Re: NTDS Replication Event ID 1083/1955
- From: "Paul Bergson [MVP-DS]" <pbbergs@xxxxxxxxxxxxxxx>
- Date: Wed, 4 Feb 2009 13:14:40 -0600
Not sure why it won't pick up the next RID pool but you still haev over 500 RID's so you are not in any immediate danger.
Have you noticed any error messages in the event logs on the dc - S1?
From S1 at a command prompt run the following:
repadmin.exe /showrepl s1 /verbose
--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup This
posting is provided "AS IS" with no warranties, and confers no rights.
"Dudley" <Dudley@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:8240237B-D010-4448-AAB5-8C0A741A57E5@xxxxxxxxxxxxxxxx
Paul,
Here are the netdiag results. The dcdiag results are in my last post:
FROM S1
.......................................
Computer Name: S3
DNS Host Name: S3.subdomain2.domain.local
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 15 Model 2 Stepping 5, GenuineIntel
List of installed hotfixes :
KB924667-v2
KB925398_WMP64
KB925902
KB927891
KB929123
KB930178
KB931784
KB932168
KB933729
KB933854
KB935839
KB935840
KB936021
KB936357
KB936782
KB938127
KB938127-IE7
KB938464
KB941569
KB941693
KB943055
KB943460
KB943485
KB944338-v2
KB944653
KB945553
KB946026
KB948496
KB948590
KB949014
KB950762
KB950974
KB951066
KB951072-v2
KB951698
KB951748
KB952069
KB952954
KB953838-IE7
KB953839
KB954211
KB954600
KB955069
KB955839
KB956390-IE7
KB956391
KB956802
KB956803
KB956841
KB957095
KB957097
KB958215-IE7
KB958644
KB960714-IE7
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection 2
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : S3
IP Address . . . . . . . . : 10.32.1.55
Subnet Mask. . . . . . . . : 255.255.0.0
Default Gateway. . . . . . : 10.32.1.1
Primary WINS Server. . . . : 10.96.1.10
Dns Servers. . . . . . . . : 10.96.1.41
10.96.1.10
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03>
'Messenger Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{E9902258-F0C2-4CA7-9726-A5D12710EF87}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation
Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Passed
PASS - All the DNS entries for DC are registered on DNS server
'10.96.1.41' and other DCs also have some of the names registered.
PASS - All the DNS entries for DC are registered on DNS server
'10.96.1.10' and other DCs also have some of the names registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{E9902258-F0C2-4CA7-9726-A5D12710EF87}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{E9902258-F0C2-4CA7-9726-A5D12710EF87}
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
FROM S3
.........................................
Computer Name: S1
DNS Host Name: S1.subdomain2.domain.local
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 6 Model 11 Stepping 1, GenuineIntel
List of installed hotfixes :
KB911564
KB923810
KB924667-v2
KB925398_WMP64
KB925902
KB927891
KB929123
KB930178
KB931784
KB931836
KB932168
KB933729
KB933854
KB935839
KB935840
KB936021
KB936357
KB936782
KB938127-IE7
KB938464
KB941569
KB941693
KB943055
KB943460
KB943485
KB944653
KB945553
KB946026
KB948496
KB948590
KB949014
KB950762
KB950974
KB951066
KB951072-v2
KB951698
KB951748
KB952069
KB952954
KB953838-IE7
KB953839
KB954211
KB954600
KB955069
KB955839
KB956390-IE7
KB956391
KB956802
KB956803
KB956841
KB957095
KB957097
KB958215-IE7
KB958644
KB960714-IE7
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : S1.subdomain1.domain.local
IP Address . . . . . . . . : 10.96.2.35
Subnet Mask. . . . . . . . : 255.255.0.0
Default Gateway. . . . . . : 10.96.1.1
Primary WINS Server. . . . : 10.96.1.10
Dns Servers. . . . . . . . : 10.96.1.41
10.96.1.10
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03>
'Messenger Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{C2CE289C-E2A3-4E47-BEC5-1EE3D569713B}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation
Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Passed
PASS - All the DNS entries for DC are registered on DNS server
'10.96.1.41' and other DCs also have some of the names registered.
