Solved

Active Directory Domain Controller

Posted on 2014-09-17
3
101 Views
Last Modified: 2015-01-26
I found the following errors on our monitoring software zenos this morning, and am wondering how this issue could have occurred as well as best practice for correcting them.

"This is the replication status for the following directory partition on this directory server. Directory partition: DC=ForestDnsZones,DC=,DC=com This directory server has not recently received replication information from a number of directory servers. The count of directory servers is shown, divided into the following intervals. More than 24 hours: 3 More than a week: 3 More than one month: 3 More than two months: 2 More than a tombstone lifetime: 2 Tombstone lifetime (days): 60 Directory servers that do not replicate in a timely manner may encounter errors. They may miss password changes and be unable to authenticate. A DC that has not replicated in a tombstone lifetime may have missed the deletion of some objects, and may be automatically blocked from future replication until it is reconciled. To identify the directory servers by name, use the dcdiag.exe tool. You can also use the support tool repadmin.exe to display the replication latencies of the directory servers. The command is "repadmin /showvector /latency ".
0
Comment
Question by:cbarber22
3 Comments
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 40328437
how many DC's you have in your Forest? how many sites you have?
try repadmin /showrepl in any Dc and check replication ststus.
0
 

Author Comment

by:cbarber22
ID: 40328457
I just started at this business they have 5 DC/ with 3 sites.
0
 
LVL 34

Accepted Solution

by:
Seth Simmons earned 500 total points
ID: 40328777
did you run dcdiag and repadmin as stated in your first post?
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Synchronize a new Active Directory domain with an existing Office 365 tenant
In-place Upgrading Dirsync to Azure AD Connect
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question