Solved

Active Directory NTDS Settings and Connection objects missing

Posted on 2013-05-10
5
4,464 Views
Last Modified: 2013-05-12
We have a 2 datacenters and several remote sites. All domain controllers are server 2008 r2. It is a single domain forest. Our AD topology is setup like hub and spoke with half of all the remote sites replicating to each of the datacenter domain controllers. The two datacenters replicate to eachother every 15 minutes. The remote site <-> dc replication is set for every 30 min.

On of our sites is acting weird. Systems  at that site occasionally site that the trust relationship between the workstation and the primary domain failed.

In AD sites and services I see everything looks fine on the remote site DC. I see NTDS settings and automatically generated connection objects. On the Datacenter side I see NTDS settings is completely missing for the remote site, and ofcourse there are no connection objects.

I have tried a repladmin /kcc on both the datacenter domain controller and the remote site with success. I have rebooted both Domain controllers.

DCDiag /testreplications checks out on both domain controllers

Not sure how I fix the AD site and services objects though.
AD-Sites.png
0
Comment
Question by:bbcac
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 

Author Comment

by:bbcac
ID: 39154912
I just found out that the remote site DC is not in AD users and computers. I'm confused on my next steps now
0
 
LVL 13

Expert Comment

by:Jaihunt
ID: 39154933
Hi

What you mean the Remote site DC not in users and computers ? Did you mean you are not able to find the computer object of the remote site in your data center servers.? If yes  means you performed Meta data cleanup  since its 2008 server if you delete computer object of DC it will cleaned entirely from the domain. you need to rebuild the server and re promote it as DC.

The screenshot you provided is not helpful since you blacked everything..!!

Thanks
Jai
0
 

Author Comment

by:bbcac
ID: 39154949
Yes the remote site domain controller is not in AD users and computers.

I can't post pictures of my AD topology for security reasons. You can see in the picture that NTDS Settings is completely missing while the rest of the environment has them.
0
 
LVL 13

Accepted Solution

by:
Jaihunt earned 500 total points
ID: 39154959
No Issues, As i said earlier Meta data cleanup has been performed on the remote site. You need to rebuild the server and re promote it as DC.

http://technet.microsoft.com/en-us/library/cc816907%28v=ws.10%29.aspx
0
 

Author Comment

by:bbcac
ID: 39160192
perfect... thanks for your help, the DC is back up and running. Now I am having client machine account password issues

I have added a new question http://www.experts-exchange.com/Software/Server_Software/File_Servers/Active_Directory/Q_28125821.html
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question