?
Solved

How to test a 2nd AD server

Posted on 2013-01-04
10
Medium Priority
?
322 Views
Last Modified: 2013-01-21
Hello - I recently enabled the AD role on a Windows 2003 server on our network, that currently has one primary 2003 AD server on it, and I need it to provide backup AD/LDAP services to the network.  I don't think it's working however, and am wondering how to test it to be sure that the AD services are working properly on the server.  I say this because my Cisco ASA firewall test to the LDAP services on the server are failing (when it tests ok to the primary server), and other applications seem to have trouble with things.  So - how do I verify AD is setup correctly and syncing with the primary server, and also what is the trick to setting up LDAP on it?  thanks
0
Comment
Question by:Damian_Gardner
  • 3
  • 2
  • 2
  • +2
10 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 38745553
Check replication with repadmin, run dcdiag, check your logs.    

The AD replication status tool is also a nice and fairly new tool you can use http://blogs.technet.com/b/askds/archive/2012/08/23/ad-replication-status-tool-is-live.aspx

Thanks

Mike
0
 
LVL 12

Expert Comment

by:aindelicato
ID: 38745554
open a command prompt and run DCDIAG
0
 

Author Comment

by:Damian_Gardner
ID: 38745561
hmm - it doesn't recognize the command.  it's making me think AD is not really running! but I do have all the AD tools and stuff...
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
LVL 12

Expert Comment

by:aindelicato
ID: 38745571
How did you install AD on it?

Did you run DCPROMO or just install the AD Tools ?
0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 38745588
run:
dcdiag /e /c /v /f:c:\dcdiag.log

check log for errors.
0
 
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38745611
Have you installed Windows Support tools..?
Unless you install those you wont be able to check the status of AD

Windows Server 2003 Service Pack 2 32-bit Support Tools - Microsoft
http://www.microsoft.com/en-in/download/details.aspx?id=15326
0
 

Author Comment

by:Damian_Gardner
ID: 38745613
I believe I enabled the role in Server Manager, and gave it the server CD when it asked for it.
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 38745619
Did you verify it is a DC, lots of ways (also look in the comments)

http://adisfun.blogspot.com/2012/07/is-it-domain-controller.html

Thanks

Mike
0
 
LVL 18

Accepted Solution

by:
Sarang Tinguria earned 2000 total points
ID: 38745639
If you find your server is not a DC then Look at below link and make sure you have performed all the steps

How to Install a Replica DC in an Existing AD Domain on Windows Server 2003
http://www.petri.co.il/how_to_install_active_directory_replica_on_windows_2003.htm
0
 

Author Closing Comment

by:Damian_Gardner
ID: 38803446
thanks for the help.  it's working now.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Understanding the various editions available is vital when you decide to purchase Windows Server 2012. You need to have a basic understanding of the features and limitations in each edition in order to make a well-informed decision that best suits …
The article explains the process to deploy a Self-Service password reset portal I developed a few years ago. Hopefully, it will prove useful to someone.  Any comments, bug reports etc. are welcome...
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

609 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question