[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 410
  • Last Modified:

Active Directory - windows 2003 replication

I have 3 AD server and 3 location - 1 per location. How do i make sure replication is occurring? how to make sure the server where changes is made replicates to the other ones fast or in a quite good time. This is a windows 2003 AD server.
Thanks,
0
Faustino-12
Asked:
Faustino-12
1 Solution
 
ashutoshsapreCommented:
This process is automatic. KCC automatically create optimized connection objects for replication. So, just keep a check on the event viewer. In Directory Service event logs check if you see any errors related to replication.
In the File replication service logs if you have event id 13516 then the replication is working fine. If at any time you see 13508 and 13509 then you will have to check if the connectivity is reliable. Also keep a check on system logs.
0
 
AmitIT ArchitectCommented:
run repadmin /replsum

It will show you the results. If there are any replication issue, if will show the error in the result.
0
 
Faustino-12Author Commented:
ashutosapre: is see some 13508 from previous day on DC1. Let supposed i have DC1,DC2, DC3.
the event properties is reading as:
The file replication service is having trouble enabling replication from dc3 to dc1 for c:\windows\sysvol\domain using the dns anme dc3.domain.int. FRS will keep retrying. Following are some of the reasons you would see this warning........[1] FRS can not correctly resolve the DNS name dc3.newworldtravel.int form this computer.
[2] FRS is not running on dc3.domain.int
[3] the topology information in the active directory for this replica has not yet replicated to all the domain controllers

amitkulshrestha:
i put the commands on dc1 and it does not any fails. All good and suceess.
0
NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

 
Muzafar MominCommented:
you can either use Replmon.exe or go for Spotlight for AD monitoring this will give you the detailed reports on Replication, DC health, dns etc...
0
 
Leon FesterCommented:
Based on the output you reported, it definitely sounds like some problems on your DC's
Run DCDIAG on each server to confirm the health of your Active Directory installations.
Once the errors in your DCDIAG's have been resolved then you shouldn't have any replication errors.
0
 
AmitIT ArchitectCommented:
Faustino-12

Repadmin is the best command to fix the replication issue. Below are the troubleshooting steps for AD. Hope this will help you a lot

Troubleshooting Steps

Critical Errors

Event ID: -- 467 – Directory Service Event
Indication – AD Database table has been corrupt.
Resolution – Perform a offline defragmentation of AD Database or Remove the AD database from the server and reinstall AD.

Warning Errors

File Replication Events

Event ID: 13508 – Unable to create RPC connection to replication partner
A single FRS event ID 13508 does not mean anything is broken or not working, as long as it is followed by FRS event ID 13509, which indicates that the problem was resolved.
Check for Event ID 13509 after 13508 if not troubleshoot the event 13508
Resolution – Stop and start the File Replication service.
1. Run --> cmd --> net stop ntfrs (stopping the service)
2. Net start ntfrs (starting the service)
Note: Stopping and starting the service should be done strictly after business hours.

Event ID: 13568 – Indicates FRS is in Journal Wrap state
Resolution:
How to perform nonauthoritative restore.

1) Open command prompt on DC, type net stop ntfrs
2) Goto Run> Type Regedit
3) Browse to below path
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NtFrs\Parameters\Backup/Restore\Process at Startup
4) In the right side window, select BurFlags and double click to open it
5) Type D2 in the Edit DWORD Value. Click ok and exit from Regedit snap-in
6) Open command Prompt again on DC and type net start ntfrs
7) Open Event Viewer and in FRS logs you will find 13565. This indicate restore process is started
8) Event ID 13516 will indicate restore is completed.

For more details: http://support.microsoft.com/kb/290762

Directory Service Events:
Event ID: 1925, 1311, 1865, and 1566 --- These Events indicate KCC (Knowledge Consistency Checker) Errors
Resolution:
1) Check there is no network issues in the site.
2) Check the DC by running a Basic DNS test. (Run --> cmd --> dcdiag /test:dns /s:sourcedomaincontrollername /Dnsbasic).
For EX:- dcdiag /test:dns /s:YOURDCNAME /Dnsbasic
3) Check DNS Registration by running the following command.
Dcdiag /test:dns /DnsRecordRegistration.
Event ID: 1079, 1169 --- This Event is trigerred if Active Directory is unable to perform replication if there is a low memory to perform the operation.
0
 
Faustino-12Author Commented:
i do not know how to split the point between 3 of you.
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

Tackle projects and never again get stuck behind a technical roadblock.
Join Now