RE: AD replication across firewall
From: adc (adc_at_discussions.microsoft.com)
Date: 01/10/05
- Next message: Marsha: "Re: Password never expires-can't force user to change password"
- Previous message: Joe Richards [MVP]: "Re: Password never expires-can't force user to change password"
- In reply to: Danilo Bordini [MVP]: "RE: AD replication across firewall"
- Next in thread: Danilo Bordini [MVP]: "RE: AD replication across firewall"
- Reply: Danilo Bordini [MVP]: "RE: AD replication across firewall"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 10 Jan 2005 07:47:01 -0800
hi danilo,
the replmon show replication is ok, but my policies folder under sysvol is
not synchronising. suspect its due to the access denied problem in event log,
or even dns problem.
i did the restart of netlogon service on all the DCs a few times but still
same
"Danilo Bordini [MVP]" wrote:
> Adc,
>
> You can use replmon.exe or repadmin.exe (Windows Support Tools - inside CD
> Windows 2000 installation) to verify if replication is working.
> Also, you need get _gc, _pdc srv records. You can stop and start again
> netlogon service on domain controller to "force" re-recreation of srv records.
>
> Danilo Bordini
>
> "adc" wrote:
>
> > hi,
> >
> > i hv a domain spanning across 2 sites, with firewalls at the boundaries of
> > both sites.
> > initially theres 1 DC each at each site, but bcos one of the DC is actually
> > doubling up as a apps server, hence i configured another DC on that site,
> > hoping to demote the original DC to become a member server.
> >
> > currently, i am using limited rpc method for AD replication across the
> > firewall for the DCs and hv configured the new added DC as the bridge head
> > server.
> >
> > however, i saw some error in the event logs stating some group policy access
> > denied error. i also discover the sysvol folder is not replicating correctly,
> > though replmon does show that replication is ok.
> >
> > question
> >
> > 1. how do i verify the the server logon shares (sysvol and netlogon) are
> > replicating correctly? if not how do i ensure the replication is successful?
> >
> > 2. how do i ensure if the GPO are replicated correctly?
> >
> > 3. is there a way to unshare the default sysvol folder and create a blank
> > copy for it to replicate?
> >
> > 4. in the _msdcs under DNS server, which are the entries required? currently
> > the new added server does not appear in the svr record. i did a telnet of
> > port 53 acoss the site and its ok.
> >
- Next message: Marsha: "Re: Password never expires-can't force user to change password"
- Previous message: Joe Richards [MVP]: "Re: Password never expires-can't force user to change password"
- In reply to: Danilo Bordini [MVP]: "RE: AD replication across firewall"
- Next in thread: Danilo Bordini [MVP]: "RE: AD replication across firewall"
- Reply: Danilo Bordini [MVP]: "RE: AD replication across firewall"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
