?
Solved

HELP!!!  My current DC's are not reflecting the change of primary DC's in AD Sites & Services...

Posted on 2011-09-10
6
Medium Priority
?
223 Views
Last Modified: 2012-08-14
Hi, I need help.  Recently, I demoted what use to be my primary DC in my domain, Server 2003 SP2 from being a DC.  I have all my FSMO roles on my new primary DC, Server 2008 R2 SP1.

My new primary DC has been in place for several months now.  So, it should be good to go in this aspect of replication time, etc.

From a member here, mkline71, gave me this link  http://blogs.technet.com/b/markmoro/archive/2011/08/05/you-are-not-smarter-than-the-kcc.aspx
which states let KCC do it's job and recreate the AD Sites & Services connections between my multiple branch sites, hoping that KCC would be smart enough to select the correct new primary DC for all branch DC's to point back to for replication.

So, I have waited for nearly 2 hours and 1 of my 3 branch sites displays the correct new primary DC in AD Sites & Services.

The one branch DC that is displaying correctly in AD SItes & Services is a Server 2003 x64 with latest SP.

The other 2 branch DC's, one is a Server 2008 R2 SP1 & the other is Server 2003 x64 with latest SP.

Here is something even more strange, the one branch DC (Server 2003 x64) is still displaying the old primary DC that I have demoted and the other branch DC that is displaying the correct new primary DC in AD Sites & Services.

Should I just be patient and see if it corrects itself in the new couple hours or is there something more seriously wrong that needs my immediate attention?

Any ideas or suggestions will be greatly appreciated.
0
Comment
Question by:rsnellman
  • 5
6 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 36516838
During the dcpromo the old DC won't be removed from sites and services, go in and delete the old dc manually.

Are you seeing any issues with replication?

I'll be on and off...in and out today.

Thanks

Mike
0
 

Author Comment

by:rsnellman
ID: 36516844
OK, I haven't deleted the old DC from Sites & Services yet, but my Central Site in ADSS is made the changes automatically, but 2 out of 3 of my branch sites (North Site & South Site) are not displaying / reflecting the change of the old DC being gone from the AD SItes & Services automatically generated connection for Replication From.
0
 

Author Comment

by:rsnellman
ID: 36516846
You want to to attempt a Replication Now from AD Sites & Services on each of my branch sites that does not display the correct "<automatically generated> From Server"?
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:rsnellman
ID: 36516854
If I go into the properties of the "<automatically generated> old DC within the North Site or South Site/Servers/NorthServer/NTDS Settings.  

In General tab, it displays in Relicate from area
Server: invalid
Site: invalid
Relicated Naming Context(s): invalid

If I click the "Change" button, it allows me to select the new primary DC from the list, but then gives me a warning about it will not be a automatically generated connection.

0
 

Accepted Solution

by:
rsnellman earned 0 total points
ID: 36516859
Wait...the North Site server just changed to the correct new primary DC.  Now the South Site server has changed, but does not have the correct new primary DC displayed yet.  I am confident that it will change soon enough.  Guess I need to be more patient and stop stressing out over nothing.

Thanks anyways.
0
 

Author Closing Comment

by:rsnellman
ID: 36541411
This is the answer.  Just needed to be patient and wait for KCC to do its magic.

Thanks.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question