RE: Windows 2003 Replication failes from forest root to 2nd DNS tree.
- From: Gautam Anand <Gautam Anand@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 24 Jun 2005 11:37:05 -0700
1. An access denied error message generally is the result of
a) a broken secure channel between the DCs
b) Time Snych issues (there can be a max of 5 mins diff in system time by
defaault - kerberos). Make sure time is in synch
c) Security rights like "Access the computer from the network" does not have
"Enterprise Domain Controllers in the list"
d) "Deny access to this computer from the network"
e) if you try to access the failing DCs or vice versa ie (from failing DCs
access good DCs) by start - run - \\fdqn of the falining DCs - this should
probably fail too.
Its probably not "c" or "D" cause you can access by \\netbios name.
If the times are ok between the DCs and you resetting the secure channel
doesnt fix the issue... please run the following tool and email me the
generated reports.
[
http://www.microsoft.com/downloads/info.aspx?na=46&p=5&SrcDisplayLang=en&SrcCategoryId=&SrcFamilyId=cebf3c7c-7ca5-408f-88b7-f9c79b7306c0&genscs=&u=http%3a%2f%2fdownload.microsoft.com%2fdownload%2fb%2fb%2f1%2fbb139fcb-4aac-4fe5-a579-30b0bd915706%2fMPSRPT_DirSvc.EXE ]
.
- References:
- Windows 2003 Replication failes from forest root to 2nd DNS tree.
- From: Darryl Paterson
- Windows 2003 Replication failes from forest root to 2nd DNS tree.
- Prev by Date: Re: How to remove attributes
- Next by Date: RE: SPN not unique
- Previous by thread: Windows 2003 Replication failes from forest root to 2nd DNS tree.
- Next by thread: Problems with active directory with two DC one win2000 srv & win20
- Index(es):
Relevant Pages
|
