soadmin
asked on
Server 2008 DNS, replication errors
Hello,
I have two servers that I inherited when I took this position. Around April 2012 there was a network change and since them, the servers have not replicated. I ran dcdiag and received errors as well as ran repadmin to see if there were issues and the primary does not show any replica data, nor does the secondary. Could the secondary have tombstoned? If so, should I demote it, then promote it again? I need to keep it the same name.
I'm having the network admins ensure all AD ports are open between the two subnets.
I can attach logs if needed.
Thanks,
I have two servers that I inherited when I took this position. Around April 2012 there was a network change and since them, the servers have not replicated. I ran dcdiag and received errors as well as ran repadmin to see if there were issues and the primary does not show any replica data, nor does the secondary. Could the secondary have tombstoned? If so, should I demote it, then promote it again? I need to keep it the same name.
I'm having the network admins ensure all AD ports are open between the two subnets.
I can attach logs if needed.
Thanks,
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
So It looks like I'll have to remove it from the domain. If so, when I log back into it, will it keep the AD administrator password?
You will set that during the forced removal, screenshots of the entire process
http://kpytko.pl/2011/08/30/decommissioning-broken-domain-controller/
Thanks
Mike
http://kpytko.pl/2011/08/30/decommissioning-broken-domain-controller/
Thanks
Mike
ASKER
If I have DFS running on both machines and it is working, do I need to do anything with that or just do the force removal, metadata cleanup, wait and then go back in and add the machine to the domain and DFS will start working again since that machine has the same name?
DFS should work there should be no issue.But if you are not promoting the DC then you need to point the DNS setting to online DNS DC.
Regarding the local administrator password it will ask in motion of dcpromo /forceremoval.See step 8:http://support.microsoft.com/kb/332199
Regarding the local administrator password it will ask in motion of dcpromo /forceremoval.See step 8:http://support.microsoft.com/kb/332199
ASKER
Do I need to clear out any entries in DNS that have that machine and IP, even if they say same as parent?
Please refer below link for the same how to perfrom metadata cleanup.
Reference link
Forcefull removal of DC: http://support.microsoft.com/kb/332199
Metadata cleanup: http://www.petri.co.il/delete_failed_dcs_from_ad.htm
Reference link
Forcefull removal of DC: http://support.microsoft.com/kb/332199
Metadata cleanup: http://www.petri.co.il/delete_failed_dcs_from_ad.htm
You have to forecefully demote faulty DC,followed by metadta cleanup and then promote the server back with same name and IP address.
See this
https://www.experts-exchange.com/questions/28180737/Active-directory-replication-problems.html
Hope this helps