alanterrill
asked on
Group Policy Replication Issue - can anyone help?
Hi all, we have two servers that replicate to each other at different sites, when I updated the server with a new group policy at point A, I get the following issue showing at point B. Can anyone help, error below:
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\chrisg>gpupdate
Updating Policy...
User Policy update has completed successfully.
Computer policy could not be updated successfully. The following errors were encountered:
The processing of Group Policy failed. Windows attempted to read the file \\smwh.local\sysvol\smwh.l
a) Name Resolution/Network Connectivity to the current domain controller.
b) File Replication Service Latency (a file created on another domain controller
has not replicated to the current domain controller).
c) The Distributed File System (DFS) client has been disabled.
To diagnose the failure, review the event log or run GPRESULT /H GPReport.html from the command line to access information about Group Policy results.
Can anyone help?
it's on a Server 2008R2, with Windows 7 machines.
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\chrisg>gpupdate
Updating Policy...
User Policy update has completed successfully.
Computer policy could not be updated successfully. The following errors were encountered:
The processing of Group Policy failed. Windows attempted to read the file \\smwh.local\sysvol\smwh.l
a) Name Resolution/Network Connectivity to the current domain controller.
b) File Replication Service Latency (a file created on another domain controller
has not replicated to the current domain controller).
c) The Distributed File System (DFS) client has been disabled.
To diagnose the failure, review the event log or run GPRESULT /H GPReport.html from the command line to access information about Group Policy results.
Can anyone help?
it's on a Server 2008R2, with Windows 7 machines.
ASKER
server A is: server1
server B is: telfordserver1
at site A where server A is, all workstations work with server A's group policy
at site B where server B is, all the workstations do not deploy server A's group policy however they are able to see it just not find the information
in sysvol on server B the GUID key for the GPO is not on server B, however it is on Server A
I did the above commands on the server B
errors did appear in DCDiag /v, what's the best way to show you this?
repadmin /replsum (results)
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\chrisg>repadmin /replsum
Replication Summary Start Time: 2015-03-05 16:28:23
Beginning data collection for replication summary, this may take awhile:
.......
Source DSA largest delta fails/total %% error
SERVER1 36m:25s 0 / 5 0
SHREWSEXCHANGE 32m:18s 0 / 10 0
TELFEXCHANGE 35m:29s 0 / 5 0
TELFORDSERVER1 28m:33s 0 / 10 0
Destination DSA largest delta fails/total %% error
SERVER1 32m:18s 0 / 5 0
SHREWSEXCHANGE 36m:25s 0 / 10 0
TELFEXCHANGE 28m:33s 0 / 10 0
TELFORDSERVER1 35m:30s 0 / 5 0
repadmin /showrepl (results)
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\chrisg>repadmin /showrepl
Repadmin: running command /showrepl against full DC localhost
Telford\TELFORDSERVER1
DSA Options: IS_GC
Site Options: (none)
DSA object GUID: bfda1b9a-abbb-46f1-88f4-07
DSA invocationID: 589af75e-4d33-4511-9e95-69
==== INBOUND NEIGHBORS ==========================
DC=smwh,DC=local
Telford\TELFEXCHANGE via RPC
DSA object GUID: 566caa47-2e21-4574-9e18-32
Last attempt @ 2015-03-05 16:32:32 was successful.
CN=Configuration,DC=smwh,D
Telford\TELFEXCHANGE via RPC
DSA object GUID: 566caa47-2e21-4574-9e18-32
Last attempt @ 2015-03-05 16:22:25 was successful.
CN=Schema,CN=Configuration
Telford\TELFEXCHANGE via RPC
DSA object GUID: 566caa47-2e21-4574-9e18-32
Last attempt @ 2015-03-05 15:52:54 was successful.
DC=ForestDnsZones,DC=smwh,
Telford\TELFEXCHANGE via RPC
DSA object GUID: 566caa47-2e21-4574-9e18-32
Last attempt @ 2015-03-05 15:52:54 was successful.
DC=DomainDnsZones,DC=smwh,
Telford\TELFEXCHANGE via RPC
DSA object GUID: 566caa47-2e21-4574-9e18-32
Last attempt @ 2015-03-05 15:52:54 was successful.
C:\Users\chrisg>
repadmin /bridgeheads (results)
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\chrisg>repadmin /bridgeheads
Repadmin: running command /bridgeheads against full DC localhost
Gathering topology from site Telford (TELFORDSERVER1.smwh.local
Bridgeheads for site Telford (TELFEXCHANGE.smwh.local):
Source Site Local Bridge Trns Fail. Time # Status
=============== ============== ==== ================= === =======
=
Default-First-Site-Name TELFEXCHANGE IP (never) 0 The ope
ration completed successfully.
smwh DomainDnsZones ForestDnsZones Configuration
Bridgeheads for site Default-First-Site-Name (Server1.smwh.local):
Source Site Local Bridge Trns Fail. Time # Status
=============== ============== ==== ================= === =======
=
Telford SHREWSEXCHANGE IP (never) 0 The ope
ration completed successfully.
smwh DomainDnsZones ForestDnsZones Configuration
server B is: telfordserver1
at site A where server A is, all workstations work with server A's group policy
at site B where server B is, all the workstations do not deploy server A's group policy however they are able to see it just not find the information
in sysvol on server B the GUID key for the GPO is not on server B, however it is on Server A
I did the above commands on the server B
errors did appear in DCDiag /v, what's the best way to show you this?
repadmin /replsum (results)
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\chrisg>repadmin /replsum
Replication Summary Start Time: 2015-03-05 16:28:23
Beginning data collection for replication summary, this may take awhile:
.......
