Re: add a new 2003 server to domain as DC
- From: "Paulo" <frankbear@xxxxxxxxx>
- Date: 4 Aug 2005 12:41:01 -0700
Thanks Ulf,
nice to hear from you and tried hard to solve it again, but not much
progresses and get kind of desperate with this issue~~~~ have installed
a new 2k3 server but yes the problem stays, SYSVOL FRS gets no way to
work out...reported always event 13562 follows 13565(no popular 13508
error)(before and after forceremoval and cleanup), and the error string
%2 for 13562 is aleays empty:
------------------------------------
Event Type: Warning
Event Source: NtFrs
Event Category: None
Event ID: 13562
Date: 04.08.2005
Time: 20:29:37
User: N/A
Computer: BYRONBDC
Description:
Following is the summary of warnings and errors encountered by File
Replication Service while polling the Domain Controller
byronbdc.mydomain.net for FRS replica set configuration information.
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
------------------------------------
besides, with "ntfrsutl ds" I got some vaules not sure for SYSVOL Set:
---------------------------------------
SET: DOMAIN SYSTEM VOLUME (SYSVOL SHARE)
DN : cn=domain system volume (sysvol share),cn=file replication
service,cn=system,dc=mydomain,dc=com
Guid : fbee5e0d-4b8f-4cf0-b90025f0b27ad29f
Type : (null)
Primary Member: (null)
File Filter : (null)
Dir Filter : (null)
FRS Flags : (null)
WhenCreated : 7/31/2005 21:15:49 W. Europe Standard Time W.
Europe Daylight Time [-60]
WhenChanged : 7/31/2005 21:21:7 W. Europe Standard Time W.
Europe Daylight Time [-60]
---------------------------------------
are all these "(null)"s kind of correct? otherwise, only error output I
can found with all kinds of diagnose tools, is still that line with
"dcdiag /v /c /a":
---------------------------------------
Starting test: VerifyEnterpriseReferences
LDAP Error 0x5e (94) - No result present in message.
......................... BYRONBDC failed test
VerifyEnterpriseReferences
---------------------------------------
no clue here, what correct keys should be somewhere for
enterprisereferences? and with frsdiag tool, after removal there are
only those 13562 fails from FRS event log; when added server as new DC,
frsdiag on PDC reports a unknown domain controller comes from nowhere:
------------------------------------------------------------
FRSDiag v1.7 on 04.08.2005 21:13:28
..\byronbdc on 2005-08-04 at 21.13.28
------------------------------------------------------------
Checking for errors/warnings in FRS Event Log ....
NtFrs 04.08.2005 13:39:44 Warning 13562 Following is the summary of
warnings and errors encountered by File Replication Service while
polling the Domain Controller byronbdc.mydomain.net for FRS replica set
configuration information.
......... failed 1
Checking for errors in Directory Service Event Log ....
NTDS Replication 04.08.2005 21:01:21 Error 1411 Active Directory failed
to construct a mutual authentication service principal name (SPN) for
the following domain controller. Domain controller:
27a425d2-0b84-4f2e-9538-2d3992dedcf2._msdcs.mydomain.net The call
was denied. Communication with this domain controller might be
affected. Additional Data Error value: 8589 The DS cannot
derive a service principal name (SPN) with which to mutually
authenticate the target server because the corresponding server object
in the local DS database has no serverReference attribute.
WARNING: Found Directory Service Errors in the past 15 days! FRS
Depends on AD so Check AD Replication!
......... failed 1
------------------------------------------------------------
strange is that
27a425d2-0b84-4f2e-9538-2d3992dedcf2._msdcs.mydomain.net, I dont have
any GUID like that as domain controller, and nowhere can I find them in
ADSI entries or Users/Computers/Metadata cleanup, is there another
place could it hidding? on testsvr looks rather ok, except event 13562,
13565, and reported registry SysvolReady = 0 still. with sonar.exe it
reports both failed, "cannot read instance E:\sysvol\domain", but
repadmin /showrepl and repadmin /showconns report all good....????
very much nearly my last try, seems it is good time to stop and screw
my head deep into AD/replication, finally do some serious studies.
however, still wish to get some good advices, as to me, "learning by
doing" disaster-masters, maybe with some guidence suddenly comes all
the light behind the corner...:)
thanks and my best Regards,
Paulo
.
- References:
- Re: add a new 2003 server to domain as DC
- From: Paulo
- Re: add a new 2003 server to domain as DC
- From: Ulf B. Simon-Weidner [MVP]
- Re: add a new 2003 server to domain as DC
- From: Paulo
- Re: add a new 2003 server to domain as DC
- From: Ulf B. Simon-Weidner [MVP]
- Re: add a new 2003 server to domain as DC
- Prev by Date: Re: Upgrading my domain to Windows 2003
- Next by Date: Re: ADAM - SSO and provisioning considerations
- Previous by thread: Re: add a new 2003 server to domain as DC
- Next by thread: Re: add a new 2003 server to domain as DC
- Index(es):
Relevant Pages
|
