Solved

HELP!!!  My current DC's are not reflecting the change of primary DC's in AD Sites & Services...

Posted on 2011-09-10
6
218 Views
Last Modified: 2012-08-14
Hi, I need help.  Recently, I demoted what use to be my primary DC in my domain, Server 2003 SP2 from being a DC.  I have all my FSMO roles on my new primary DC, Server 2008 R2 SP1.

My new primary DC has been in place for several months now.  So, it should be good to go in this aspect of replication time, etc.

From a member here, mkline71, gave me this link  http://blogs.technet.com/b/markmoro/archive/2011/08/05/you-are-not-smarter-than-the-kcc.aspx
which states let KCC do it's job and recreate the AD Sites & Services connections between my multiple branch sites, hoping that KCC would be smart enough to select the correct new primary DC for all branch DC's to point back to for replication.

So, I have waited for nearly 2 hours and 1 of my 3 branch sites displays the correct new primary DC in AD Sites & Services.

The one branch DC that is displaying correctly in AD SItes & Services is a Server 2003 x64 with latest SP.

The other 2 branch DC's, one is a Server 2008 R2 SP1 & the other is Server 2003 x64 with latest SP.

Here is something even more strange, the one branch DC (Server 2003 x64) is still displaying the old primary DC that I have demoted and the other branch DC that is displaying the correct new primary DC in AD Sites & Services.

Should I just be patient and see if it corrects itself in the new couple hours or is there something more seriously wrong that needs my immediate attention?

Any ideas or suggestions will be greatly appreciated.
0
Comment
Question by:rsnellman
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
6 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 36516838
During the dcpromo the old DC won't be removed from sites and services, go in and delete the old dc manually.

Are you seeing any issues with replication?

I'll be on and off...in and out today.

Thanks

Mike
0
 

Author Comment

by:rsnellman
ID: 36516844
OK, I haven't deleted the old DC from Sites & Services yet, but my Central Site in ADSS is made the changes automatically, but 2 out of 3 of my branch sites (North Site & South Site) are not displaying / reflecting the change of the old DC being gone from the AD SItes & Services automatically generated connection for Replication From.
0
 

Author Comment

by:rsnellman
ID: 36516846
You want to to attempt a Replication Now from AD Sites & Services on each of my branch sites that does not display the correct "<automatically generated> From Server"?
0
NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

 

Author Comment

by:rsnellman
ID: 36516854
If I go into the properties of the "<automatically generated> old DC within the North Site or South Site/Servers/NorthServer/NTDS Settings.  

In General tab, it displays in Relicate from area
Server: invalid
Site: invalid
Relicated Naming Context(s): invalid

If I click the "Change" button, it allows me to select the new primary DC from the list, but then gives me a warning about it will not be a automatically generated connection.

0
 

Accepted Solution

by:
rsnellman earned 0 total points
ID: 36516859
Wait...the North Site server just changed to the correct new primary DC.  Now the South Site server has changed, but does not have the correct new primary DC displayed yet.  I am confident that it will change soon enough.  Guess I need to be more patient and stop stressing out over nothing.

Thanks anyways.
0
 

Author Closing Comment

by:rsnellman
ID: 36541411
This is the answer.  Just needed to be patient and wait for KCC to do its magic.

Thanks.
0

Featured Post

DevOps Toolchain Recommendations

Read this Gartner Research Note and discover how your IT organization can automate and optimize DevOps processes using a toolchain architecture.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question