Source DSA largest delta fails/total %% error
SERVER1 36m:25s 0 / 5 0
SHREWSEXCHANGE 32m:18s 0 / 10 0
TELFEXCHANGE 35m:29s 0 / 5 0
TELFORDSERVER1 28m:33s 0 / 10 0
Destination DSA largest delta fails/total %% error
SERVER1 32m:18s 0 / 5 0
SHREWSEXCHANGE 36m:25s 0 / 10 0
TELFEXCHANGE 28m:33s 0 / 10 0
TELFORDSERVER1 35m:30s 0 / 5 0
repadmin /showrepl (results)
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\chrisg>repadmin /showrepl
Repadmin: running command /showrepl against full DC localhost
Telford\TELFORDSERVER1
DSA Options: IS_GC
Site Options: (none)
DSA object GUID: bfda1b9a-abbb-46f1-88f4-07
DSA invocationID: 589af75e-4d33-4511-9e95-69
==== INBOUND NEIGHBORS ==========================
DC=smwh,DC=local
Telford\TELFEXCHANGE via RPC
DSA object GUID: 566caa47-2e21-4574-9e18-32
Last attempt @ 2015-03-05 16:32:32 was successful.
CN=Configuration,DC=smwh,D
Telford\TELFEXCHANGE via RPC
DSA object GUID: 566caa47-2e21-4574-9e18-32
Last attempt @ 2015-03-05 16:22:25 was successful.
CN=Schema,CN=Configuration
Telford\TELFEXCHANGE via RPC
DSA object GUID: 566caa47-2e21-4574-9e18-32
Last attempt @ 2015-03-05 15:52:54 was successful.
DC=ForestDnsZones,DC=smwh,
Telford\TELFEXCHANGE via RPC
DSA object GUID: 566caa47-2e21-4574-9e18-32
Last attempt @ 2015-03-05 15:52:54 was successful.
DC=DomainDnsZones,DC=smwh,
Telford\TELFEXCHANGE via RPC
DSA object GUID: 566caa47-2e21-4574-9e18-32
Last attempt @ 2015-03-05 15:52:54 was successful.
C:\Users\chrisg>
repadmin /bridgeheads (results)
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\chrisg>repadmin /bridgeheads
Repadmin: running command /bridgeheads against full DC localhost
Gathering topology from site Telford (TELFORDSERVER1.smwh.local
Bridgeheads for site Telford (TELFEXCHANGE.smwh.local):
Source Site Local Bridge Trns Fail. Time # Status
=============== ============== ==== ================= === =======
=
Default-First-Site-Name TELFEXCHANGE IP (never) 0 The ope
ration completed successfully.
smwh DomainDnsZones ForestDnsZones Configuration
Bridgeheads for site Default-First-Site-Name (Server1.smwh.local):
Source Site Local Bridge Trns Fail. Time # Status
=============== ============== ==== ================= === =======
=
Telford SHREWSEXCHANGE IP (never) 0 The ope
ration completed successfully.
smwh DomainDnsZones ForestDnsZones Configuration
ASKER
*here's the dxdiag, only the end part
dxdiag-test.txt
dxdiag-test.txt
in sysvol on server B the GUID key for the GPO is not on server B, however it is on Server A
Based on this comment your sysvol is not syncing properly. If you create a new GPO does it replicate to Server B?
You might have to do an authoritative restore of sysvol. Below is how to accomplish this.
http://support.microsoft.com/kb/2218556
Will.
ASKER
Hi Will, If I create a new GPO on Server A, it appears on group policy on server B but doesn't replicate sysvol
ASKER
Hi Will, Side note do I do the above restore of sysvol on Server A or Server B?
ASKER
Hi will can you help??
Follow the Non-Authoritative Restore section in this article.
http://support.microsoft.com/kb/290762
This is to be performed on the server that is NOT replicating those GPOs (the server where they are missing).
Once done - be patient. This will take a little while to iron itself out.
http://support.microsoft.com/kb/290762
This is to be performed on the server that is NOT replicating those GPOs (the server where they are missing).
Once done - be patient. This will take a little while to iron itself out.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Worked it out myself!
- repadmin /replsum
- repadmin /showrepl
- repadmin /bridgeheads
- DCDiag /v
Also does this happen to all machines? When you go into the sysvol folder / policies / do you see this GUID key for this GPO? What GPO is it? Have you checked the logs on the client machine for more details.
Will.