Active directory not replicating one way
I have a single domain with 3 sites and multiple domain controllers. Two of the sites are not always used all year around and the VPN connection can sometimes be sketchy. I started noticing KCC errors on my DCs in my main office. I investigated and it seems that replication seems to be working everywhere except that "from" one of the remote DCs (running server 2003 x64 sp2) to all other DCs its not replicating. I removed lingering objects on that DC and modified the registry setting to "allow replication with divergent and corrupt partners". However, I am still getting errors in my logs that the partitions are not replicating. What else can I do, short of demoting are promoting again this DC?
Also Can you post the output of below commands from the domain Controller in question
dcdiag /qrepadmin /showrepl
did you manually authorize each domain controller to replicate ?
ASKER
according to the logs on one of the receiving DCs and it says the last successful replication was on 8/31/2010.
I ran the removal of all lingering objects on all 5 partitions. one of them showed that there were 2 lingering objects which it removed.
I ran the removal of all lingering objects on all 5 partitions. one of them showed that there were 2 lingering objects which it removed.
ASKER
The DCDIAG output is here:
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: ZoneII\ZII-SERVER-01
Starting test: Connectivity
......................... ZII-SERVER-01 passed test Connectivity
Doing primary tests
Testing server: ZoneII\ZII-SERVER-01
Starting test: Replications
......................... ZII-SERVER-01 passed test Replications
Starting test: NCSecDesc
......................... ZII-SERVER-01 passed test NCSecDesc
Starting test: NetLogons
......................... ZII-SERVER-01 passed test NetLogons
Starting test: Advertising
......................... ZII-SERVER-01 passed test Advertising
Starting test: KnowsOfRoleHolders
......................... ZII-SERVER-01 passed test KnowsOfRoleHolders
Starting test: RidManager
......................... ZII-SERVER-01 passed test RidManager
Starting test: MachineAccount
......................... ZII-SERVER-01 passed test MachineAccount
Starting test: Services
......................... ZII-SERVER-01 passed test Services
Starting test: ObjectsReplicated
......................... ZII-SERVER-01 passed test ObjectsReplicated
Starting test: frssysvol
......................... ZII-SERVER-01 passed test frssysvol
Starting test: frsevent
......................... ZII-SERVER-01 passed test frsevent
Starting test: kccevent
......................... ZII-SERVER-01 passed test kccevent
Starting test: systemlog
......................... ZII-SERVER-01 passed test systemlog
Starting test: VerifyReferences
......................... ZII-SERVER-01 passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : oorah
Starting test: CrossRefValidation
......................... oorah passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... oorah passed test CheckSDRefDom
Running enterprise tests on : oorah.local
Starting test: Intersite
......................... oorah.local passed test Intersite
Starting test: FsmoCheck
......................... oorah.local passed test FsmoCheck
the REPADMIN /SHOWREPL output is here:
repadmin running command /showrepl against server localhost
ZoneII\ZII-SERVER-01
DC Options: IS_GC
Site Options: (none)
DC object GUID: 7bba2d03-3962-4934-880c-1c
DC invocationID: 6ff6fa91-9bf3-41b6-a9a7-17
==== INBOUND NEIGHBORS ==========================
DC=oorah,DC=local
ZoneI\ZI-SERVER-01 via RPC
DC object GUID: 705ca1b0-50a9-4322-9bf6-4d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-TIMEFORC
DC object GUID: 05f4f28a-a4b0-4ed8-a374-3d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-SERVER2 via RPC
DC object GUID: 58e2415d-de42-4e53-bfaf-ac
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-DC1 via RPC
DC object GUID: c80cb2e7-e286-4688-acd5-f5
Last attempt @ 2012-08-22 10:48:41 was successful.
CN=Configuration,DC=oorah,
ZoneI\ZI-SERVER-01 via RPC
DC object GUID: 705ca1b0-50a9-4322-9bf6-4d
Last attempt @ 2012-08-22 10:48:38 was successful.
Main-Office\OORAH-TIMEFORC
DC object GUID: 05f4f28a-a4b0-4ed8-a374-3d
Last attempt @ 2012-08-22 10:48:38 was successful.
