Solved

Active Directory Domain Controller

Posted on 2014-09-17
3
102 Views
Last Modified: 2015-01-26
I found the following errors on our monitoring software zenos this morning, and am wondering how this issue could have occurred as well as best practice for correcting them.

"This is the replication status for the following directory partition on this directory server. Directory partition: DC=ForestDnsZones,DC=,DC=com This directory server has not recently received replication information from a number of directory servers. The count of directory servers is shown, divided into the following intervals. More than 24 hours: 3 More than a week: 3 More than one month: 3 More than two months: 2 More than a tombstone lifetime: 2 Tombstone lifetime (days): 60 Directory servers that do not replicate in a timely manner may encounter errors. They may miss password changes and be unable to authenticate. A DC that has not replicated in a tombstone lifetime may have missed the deletion of some objects, and may be automatically blocked from future replication until it is reconciled. To identify the directory servers by name, use the dcdiag.exe tool. You can also use the support tool repadmin.exe to display the replication latencies of the directory servers. The command is "repadmin /showvector /latency ".
0
Comment
Question by:cbarber22
3 Comments
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 40328437
how many DC's you have in your Forest? how many sites you have?
try repadmin /showrepl in any Dc and check replication ststus.
0
 

Author Comment

by:cbarber22
ID: 40328457
I just started at this business they have 5 DC/ with 3 sites.
0
 
LVL 35

Accepted Solution

by:
Seth Simmons earned 500 total points
ID: 40328777
did you run dcdiag and repadmin as stated in your first post?
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Issue: One Windows 2008 R2 64bit server on the network unable to connect to a buffalo Device (Linkstation) with firmware version 1.56. There are a total of four servers on the network this being one of them. Troubleshooting Steps: Connect via h…
A company’s centralized system that manages user data, security, and distributed resources is often a focus of criminal attention. Active Directory (AD) is no exception. In truth, it’s even more likely to be targeted due to the number of companies …
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question