Re: NTDS Replication Event ID 1411
- From: Luca_D <LucaD@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 11 Jun 2008 02:17:01 -0700
Hi Paul,
thank you very much for your help, i run all of your tests and they were all
successfull, please check my reply to Jorge Silva for some interesting result
i got form the repadmin test.
It shows up the guid the event id is referring to.
I saved your "quick ad health check cli reference" for the future on all of
my DCs :)
Meanwhile i will re-run all tests during the next days.
Luca
"Paul Bergson [MVP-DS]" wrote:
Not sure what this error is.
Run diagnostics against your Active Directory domain.
If you don't have the support tools installed, install them from your server
install disk.
d:\support\tools\setup.exe
Run dcdiag, netdiag and repadmin in verbose mode.
-> DCDIAG /V /C /D /E /s:yourdcname > c:\dcdiag.log
-> netdiag.exe /v > c:\netdiag.log (On each dc)
-> repadmin.exe /showrepl dc* /verbose /all /intersite > c:\repl.txt
-> dnslint /ad /s "ip address of your dc"
**Note: Using the /E switch in dcdiag will run diagnostics against ALL dc's
in the forest. If you have significant numbers of DC's this test could
generate significant detail and take a long time. You also want to take
into account slow links to dc's will also add to the testing time.
If you download a gui script I wrote it should be simple to set and run
(DCDiag and NetDiag). It also has the option to run individual tests
without having to learn all the switch options. The details will be output
in notepad text files that pop up automagically.
The script is located on my website at
http://www.pbbergs.com/windows/downloads.htm
Just select both dcdiag and netdiag make sure verbose is set. (Leave the
default settings for dcdiag as set when selected)
When complete search for fail, error and warning messages.
Description and download for dnslint
http://support.microsoft.com/kb/321045
--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.
"Luca_D" <LucaD@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:308C426E-528D-4A0B-ADDF-02E10382D576@xxxxxxxxxxxxxxxx
Goodmorning,
our new Windows Server 2003 Domain Controller is showing this error in
Directory Service Event Viewer. I think that somewhere it's searching for
an
object that is not here anymore.
I looked in DNS, in ADU&C, ADS&S, ADD&T but it never shows up.
How can i find it ?
Thanks in advance for your replies.
Event Type: Error
Event Source: NTDS Replication
Event Category: DS RPC Client
Event ID: 1411
Date: 6/10/2008
Time: 8:46:41 AM
User: NT AUTHORITY\ANONYMOUS LOGON
Computer: ATSRV10
Description:
Active Directory failed to construct a mutual authentication service
principal name (SPN) for the following domain controller.
Domain controller:
65b718a0-92fc-45eb-8790-ab69fd63853a._msdcs.domain.local
The call was denied. Communication with this domain controller might be
affected.
Additional Data
Error value:
8589 The DS cannot derive a service principal name (SPN) with which to
mutually authenticate the target server because the corresponding server
object in the local DS database has no serverReference attribute.
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
- Follow-Ups:
- Re: NTDS Replication Event ID 1411
- From: Paul Bergson [MVP-DS]
- Re: NTDS Replication Event ID 1411
- References:
- Re: NTDS Replication Event ID 1411
- From: Paul Bergson [MVP-DS]
- Re: NTDS Replication Event ID 1411
- Prev by Date: Re: NTDS Replication Event ID 1411
- Next by Date: Re: NTDS Replication Event ID 1411
- Previous by thread: Re: NTDS Replication Event ID 1411
- Next by thread: Re: NTDS Replication Event ID 1411
- Index(es):
Relevant Pages
|