PASS - All the DNS entries for DC are registered on DNS server
'10.96.1.10' and other DCs also have some of the names registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{C2CE289C-E2A3-4E47-BEC5-1EE3D569713B}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{C2CE289C-E2A3-4E47-BEC5-1EE3D569713B}
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Passed
Secure channel for domain 'Sub2' is to '\\S3.subdomain2.domain.local'.
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
--
Dudley
MCP, MCDST
"Paul Bergson [MVP-DS]" wrote:
That is why I have the disclaminer on the /e it will hit your enterprise
--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup This
posting is provided "AS IS" with no warranties, and confers no rights.
"Dudley" <Dudley@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:C7F7A736-0DCB-4EB0-A7E2-DD060677573D@xxxxxxxxxxxxxxxx
> Meinolf and Paul,
>
> I compiled the information you requested, but it is 240 pages long. Is
> there
> a limit to the size one post can be? Also, for security reasons I may > need
> to
> rename sites, DCs, and domains in the post. I'm don't want to > complicate
> things but I have security concerns about posting that amount of
> information
> about our internal network on an open forum.
>
> To answer Meinolf's question about resotred DCs or VM snapshots, there
> haven't been any restored DCs in the time that I have been the AD guy
> here.
> We did have a DC that was "misplaced" last summer during a move. That > DC
> has
> been recovered, but it was forcible removed from AD prior to it being
> found.
> There was a FSMO role that was seized from that DC. The DC was not
> reconnected to the network. That DC was in subdomain2, the same domain
> that
> now has the RID pool issue. The DC that is reporting the issue is not > the
> RID
> manager, but is one of the other DCs in subdomain2.
>
> Paul,
>
> We have two DNS servers one that is a DC in the forest root domain and > a
> second that is not a DC in subdomain1. On the non-DC DNS server there > was
> single instance of an error in the DNS server event log:
>
> Type: Error
> Event: 6525
> Date Time: 1/27/2009 8:29:25 AM
> Source: DNS
> ComputerName: W1
> Category: None
> User: N/A
> Description: A zone transfer request for the secondary zone > domain.local
> was refused by the master DNS server at 10.96.1.41. Check the zone at > the
> master server 10.96.1.41 to verify that zone transfer is enabled to > this
> server. To do so, use the DNS console, and select master server
> 10.96.1.41
> as the applicable server, then in secondary zone domain.local > Properties,
> view the settings on the Zone Transfers tab. Based on the settings you
> choose, make any configuration adjustments there (or possibly in the > Name
> Servers tab) so that a zone transfer can be made to this server.
>
> Any help is appreciated.
>
> Thanks
> -- > Dudley
> MCP, MCDST
>
>
> "Paul Bergson [MVP-DS]" wrote:
>
>> From one of the dc's in the child domain (Unless you did this already)
>> re-run dcdiag and netdiag
>>
>> Are there any messages in the dns event log in the child domain?
>>
>> -- >> Paul Bergson
>> MVP - Directory Services
>> MCTS, MCT, MCSE, MCSA, Security+, BS CSci
>> 2008, 2003, 2000 (Early Achiever), NT4
>>
>> http://www.pbbergs.com
>>
>> Please no e-mails, any questions should be posted in the NewsGroup >> This
>> posting is provided "AS IS" with no warranties, and confers no rights.
>>
>>
>> "Dudley" <Dudley@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
>> news:74DC10ED-43A1-4575-A50B-AF6E6F4EAD4E@xxxxxxxxxxxxxxxx
>> > Thanks for the help.
>> >
>> > Dcdiag revealed this in one of the child domains:
>> > * Warning :There is less than 13% available RIDs in the current pool
>> >
>> > and this for DNS:
>> >
>> > TEST: Dynamic update (Dyn)
>> > Warning: Dynamic update is enabled on the zone but >> > not
>> > secure domain.local
>> >
>> > Netdiag gave these warnings on all DCs (forest-wide):
>> >
>> > [WARNING] At least one of the <00> 'WorkStation Service', <03>
>> > 'Messenger
>> > Service', <20> 'WINS' names is missing.
>> >
>> > NetBT name test. . . . . . . . . . : Passed
>> > No NetBT scope defined
>> > [WARNING] You don't have a single interface with the <00>
>> > 'WorkStation
>> > Service', <03> 'Messenger Service', <20> 'WINS' names defined.
