• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 250
  • Last Modified:

Ad Master on windows 2003 not Sync

Hi All,

    Any body know how to sync AD Master Group Policy.

   Now I have 2 AD Master, When I'm create new group plicy on 1st Ad and Save It, The new policy did not sync to 2nd Server.

    Any body know tool how to let both server start sync each other ?

Thank in advance.
0
Simpson_STL
Asked:
Simpson_STL
  • 6
  • 3
1 Solution
 
Krzysztof PytkoActive Directory EngineerCommented:
PLease check if there is no replication error? Check on your DCs if you can access shares

\\servername\sysvol
\\servername\netlogon

run on your DC in command-line

dcdiag /c /v

and review output if there are no errors

Regards,
Krzysztof
0
 
Krzysztof PytkoActive Directory EngineerCommented:
oh, and one more hing, check if you have correct DNS settings on your Domain Controllers. There should be only internal DNS servers IP set up. ISP DNS should be in DNS forwarders section configured.

Please post unedited ipconfig /all from both DCs

How to configure forwarders, you will find here
http://support.microsoft.com/kb/323380

Krzysztof
0
 
Simpson_STLAuthor Commented:
Hi ISiek,

   Thank you for your comment,

as you said "Please post unedited ipconfig /all from both DCs"  I know both IP address and how to post unedited ipconfig /all to both DCs. Please advise.



0
NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

 
Krzysztof PytkoActive Directory EngineerCommented:
Log on to DC1 and in command-line run

ipconfig /all >c:\dc1.log

Log on to DC2 and in command-line run

ipconfig /all >c:\dc2.log

I would like to see DNS configuration for these DCs

Krzysztof
0
 
Simpson_STLAuthor Commented:
Hi ISiek,

  Please re-confirm for me, after I'm create group policy, Normally they will have policy file in  both master domain server right ?



 
0
 
Krzysztof PytkoActive Directory EngineerCommented:
Yup, during intrasite replication all DCs within the same Site replicated AD data and also GPOs, during intersite replication all other DCs from other Sites replicate AD data and GPOs.

Looks like there is problem with replication. Did you run dcdiag as I requested to see if there are no errors. What repadmin reported ?

What do you have set up as IP addresses of DNS on your DOmain Controller?

Thanks in advance for answer

Krzysztof
0
 
Simpson_STLAuthor Commented:
Hi iSidk,

     Just now I'm try repadmin /showreps .. all successultt at both server, should I try other parameter please advise.


   By the way, both DNs server hav they own dns, and also i'm forward dns on DS2 to DS1. is it collect ?

0
 
Krzysztof PytkoActive Directory EngineerCommented:
Yes it's correct :) OK, so for start with dcdiag. please run in command-line on a DC

dcdiag /q

and check if there are no errors

Krzysztof
0
 
Krzysztof PytkoActive Directory EngineerCommented:
If dcdiag will show taht there is problem with SYSVOL or/and NETLOGON share(s), you may try to rebuild it
http://support.microsoft.com/kb/315457

Krzysztof
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

  • 6
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now