Not sure of how to explain... I think its replication

[Ilene]

I have 3 domains in a forest. The toproot domain holds
the enterprise admin for the forest. It has a primary
zone in DNS. We will call it domain1.local.
I then have another domain in the forest called
domain2.local. Domain2.local has no enterprise admin and
is also a global cat. server. IT has a secondary DNS zone.
In this domain is my member server which will be exchange
2000.
Finally, I have a third domain - Domain3.local.
Domain3.local also has no enterprise admin but it a global
cat server too.

Now for the problem....

I'm trying to install exchange 2000 in domain2.local. ADC
is already connected, forest prep has been run at the
toproot - domain1.local and domainprep in domain2.local
and domain3.local. The administrator for forest prep is
the administrator for domain1.local. That administrator
from domain1.local is in the local administrator of
domain2.local and domain3.local as well as the member
server.

When I'm logged into domain2.local I can not install
exchange 2000 because of the error AD has not replicated
yet. But... When I log that same member server into
domain1.local in will install?

Anyone????

I have checked and rechecked and checked again. I can't
figure this one out.

It seems as if the enterprise admin/admin from
domain1.local is not being recoginized in domain2.local.
Is there a fix? if so how or how about an article or 2.

Anyone???? Anyone????

 

[Ace Fekay [MVP]]

In

I have 3 domains in a forest. The toproot domain holds
the enterprise admin for the forest. It has a primary
zone in DNS. We will call it domain1.local.
I then have another domain in the forest called
domain2.local. Domain2.local has no enterprise admin and
is also a global cat. server. IT has a secondary DNS zone.
In this domain is my member server which will be exchange
2000.
Finally, I have a third domain - Domain3.local.
Domain3.local also has no enterprise admin but it a global
cat server too.

Now for the problem....

I'm trying to install exchange 2000 in domain2.local. ADC
is already connected, forest prep has been run at the
toproot - domain1.local and domainprep in domain2.local
and domain3.local. The administrator for forest prep is
the administrator for domain1.local. That administrator
from domain1.local is in the local administrator of
domain2.local and domain3.local as well as the member
server.

When I'm logged into domain2.local I can not install
exchange 2000 because of the error AD has not replicated
yet. But... When I log that same member server into
domain1.local in will install?

Anyone????

I have checked and rechecked and checked again. I can't
figure this one out.

It seems as if the enterprise admin/admin from
domain1.local is not being recoginized in domain2.local.
Is there a fix? if so how or how about an article or 2.

Anyone???? Anyone????

Are you saying you have 3 trees in this forest?

This maybe an indication of replication. DCs communicate to each other by
looking up their services and locations in DNS. Since you have 3 trees, each
tree needs to have an _msdcs CNAME record for the forest root to be able to
"find" and communicate with the Schema Master for replication of that
partition along with the Config partition.

The best way is to possibly all point to one DNS server in the root from all
domains in the tree and see if that helps. If it does, then I would look at
your DNS infrastructure to redesign it to make it work globally. If using
your ISP;s DNS server in your IP properties, this can also cause numerous
problems.

Also, another issue with domain communication is NAT. NAT cannot translate
LDAP, RPC or Kerberos. Altered MTU settings in the routers (possibly to
optimize video conferencing), will cause problems with LDAP and thwart
communication.


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory