syseng007
asked on
Active Directory 2003 High Replication
Hello experts,
We have a domain reporting very high replication traffic. Do you have any suggestions on what tool/s I could use to determine where or what source it is coming from?
Thank you!
We have a domain reporting very high replication traffic. Do you have any suggestions on what tool/s I could use to determine where or what source it is coming from?
Thank you!
check this technet article
http://technet.microsoft.com/en-us/library/cc772954%28v=ws.10%29.aspx
http://technet.microsoft.com/en-us/library/cc772954%28v=ws.10%29.aspx
ASKER
I actually meant what application is triggering the high replication.......thanks again.
If this is AD replication traffic, you may run in command-line on your DC this command
and you will see how much time the replication took and how many objects were replicated
Regards,
Krzysztof
repadmin /replsummaryand you will see how much time the replication took and how many objects were replicated
Regards,
Krzysztof
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
AD replication and application replication are two different terms
Because most of the applications use AD for authentication and few applications like MS Exchange adds attributes with values in AD that's get replicated across.
Are you talking about authentication traffic getting increased by AD integrated applications \ native AD authentication by users \ computers ?
If any application is storing data in AD application directory partitions, it can cause trigger replication, but I don't think it can create Hugh replication traffic because basic purpose of AD application directory partitions is to limit the replication traffic exposing to all DCs and its most probably static contents hopefully.
http://technet.microsoft.com/en-us/library/cc784421(v=ws.10).aspx
How big is you AD environment in terms of users \ computers \ and how frequently you change active directory objects by any AD integrated applications ?
Also what is the replication interval between all sites and what is the minimum bandwidth between sites?
You can also capture traffic form individual applications to AD with netmon, wireshark etc as suggest by Sandesh above
At a minimum, since you have 2003 active directory,
You need to raise your domain and forest functional level to windows 2003 to enable Linked Value replication (LVR), a technology established with 2003 AD to replicate incremental changes only as opposed to full replication occurring in windows 2000 domain
Increasing the forest functional level to Windows Server 2003 interim or higher does not modify the way that existing group members are stored or replicated. To do that, you must remove the members that were added to the group before the forest functional level was increased to Windows Server 2003 and then add them back again to the appropriate groups. Any group members that you either add or remove after the forest functional level is increased will be LVR enabled, even if the group contains other members that are not LVR enabled
Check below section in MS article for more information
Recommended Maximum Number of Users in a Group
Mahesh
Because most of the applications use AD for authentication and few applications like MS Exchange adds attributes with values in AD that's get replicated across.
Are you talking about authentication traffic getting increased by AD integrated applications \ native AD authentication by users \ computers ?
If any application is storing data in AD application directory partitions, it can cause trigger replication, but I don't think it can create Hugh replication traffic because basic purpose of AD application directory partitions is to limit the replication traffic exposing to all DCs and its most probably static contents hopefully.
http://technet.microsoft.com/en-us/library/cc784421(v=ws.10).aspx
How big is you AD environment in terms of users \ computers \ and how frequently you change active directory objects by any AD integrated applications ?
Also what is the replication interval between all sites and what is the minimum bandwidth between sites?
You can also capture traffic form individual applications to AD with netmon, wireshark etc as suggest by Sandesh above
At a minimum, since you have 2003 active directory,
You need to raise your domain and forest functional level to windows 2003 to enable Linked Value replication (LVR), a technology established with 2003 AD to replicate incremental changes only as opposed to full replication occurring in windows 2000 domain
Increasing the forest functional level to Windows Server 2003 interim or higher does not modify the way that existing group members are stored or replicated. To do that, you must remove the members that were added to the group before the forest functional level was increased to Windows Server 2003 and then add them back again to the appropriate groups. Any group members that you either add or remove after the forest functional level is increased will be LVR enabled, even if the group contains other members that are not LVR enabled
Check below section in MS article for more information
Recommended Maximum Number of Users in a Group
Mahesh
ASKER