DFS Replication issue

DFS Replcation Issue..

I am facing DFS Replication issue in my domain environment.. here are my Domain Details   DC - Win 2016 Std, ADCs - Win 2012 Std & Win 2016 Std .
Please see attached error I am getting while I run   DFS replication health report.

Please suggest me.

Thanks,
Vijay.G
Capture.JPG
Vijay Kumar GajulaAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

MaheshArchitectCommented:
Attachment is missing

Can you check dfsr event logs on dcs
Vijay Kumar GajulaAuthor Commented:
Thanks for responding. Please see attached one.

Thanks
Capture.JPG
MaheshArchitectCommented:
So all DC's in report are 2016 dcs?
If yes, i guess sysvol is not replicated on those dcs
Can you run "net share" command on each problematic dc and ensure sysvol and net logon folders are shared or not
On PDC master and on one of the problematic dc pl run dcdiag /v from elevated command prompt and post output here
Big Business Goals? Which KPIs Will Help You

The most successful MSPs rely on metrics – known as key performance indicators (KPIs) – for making informed decisions that help their businesses thrive, rather than just survive. This eBook provides an overview of the most important KPIs used by top MSPs.

Vijay Kumar GajulaAuthor Commented:
Thanks for the reply, DC & One ADC is 2016std and other ADC is 2012 td. I can able to see netlogon & sysvol folders in all the servers.
Few months back we have transferred the FSMO Roles from Win 2012 to Win 2016 DC. and migrated to DFS.. Few months it worked well and facing sync now a days..
Please see attached reports for your reference and let me know do you need more on this.

Thanks.
dcdiag2016DC.txt
dcdiag2012ADC.txt
dcdiag2016ADC.txt
MaheshArchitectCommented:
OK you have advertising issue on 2012 server
Rest two servers are OK
As far as I see, there is problem with DFSR replication only across all 3 servers

can you post output of below command from elevated prompt on PDC to finalize our next action plan ?

dfsrmig /GetGlobalState
Vijay Kumar GajulaAuthor Commented:
Thanks for the prompt response.
I have advertising issue in all 3 servers... NETLOGON & SYSVOL is not getting reflected in all 3 servers. Earlier there were but not now.
Please see attached screenshot of DFSR Global State
Please let me know if need more information.

Thanks.
DFSRGlobalState.JPG
MaheshArchitectCommented:
OK
Are you able to locate contents of sysvol folder on all servers, or they are also missing? in that case chapter will be getting totally different, let me know.

If contents are available and only sysvol and netlogon shares are vanished, follow below process
you need to 1st do DFSR sysvol authoritative restore on server holding PDC master (Venus if I am not wrong)
After that you need to do DFSR sysvol non authoritative restore on other ADC servers
Please follow steps carefully as outlined in mine article below
https://www.experts-exchange.com/articles/17360/Active-Directory-DFSR-Sysvol-Authoritative-and-Non-Authoritative-Restore-Sequence.html

If you find article useful, please endorse it.
Vijay Kumar GajulaAuthor Commented:
Thanks for the reply.
I can able to see SYSVOL & NETLOGON in all the servers, but the content is different is in all three servers. They synced each other long back and now they are not synced...
Only this part is missing other than that other services are working in all the servers.
In this case can i do as aid above or do we have any other alternative way for that?
Thanks
MaheshArchitectCommented:
If contents have difference, then still you can follow procedure mentioned above, no other alternative is required.
Only thing check if how many policies you have in GPMC and how many folders you have corresponding to those GPO in sysvol / policies folder on each server
One GPO should resemble to one folder under policies
Folder under policies looks like GUID of GPO
The server where you get GPO and Folder count same, transfer your PDC master role to that server, force AD replication by running "repadmin /Syncall" command on all servers from elevated prompt, then run "netdom query fsmo" on all servers and ensure that output is same on all DCs
Now you can use procedure mentioned earlier to rebuild sysvol
Vijay Kumar GajulaAuthor Commented:
Thanks It Worked for me. Thanks a lot Mahesh.
MaheshArchitectCommented:
Has your issue resolved?
have you followed the dfsr restoration article?

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Vijay Kumar GajulaAuthor Commented:
yes it resolved by following your article...
MaheshArchitectCommented:
Sir, can you please endorse the article .....
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows 10

From novice to tech pro — start learning today.