AD Replication error Please help

[Guest]

Hi, this is the problem I face it now. Originally there are two windows 2000 DC, and one NTServer running in the network. For some reason someone took NTServer offline without transfer the PDC mode. Now this is the problem, DC1 keeps getting NTDS replication error with NTServer, and it won’t talk to DC2. As result, I remove all NTServer records from ADSIEdit, and DNS server. Also, I verify that all DNS record for DC1, and DC2 are correct in both servers. However, I am getting NTDS replication errors in DC1’s event viewer

1
NTDS KCC Information: Event ID 1308: Directory Service Consistency checker has failed with DC

2:
NTDS Replication Warning: Event ID 1586: The checkpoint with the PDC was unsuccessful. … The error returned was: The RPC server is unavailable

I can run manual replication without any problem from DC1 to DC2. But I getting "Access is denied" when replicates from DC2 to DC1

Also these are my fsmo role, and GC is at DC2
C:\>netdom query fsm
Schema owner dc1.abc.co
Domain role owner dc1.abc.co
PDC role dc2.abc.co
RID pool manager dc2.abc.co
Infrastructure owner dc1.abc.co
The command completed successfully

Any suggestions or opinion are great appreciates. Thank

sl

 

[Guest]

I know this is out of the question, but the easiest, built a temp DC afterhours, move fsmo to tempdc, demote all other DCs if all else failed on last replication, do a force removal, ntds cleanup, and rebuilt both dcs

but in anycase... (i know you wont like my idea above ) repadmin /showreps does it shows which are the errors... what about dcdiag and netdiag?

 

[Cary Shultz [A.D. MVP]]

SL,

I am not sure how the WINNT 4.0 machine held any of the FSMO Roles. This is
not possible in a WIN2000 AD Environment. What exactly do you mean by
'transferring the PDC mode'?

I would suggest that you install the Support Tools ( sounds like you may
have done that already ) and do a Metadata Cleanup of the Active Directory.
I would also suggest that you clean up DNS.

For the record, was the WINNT 4.0 server a Backup Domain Controller? You
did not specifically mention this. This would be my guess.

Do all of your internal clients point to your Internal DNS Server(s)? What
is the DNS set up? Your first error is *typically* a networking error and
your second error is *typically* a DNS issue.

HTH,

Cary

Hi, this is the problem I face it now. Originally there are two windows

2000 DC, and one NTServer running in the network. For some reason someone
took NTServer offline without transfer the PDC mode. Now this is the
problem, DC1 keeps getting NTDS replication error with NTServer, and it won'
t talk to DC2. As result, I remove all NTServer records from ADSIEdit, and
DNS server. Also, I verify that all DNS record for DC1, and DC2 are correct
in both servers. However, I am getting NTDS replication errors in DC1's
event viewer.

1:
NTDS KCC Information: Event ID 1308: Directory Service Consistency checker has failed with DC2

2:
NTDS Replication Warning: Event ID 1586: The checkpoint with the PDC was

unsuccessful. . The error returned was: The RPC server is unavailable.

I can run manual replication without any problem from DC1 to DC2. But I

getting "Access is denied" when replicates from DC2 to DC1.