Main-Office\OORAH-SERVER2 via RPC
DC object GUID: 58e2415d-de42-4e53-bfaf-ac
Last attempt @ 2012-08-22 10:48:39 was successful.
Main-Office\OORAH-DC1 via RPC
DC object GUID: c80cb2e7-e286-4688-acd5-f5
Last attempt @ 2012-08-22 10:48:39 was successful.
CN=Schema,CN=Configuration
ZoneI\ZI-SERVER-01 via RPC
DC object GUID: 705ca1b0-50a9-4322-9bf6-4d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-TIMEFORC
DC object GUID: 05f4f28a-a4b0-4ed8-a374-3d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-SERVER2 via RPC
DC object GUID: 58e2415d-de42-4e53-bfaf-ac
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-DC1 via RPC
DC object GUID: c80cb2e7-e286-4688-acd5-f5
Last attempt @ 2012-08-22 10:48:41 was successful.
DC=DomainDnsZones,DC=oorah
ZoneI\ZI-SERVER-01 via RPC
DC object GUID: 705ca1b0-50a9-4322-9bf6-4d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-TIMEFORC
DC object GUID: 05f4f28a-a4b0-4ed8-a374-3d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-SERVER2 via RPC
DC object GUID: 58e2415d-de42-4e53-bfaf-ac
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-DC1 via RPC
DC object GUID: c80cb2e7-e286-4688-acd5-f5
Last attempt @ 2012-08-22 10:48:42 was successful.
DC=ForestDnsZones,DC=oorah
ZoneI\ZI-SERVER-01 via RPC
DC object GUID: 705ca1b0-50a9-4322-9bf6-4d
Last attempt @ 2012-08-22 10:48:43 was successful.
Main-Office\OORAH-TIMEFORC
DC object GUID: 05f4f28a-a4b0-4ed8-a374-3d
Last attempt @ 2012-08-22 10:48:43 was successful.
Main-Office\OORAH-SERVER2 via RPC
DC object GUID: 58e2415d-de42-4e53-bfaf-ac
Last attempt @ 2012-08-22 10:48:43 was successful.
Main-Office\OORAH-DC1 via RPC
DC object GUID: c80cb2e7-e286-4688-acd5-f5
Last attempt @ 2012-08-22 10:48:43 was successful.
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: ZoneII\ZII-SERVER-01
Starting test: Connectivity
......................... ZII-SERVER-01 passed test Connectivity
Doing primary tests
Testing server: ZoneII\ZII-SERVER-01
Starting test: Replications
......................... ZII-SERVER-01 passed test Replications
Starting test: NCSecDesc
......................... ZII-SERVER-01 passed test NCSecDesc
Starting test: NetLogons
......................... ZII-SERVER-01 passed test NetLogons
Starting test: Advertising
......................... ZII-SERVER-01 passed test Advertising
Starting test: KnowsOfRoleHolders
......................... ZII-SERVER-01 passed test KnowsOfRoleHolders
Starting test: RidManager
......................... ZII-SERVER-01 passed test RidManager
Starting test: MachineAccount
......................... ZII-SERVER-01 passed test MachineAccount
Starting test: Services
......................... ZII-SERVER-01 passed test Services
Starting test: ObjectsReplicated
......................... ZII-SERVER-01 passed test ObjectsReplicated
Starting test: frssysvol
......................... ZII-SERVER-01 passed test frssysvol
Starting test: frsevent
......................... ZII-SERVER-01 passed test frsevent
Starting test: kccevent
......................... ZII-SERVER-01 passed test kccevent
Starting test: systemlog
......................... ZII-SERVER-01 passed test systemlog
Starting test: VerifyReferences
......................... ZII-SERVER-01 passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : oorah
Starting test: CrossRefValidation
......................... oorah passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... oorah passed test CheckSDRefDom
Running enterprise tests on : oorah.local
Starting test: Intersite
......................... oorah.local passed test Intersite
Starting test: FsmoCheck
......................... oorah.local passed test FsmoCheck
the REPADMIN /SHOWREPL output is here:
repadmin running command /showrepl against server localhost
ZoneII\ZII-SERVER-01
DC Options: IS_GC
Site Options: (none)
DC object GUID: 7bba2d03-3962-4934-880c-1c
DC invocationID: 6ff6fa91-9bf3-41b6-a9a7-17
==== INBOUND NEIGHBORS ==========================
DC=oorah,DC=local
ZoneI\ZI-SERVER-01 via RPC
DC object GUID: 705ca1b0-50a9-4322-9bf6-4d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-TIMEFORC
DC object GUID: 05f4f28a-a4b0-4ed8-a374-3d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-SERVER2 via RPC
DC object GUID: 58e2415d-de42-4e53-bfaf-ac
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-DC1 via RPC
DC object GUID: c80cb2e7-e286-4688-acd5-f5
Last attempt @ 2012-08-22 10:48:41 was successful.
