Re: Adding additionl DC to existing windows 2003 Domain
- From: Mark <mark@xxxxxxxxxxx>
- Date: Thu, 2 Mar 2006 16:12:05 -0800
Paul is probably right in respect of the ports being blocked. This may not be
limited to a firewall though.
If your wan connection does not go through a firewall and only throught the
site routers, you may want to look at the access lists on the routers.
If you are routing through a firewall, you could use the firewall to monitor
the ports used and identify which rules are blocking the traffic.
if you can, test the tool as suggested from a client at the far end. If you
dont want to use third part y tools and the distance between sites is not to
great then you could always do dc promo from the hub and re-instate the new
DC in the remote site. then use the MS replmon tool to monitor ad
replication. check out the other tools such as dcdiag.
Make sure to create the other site in AD sites and services if it has not
already been done.
Mark
"Paul Bergson" wrote:
Read the article Firewall Ports needed for Replication off of the articles.
link at
http://www.pbbergs.com
My guess is you don't have all the ports opened, there is a tool in this
document that will guide you to test if this is all correctly setup.
Excerpt below:
Download PortQryUI and run the tool
Select the destination DC or PDC
Select Domains and Trusts
Validate the ports that should be open in fact are
via the output provided by the tool.
For additional info on this tool see
PortQry features, this is the backend tool for PortQryUI
--
Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA
http://www.pbbergs.com
This posting is provided "AS IS" with no warranties, and confers no rights.
"Simon Glencross" <simon.glencross@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:%23aDjoxjPGHA.3984@xxxxxxxxxxxxxxxxxxxxxxx
I have been following the Documentation on this site trying to add and
additional Windows 2k3 dc to an existing domain which has one of there
Windows 2k3 DC.
The primary server being the existing Windows 2k3 dc is located on a
network whilst the new DC is located on a wan (VPN). I have setup the dns
ect and this all seems to be fine, I can see the servers from either side
and ping them by name. I have added the new windows 2003 server to the
domain but when I try and undcpromo /adv I get the following error.....
The Error which I am receving is as follows...
Active Directory could not create the NTDS Settings object for this domain
controller CN=NTDS
Settings,CN=LAKEBACKUP1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=lakesidehotel,DC
=co,DC=uk on the remote domain controller
lakesideserver.lakesidehotel.co.uk. Ensure the provided network
credentials have sufficient permissions.
"Could not find the domain controller for this domain."
I have made sure that the administrator account on the exisitng DC has
domain Admin right and it has full rights but still I recieve the above
error.
The error states " Could not find the domain controller for this Domain"
although I can ping it from the remote Win 2k3 server and vice versur.
Does anyone have any ideas or advice?
Thank you in advance!
- References:
- Adding additionl DC to existing windows 2003 Domain
- From: Simon Glencross
- Re: Adding additionl DC to existing windows 2003 Domain
- From: Paul Bergson
- Adding additionl DC to existing windows 2003 Domain
- Prev by Date: Re: Apply user GPO on certain machines
- Next by Date: Re: Aging with AdamSync.exe
- Previous by thread: Re: Adding additionl DC to existing windows 2003 Domain
- Next by thread: Re: Adding additionl DC to existing windows 2003 Domain
- Index(es):
Relevant Pages
|
Loading
