Solved

event ID 13516 NTFRS. DNS error 4015 on all new 2012 DCs that e introduced into 2003 environment.

Posted on 2015-02-16
9
152 Views
Last Modified: 2015-02-24
event ID 13516 NTFRS. DNS error 4015 on all new 2012 DCs that were introduced into 2003 environment.

Please help.
Do we need to do any additional migration/configuration steps for NTFRS? Let me know
0
Comment
Question by:creative555
  • 3
  • 3
  • 2
  • +1
9 Comments
 

Author Comment

by:creative555
ID: 40613046
DNSerrro.jpgNTfrsId13516.jpg
0
 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 40613797
0
 
LVL 77

Expert Comment

by:arnold
ID: 40613872
Once you add the fileshare service (add role services to fileserver role) that includes support for windows 2003 file services, this and the other errors should go away.

Windows 2003 uses NTFRS to replicate sysvol data. the 2008 and newer use DFSR to replicate sysvol data.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 36

Expert Comment

by:Mahesh
ID: 40614311
I never added support for 2003 file services explicitly for this to work
what is the domain and forest functional level of domain?

Also check if netlogon and sysvol is shared on new DC, I guess not
Also check if file replication service is started in auto mode on 2012 DC

You might try to force NTFRS replication
http://blogs.technet.com/b/justinturner/archive/2007/04/27/quick-tip-force-frs-replication.aspx

Else forcefully demote \ remove the 2012 servers from domain, clear out problem and again add new 2012 DCs
0
 
LVL 36

Expert Comment

by:Mahesh
ID: 40614393
You might be interested in solution provided in below thread

http://www.experts-exchange.com/Software/Server_Software/Active_Directory/Q_28618223.html
0
 
LVL 77

Expert Comment

by:arnold
ID: 40614410
Mahesh, note old DC in the example you posted is SBS 2011 (Server 2008) if I am not mistaken.
The issue the asker has here is the DC they have in this environment is Server 2003.  The sysvol is available seemingly through replication with other Server 2012s.
0
 
LVL 36

Expert Comment

by:Mahesh
ID: 40614923
I doubt if sysvol is available on 2012 DCs because I suspect that FRS service is not running as well

Only author can confirm
0
 
LVL 77

Accepted Solution

by:
arnold earned 500 total points
ID: 40614944
Mahesh, The asker has had various other questions on this topic which is how I have come to understand so much about the situation.

The person has multiple DC including 2012s of which this one was just added.
If this DC has a way to reach any of the other 2012 DCs the replication for sysvol could have occurred while the DNS service periodically throws the errors listed in this and other questions. Yes, the DNS zone could very well be current by the same process.
These errors could be sporatic when this 2012 DC contacts the 2003 DC for replication/etc. at which point these errors are generated, they could be intermittent, but show up daily or hourly.
0
 

Author Closing Comment

by:creative555
ID: 40629026
THank you so much!
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html?cid=Gene_Skyport) provided 218 attendees with a step-by-step guide for…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question