Help - Object Collision of domain names
From: Hoa (Hoa_at_discussions.microsoft.com)
Date: 08/13/04
- Next message: Mark N.: "Native mode? How can you tell?"
- Previous message: Mark N.: "Re: FMSO roles on DC in child domain?"
- Next in thread: jabrandt_at_online.microsoft.com: "Re: Help - Object Collision of domain names"
- Reply: jabrandt_at_online.microsoft.com: "Re: Help - Object Collision of domain names"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 13 Aug 2004 07:07:01 -0700
Hello,
I have run into a problem of having object collisions of domain names that
is preventing me to delete a Domain Trust on a Windows 2000 domain so as I
can re-create it.
Currently the conflict arises from 2 separate domains, one based on Windows
2000 and the other on Windows 2003 AD. Due to a combination of events a
certain trust relationships were broken and needed to be recreated. However
in my rush I worked on a secondary DC of the Windows 2003 AD that was located
at a separate site. While this server was replicating the changes to the
primary site, our Netscreen device happened to filter out all outbound AD
traffic from the primary site. My secondary service in the 2nd site did not
receive the replication updates. At this time I'm guessing that multiple
object collisions occured during the Trust relationship delete/rebuilds. Now
I have a situation where on Windows 2000 AD I cannot remove a nonexisting
trust to the Windows 2003 whatsoever. Any help on recovering from this?
Here's what I get when I run support tools search.vbs.
C:\PROGRA~1\Support Tools>cscript search.vbs
"LDAP://toral02dc/dc=toralcast,dc=c
om" /C:"(CN=*\0ACNF:*)" /P:distinguishedName /S:SubTree
Microsoft (R) Windows Script Host Version 5.6
Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.
<LDAP://toral02dc/dc=toralcast,dc=com>;((CN=*\0ACNF:*));distinguishedName;SubTre
e
Finished the query.
Found 2 objects.
distinguishedName 1 = CN=toralcast.tesma.com\
CNF:fb9909cf-da49-4da9-9e2d-32b80b8e1459,CN=System,DC=toralcast,DC=com
distinguishedName 2 = CN=TCL$\
CNF:9d6f3e66-2d2a-4566-8010-23760ba0952c,CN=Users,DC=toralcast,DC=com
C:\PROGRA~1\Support Tools>
I get an Event ID error log #12292 in the Windows 2000 server DC.
Event Type: Error
Event Source: SAM
Event Category: None
Event ID: 12292
Date: 12/08/2004
Time: 1:47:44 PM
User: TORAL\TCL$
Computer: TORAL02DC
Description:
There are two or more objects that have the same account name attribute in
the SAM database. The Distinguished Name of the account is CN="TCL$
CNF:9d6f3e66-2d2a-4566-8010-23760ba0952c",CN=Users,DC=toralcast,DC=com.
Please contact your system administrator to have all duplicate accounts
deleted, but ensure that the original account remains. For computer
accounts, the most recent account should be retained. In all the other
cases, the older account should be kept.
Event Type: Error
Event Source: SAM
Event Category: None
Event ID: 12292
Date: 12/08/2004
Time: 1:47:44 PM
User: S-1-5-21-646609525-2100453704-313593124-3790
Computer: TORAL02DC
Description:
There are two or more objects that have the same account name attribute in
the SAM database. The Distinguished Name of the account is
CN=TCL$,CN=Users,DC=toralcast,DC=com. Please contact your system
administrator to have all duplicate accounts deleted, but ensure that the
original account remains. For computer accounts, the most recent account
should be retained. In all the other cases, the older account should be
kept.
- Next message: Mark N.: "Native mode? How can you tell?"
- Previous message: Mark N.: "Re: FMSO roles on DC in child domain?"
- Next in thread: jabrandt_at_online.microsoft.com: "Re: Help - Object Collision of domain names"
- Reply: jabrandt_at_online.microsoft.com: "Re: Help - Object Collision of domain names"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
