RPC Traffic causing Domain Controller Synchronization issues

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Dmox (daryl.moxham_at_desire2learn.com)
Date: 06/02/04

  • Next message: Apollyon: "Re: Installing DC on 2 networks" 
    Date: Wed, 2 Jun 2004 13:25:08 -0700

    We've created a domain at our local site. We have
    recently setup a remote site with a Site to Site VPN and
    have tried to make a sub domain there. However, we
    cannot synchronize the domains. There are errors in the
    eventlog that are stating:

    AutoEnrollment.

    Automatic certificate enrollment for the local system
    failed to enroll for one Domain Certificate. The
    specified domain either does not exist or could not be
    contacted.

    Aswell as other Errors that specify that RPC is having an
    issue connecting.

    Basically our home office (Which we'll call SiteA) is
    trying to connect through a VPN to the Remote office
    (We'll call SiteB). I have verified over and over again
    that the VPN is not filtering RPC traffic (Or any other
    traffic for that matter).

    I have done a portqry -n <DC IP> -e 135 from SiteA and it
    fails to SiteB. However, if I do a portqry from SiteB to
    SiteA it works. If I do a portqry from another machine
    on SiteB to the Domain controller it succeeds.

    I have tried to DCPromo the machine back down to a member
    server, but it fails due to an RPC Connection error. I
    have tried changeing Sites and Services from RPC to IP
    but that doesn't help either (I think no matter what is
    chosen in Sites and Services some traffic is still sent
    over RPC).

    Is there a W32Time issue that would cause RPC Traffic to
    fail? Or any other troubleshooting steps that I could
    take to see what is causing the connection to fail? Any
    help would be greatly appreciated as I have exhausted all
    other options.

  • Next message: Apollyon: "Re: Installing DC on 2 networks"

    Relevant Pages