CN=Configuration,DC=oorah,
ZoneI\ZI-SERVER-01 via RPC
DC object GUID: 705ca1b0-50a9-4322-9bf6-4d
Last attempt @ 2012-08-22 10:48:38 was successful.
Main-Office\OORAH-TIMEFORC
DC object GUID: 05f4f28a-a4b0-4ed8-a374-3d
Last attempt @ 2012-08-22 10:48:38 was successful.
Main-Office\OORAH-SERVER2 via RPC
DC object GUID: 58e2415d-de42-4e53-bfaf-ac
Last attempt @ 2012-08-22 10:48:39 was successful.
Main-Office\OORAH-DC1 via RPC
DC object GUID: c80cb2e7-e286-4688-acd5-f5
Last attempt @ 2012-08-22 10:48:39 was successful.
CN=Schema,CN=Configuration
ZoneI\ZI-SERVER-01 via RPC
DC object GUID: 705ca1b0-50a9-4322-9bf6-4d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-TIMEFORC
DC object GUID: 05f4f28a-a4b0-4ed8-a374-3d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-SERVER2 via RPC
DC object GUID: 58e2415d-de42-4e53-bfaf-ac
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-DC1 via RPC
DC object GUID: c80cb2e7-e286-4688-acd5-f5
Last attempt @ 2012-08-22 10:48:41 was successful.
DC=DomainDnsZones,DC=oorah
ZoneI\ZI-SERVER-01 via RPC
DC object GUID: 705ca1b0-50a9-4322-9bf6-4d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-TIMEFORC
DC object GUID: 05f4f28a-a4b0-4ed8-a374-3d
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-SERVER2 via RPC
DC object GUID: 58e2415d-de42-4e53-bfaf-ac
Last attempt @ 2012-08-22 10:48:41 was successful.
Main-Office\OORAH-DC1 via RPC
DC object GUID: c80cb2e7-e286-4688-acd5-f5
Last attempt @ 2012-08-22 10:48:42 was successful.
DC=ForestDnsZones,DC=oorah
ZoneI\ZI-SERVER-01 via RPC
DC object GUID: 705ca1b0-50a9-4322-9bf6-4d
Last attempt @ 2012-08-22 10:48:43 was successful.
Main-Office\OORAH-TIMEFORC
DC object GUID: 05f4f28a-a4b0-4ed8-a374-3d
Last attempt @ 2012-08-22 10:48:43 was successful.
Main-Office\OORAH-SERVER2 via RPC
DC object GUID: 58e2415d-de42-4e53-bfaf-ac
Last attempt @ 2012-08-22 10:48:43 was successful.
Main-Office\OORAH-DC1 via RPC
DC object GUID: c80cb2e7-e286-4688-acd5-f5
Last attempt @ 2012-08-22 10:48:43 was successful.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
what do you mean when you say "did you manually authorize each domain controller to replicate ?"
are you referring to bridgeheads? connections? or something else?
are you referring to bridgeheads? connections? or something else?
ASKER
It doesn't hold any fsmo roles. I know that I can demote it and promote it again, my question is whether I can get it to start replicating without doing that?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Are you sure you got rid of all the lingering objects? (any errors in the logs)
Thanks
Mike