G
Guest
hi,
i've got a complicated issue and need help on it.first of
all, i want to mention that the cause may be a conflict of
name between a domain controller called DC1 and another
windows 2000 server machine in network called DC1 too.
once, i saw this problem i disconnect the machine with the
same name, however the domain controller was unable to
work correctly:
I.first the active directory doesn't work: i mean the mmc
console called "Active Directory users and computers"
could not open directory in the domain controller DC1.
II.second the exchange server installed on the same
machine ( i mean the domain controller DC1) is out of
service as it depends on Active Directory.
in such situation i proceed as follow:
1. i operate an authorative restore of the
subtree "cn=DC1,ou=domain controllers,dc=mydomain,dc=xxx"
using a backup of system state in the domain controller
DC1. after restoring and reboot, all seems to work in the
domain controller DC1.but, when i tried to create any
directory object in DC1 this object couldnot be replicated
to other domain controllers (which are
C2,DC3,DC4).
but when i created any object in Active directory in other
domain controllers(i mean DC2, DC3 and DC4) the
replication was ok between them and this object was
visible in DC1.
beside this i've got other problems with the four domain
controllers :
a.many mmc consoles couldn't open DC1 tree from other
domain controllers(i mean DC2, DC3 and DC4) like 'Active
Directory users and computers','sites and services'.in
this case, an error messages said the cible machine (that
is DC1) could not be contacted.
b.some shared folders in DC1 was not shared
like: 'sysvol' and 'netlogon'.
c.some mmc consoles were unable to open in all domain
controllers(i mean DC1,DC2,DC3 and DC4) like:'domain
controller security','domain security', 'groups strategy'.
2. after restoring (authoritative restore as mentioned
above) system state in DC1, i found on microsoft knowledge
base an article with number 248132, saying that
authorative restore of subtree
("cn=DC1,ou=domain controllers,dc=mydomain,dc=xxx") in all
domain controllers must be done. then i made the same
authorative restore procedure for another domain
controller DC2. after that, i made a replication
between DC2 an other domain controllers( i mean DC1, DC3
and Dc4) then the DC1 was seen as 'DOMAIN CONTROLLER' on
subtree "cn=DC1,ou=domain controllers,dc=mydomain,dc=xxx"
in all domain controllers.
3. next i made the same restoring procedure in another
domain controller DC3. Howerver, after this restoration
the state of DC3 become such as DC1 before DC1 was retored
( i mean same symptoms in DC3 as seen above : a., b., c.
and also replication between DC3 and other domain
controllers could not be done anymore).
--------------
i also want to mention some details that could be
important:
* the domain controller DC1 that first had problem
is 'the master of operations' in my domain having 5
principal roles.
* the backup of system state that i used to retore the
three domain controllers (DC1, DC2 and DC3) were not made
on same date. do you think that this difference could have
any impact on restoring of domain controllers? as you
know, i made authorative restore of only a subtree in
active directory (as mentionned above).
* i didn't achieve the procedure in microsoft
knowledge base an article with number 248132.i mean i
didn't make an authotive restore of the last domain
controller in my domain that is DC4.
if you have any idea about how to resolve this problem
please contact me as soon as possible because now there
are two domain controllers out of services (DC1 and DC3).
thanks in advance,
Houda
i've got a complicated issue and need help on it.first of
all, i want to mention that the cause may be a conflict of
name between a domain controller called DC1 and another
windows 2000 server machine in network called DC1 too.
once, i saw this problem i disconnect the machine with the
same name, however the domain controller was unable to
work correctly:
I.first the active directory doesn't work: i mean the mmc
console called "Active Directory users and computers"
could not open directory in the domain controller DC1.
II.second the exchange server installed on the same
machine ( i mean the domain controller DC1) is out of
service as it depends on Active Directory.
in such situation i proceed as follow:
1. i operate an authorative restore of the
subtree "cn=DC1,ou=domain controllers,dc=mydomain,dc=xxx"
using a backup of system state in the domain controller
DC1. after restoring and reboot, all seems to work in the
domain controller DC1.but, when i tried to create any
directory object in DC1 this object couldnot be replicated
to other domain controllers (which are
C2,DC3,DC4).but when i created any object in Active directory in other
domain controllers(i mean DC2, DC3 and DC4) the
replication was ok between them and this object was
visible in DC1.
beside this i've got other problems with the four domain
controllers :
a.many mmc consoles couldn't open DC1 tree from other
domain controllers(i mean DC2, DC3 and DC4) like 'Active
Directory users and computers','sites and services'.in
this case, an error messages said the cible machine (that
is DC1) could not be contacted.
b.some shared folders in DC1 was not shared
like: 'sysvol' and 'netlogon'.
c.some mmc consoles were unable to open in all domain
controllers(i mean DC1,DC2,DC3 and DC4) like:'domain
controller security','domain security', 'groups strategy'.
2. after restoring (authoritative restore as mentioned
above) system state in DC1, i found on microsoft knowledge
base an article with number 248132, saying that
authorative restore of subtree
("cn=DC1,ou=domain controllers,dc=mydomain,dc=xxx") in all
domain controllers must be done. then i made the same
authorative restore procedure for another domain
controller DC2. after that, i made a replication
between DC2 an other domain controllers( i mean DC1, DC3
and Dc4) then the DC1 was seen as 'DOMAIN CONTROLLER' on
subtree "cn=DC1,ou=domain controllers,dc=mydomain,dc=xxx"
in all domain controllers.
3. next i made the same restoring procedure in another
domain controller DC3. Howerver, after this restoration
the state of DC3 become such as DC1 before DC1 was retored
( i mean same symptoms in DC3 as seen above : a., b., c.
and also replication between DC3 and other domain
controllers could not be done anymore).
--------------
i also want to mention some details that could be
important:
* the domain controller DC1 that first had problem
is 'the master of operations' in my domain having 5
principal roles.
* the backup of system state that i used to retore the
three domain controllers (DC1, DC2 and DC3) were not made
on same date. do you think that this difference could have
any impact on restoring of domain controllers? as you
know, i made authorative restore of only a subtree in
active directory (as mentionned above).
* i didn't achieve the procedure in microsoft
knowledge base an article with number 248132.i mean i
didn't make an authotive restore of the last domain
controller in my domain that is DC4.
if you have any idea about how to resolve this problem
please contact me as soon as possible because now there
are two domain controllers out of services (DC1 and DC3).
thanks in advance,
Houda