Re: Active Directory Replication Monitor can't open domaincontroller

Tech-Archive recommends: Fix windows errors by optimizing your registry

As long as the child dc's point to the dns server at the root this is fine.
Just make sure that all clients point to AD dns and the dns server forwards
external requests to your ISP's dns server.

--
Paul Bergson
MVP - Directory Services
MCT, MCSE, MCSA, Security+, BS CSci
2003, 2000 (Early Achiever), NT

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.

"Joris Kemperman" <jkemperman@xxxxxxxxxxxxxxxx> wrote in message
news:f2f041$sjn$1@xxxxxxxxxxxxxxxxxxxxxxxxxx
Paul, about the the dnslint command:

We've setup two DNS active directory intergrated servers in the
rootdomain, running domain.local.

The subdomaincontrollers have no DNS installed, all the subdomain DNS
records can be found when opening the DNS snapin, open the domain.local
domain and open the subdomain folder. Is this setup a problem?

Joris

"Paul Bergson [MVP-DS]" <pbergson@xxxxxxxxxxxxxxxxx> wrote in message
news:%23nSInZ7lHHA.4188@xxxxxxxxxxxxxxxxxxxxxxx
Do you have any errors in the event logs of any of your child domain
controllers?

Are there any firewalls between the domains?

DNS issues?
From child and root dc's, from a command prompt try running dnslint /ad
/s "ip address of your dc"

Description and download of DNSLint
http://support.microsoft.com/kb/321045


Run diagnostics against your Active Directory domains.

If you don't have the tools installed, install them from your server
install disk.
d:\support\tools\setup.exe

Run dcdiag, netdiag and repadmin in verbose mode.
-> DCDIAG /V /C /D /E /s:yourdcname > c:\dcdiag.log
-> netdiag.exe /v > c:\netdiag.log (On each dc)
-> repadmin.exe /showrepl dc* /verbose /all /intersite > c:\repl.txt

**Note: Using the /E switch in dcdiag will run diagnostics against ALL
dc's in the forest. If you have significant numbers of DC's this test
could generate significant detail and take a long time. You also want to
take into account slow links to dc's will also add to the testing time.

If you download a gui script I wrote it should be simple to set and run
(DCDiag and NetDiag). It also has the option to run individual tests
without having to learn all the switch options. The details will be
output in notepad text files that pop up automagically.

The script is located in the download section on my website at
http://www.pbbergs.com

Just select both dcdiag and netdiag make sure verbose is set. (Leave the
default settings for dcdiag as set when selected)

When complete search for fail, error and warning messages.



--
Paul Bergson
MVP - Directory Services
MCT, MCSE, MCSA, Security+, BS CSci
2003, 2000 (Early Achiever), NT

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no
rights.

"Joris Kemperman" <jkemperman@xxxxxxxxxxxxxxxx> wrote in message
news:f2elt4$kh5$1@xxxxxxxxxxxxxxxxxxxxxxxxxx
Hi everyone,

Hope someone knows what's going on...

Our setup:
1 root domain with 2 DC's incl. Global Catalog
4 Subdomains with every one of them one single DC+Global Catalog.
Forestlevel : 2003 navtive
Domanilevel: 2003 native

The thing is, once i open the Replication Monitor Tool and open one of
my root domaincontrollers, everything looks okay. Once i open a
domaincontroller in one of my subdomains, i receive an error message
indicating that "the server could not be found or your have insufficient
rights to read the status of that server".

I do have transitive trusts between the root domain and the subdomains,
for example: i can login with my root domain administrator account on
all subdomain servers.

Anyone here that can tell me what my problem is?

Many Regards,
Joris Kemperman







.

Relevant Pages

  • Re: What is CACHE.DNS file?
    ... By default, when DNS is running on a Windows 2000 domain controller, the ... root hints are read from Active Directory upon startup first. ... Does the above apply to Windows Server 2003 R2 configured as an AD ...
    (microsoft.public.windows.server.dns)
  • Re: What is CACHE.DNS file?
    ... It looks like DNS console root hints has up-to-date IP addresses while the ... addresses for root server B and L. ...
    (microsoft.public.windows.server.dns)
  • Re: DNS Root Hints Question
    ... I looked at the article and can confirm that there wasn't any root zone ... So there's no reference to the DNS servers provided by the ISP there - ... If I right click the server name and look at Properties Forwarders there ... Gregg suggested using the copy from server command in the root hints folder. ...
    (microsoft.public.windows.server.sbs)
  • Re: DNS Root Hints Question
    ... How To Remove the Root Zone ... What I meant is that the root hints are not needed for DNS lookups unless ... you have no DNS forwarders. ... Deleting your own server from root hints will kill the errors. ...
    (microsoft.public.windows.server.sbs)
  • Re: DNS migration in AD install
    ... everything is pointed for DNS to the existing box? ... So what happens with the existing non-AD DNS server between the time ... the AD root domain is installed and when the existing DNS server ... production domain's admin password cannot be changed due to production ...
    (microsoft.public.windows.server.migration)