instantiated yet. However, the KCC could not find any hosts from which to replicate this partition.

I am not sure exactly what this means being that in the past I have always created a site and then did a dcpromo to bring up the domain controller.  we have about 50 machins in that site and I am trying to do this from a remote site.

How can I resolve this issue.  Also how critical is this issue.  Will this prevent the users from logging on to the nework or have access to shared resources such as files and printers
0
Comment
Question by:thomasm1948
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 

Author Comment

by:thomasm1948
ID: 34136601
Also when I run the following command in the command prompt everything seems to be ok:

repadmin /replsum /bysrc /bydest /sort:delta

I see no errors when I run it.  The only thing that I see is that I tried to install the support tools on the remote server and I get an error that I do not have permissions to install the application on the server (I did this though remote desktops in console mode)
0
 
LVL 24

Accepted Solution

by:
Awinish earned 500 total points
ID: 34137370
You have linked all the sites properly with their subnet.

If its fine then there can be Domaindnszones & forestdnszones are in corruption.

Change all the AD-Integrated DNS zone to Primary(Non-AD-Integrated) in forward lookup zone as well as in reverse lookup zone

Stop the dns service on problem dc,
Open ADSIEDIT.MSC from run, locate configuration partition
Expand configuration partition>Partitions> remove Domaindnszones & forestdnszones only which is on the right side.
Start the dns service & you will find those two partitions will be recreated.
Convert the zone back to AD-Integrated,

Note: Delete the Domaindnszones & forestdnszones only after you have converted all the zone under forward & reverse lookup zone to non AD-integrated.If you delete the Domaindnszones & forestdnszones w/o converting the zone Non AD-Integrated, it will delete all the zones under forward & reverse lookup zone.

If you are not sure take backup before doing it.
0
 
LVL 24

Expert Comment

by:Awinish
ID: 34137404
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:thomasm1948
ID: 34137476
yes all of the sites are connected to their proper subnets.  I will try your recommendation after working hours.  

How critical is this warning message?  
0
 

Author Comment

by:thomasm1948
ID: 34137500
I do not receive any event IDs 4515 in my event log
0
 

Author Comment

by:thomasm1948
ID: 34137553
What would happen if I decide to demote the domain controller on the remote site and repromote it to a domain controller
0
 
LVL 24

Expert Comment

by:Awinish
ID: 34137821
Event id 4515 is related to dns but corruption can happen in dns, i gave you link to confirm you follow the steps properly.

You can do that nothing happens, but make sure before using same host name & IP again, make sure after demoting you clean up all the records & give time to replicate the changes to other dc else you will not able to configure the dc with same name.

Also,if you have clients pointed to that dc for dns need to make change on all the client machine.

0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows the method of using the Resultant Set of Policy Tool to locate Group Policy that applies a particular setting.
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question