>> >
>> > DNSLint found all DCs and resolved IPs correctly.
>> >
>> > Replmon looked fine on all DCs.
>> >
>> > -- >> > Dudley
>> > MCP, MCDST
>> >
>> >
>> > "Paul Bergson [MVP-DS]" wrote:
>> >
>> >> Run diagnostics against your Active Directory domain.
>> >>
>> >> If you don't have the support tools installed, install them from >> >> your
>> >> server
>> >> install disk.
>> >> d:\support\tools\setup.exe
>> >>
>> >> Run dcdiag, netdiag and repadmin in verbose mode.
>> >> -> DCDIAG /V /C /D /E /s:yourdcname > c:\dcdiag.log
>> >> -> netdiag.exe /v > c:\netdiag.log (On each dc)
>> >> -> repadmin.exe /showrepl dc* /verbose /all /intersite > >> >> c:\repl.txt
>> >> -> dnslint /ad /s "ip address of your dc"
>> >>
>> >> **Note: Using the /E switch in dcdiag will run diagnostics against >> >> ALL
>> >> dc's
>> >> in the forest. If you have significant numbers of DC's this test >> >> could
>> >> generate significant detail and take a long time. You also want to
>> >> take
>> >> into
>> >> account slow links to dc's will also add to the testing time.
>> >>
>> >> If you download a gui script I wrote it should be simple to set and
>> >> run
>> >> (DCDiag and NetDiag). It also has the option to run individual >> >> tests
>> >> without
>> >> having to learn all the switch options. The details will be output >> >> in
>> >> notepad text files that pop up automagically.
>> >>
>> >> The script is located on my website at
>> >> http://www.pbbergs.com/windows/downloads.htm
>> >>
>> >> Just select both dcdiag and netdiag make sure verbose is set. >> >> (Leave
>> >> the
>> >> default settings for dcdiag as set when selected)
>> >>
>> >> When complete search for fail, error and warning messages.
>> >>
>> >> Description and download for dnslint
>> >> http://support.microsoft.com/kb/321045
>> >>
>> >>
>> >> -- >> >> Paul Bergson
>> >> MVP - Directory Services
>> >> MCTS, MCT, MCSE, MCSA, Security+, BS CSci
>> >> 2008, 2003, 2000 (Early Achiever), NT4
>> >>
>> >> http://www.pbbergs.com
>> >>
>> >> Please no e-mails, any questions should be posted in the NewsGroup
>> >> This
>> >> posting is provided "AS IS" with no warranties, and confers no >> >> rights.
>> >>
>> >>
>> >> "Dudley" <Dudley@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
>> >> news:FFEF3642-61A6-4DC9-8A01-02FD7B5BA820@xxxxxxxxxxxxxxxx
>> >> >I have a parent domain with 2 child domains. Several older DCs in >> >> >the
>> >> >child
>> >> > domains have two events in the system log and I'm not sure if >> >> > they
>> >> > are
>> >> > cause
>> >> > for alarm or not. The first event is:
>> >> >
>> >> > Type: Warning
>> >> > Event: 1083
>> >> > Date Time: 1/22/2009 12:33:02 PM
>> >> > Source: NTDS Replication
>> >> > ComputerName: DC1
>> >> > Category: Replication
>> >> > User: NT AUTHORITY\ANONYMOUS LOGON
>> >> > Description: Active Directory could not update the following >> >> > object
>> >> > with
>> >> > changes received from the domain controller at the following >> >> > network
>> >> > address
>> >> > because Active Directory was busy processing information. >> >> > Object:
>> >> > CN=JDoe,OU=employees,DC=subdomain1,DC=domain,DC=local Network
>> >> > address:
>> >> > cd5156a4-ac24-4933-aa26-bfcb778383dc._msdcs.domain.local This
>> >> > operation
>> >> > will be tried again later.
>> >> >
>> >> > The second event:
>> >> >
>> >> > Type: Information
>> >> > Event: 1955
>> >> > Date Time: 1/22/2009 12:33:02 PM
>> >> > Source: NTDS Replication
>> >> > ComputerName: DC1
>> >> > Category: Replication
>> >> > User: NT AUTHORITY\ANONYMOUS LOGON
>> >> > Description: Active Directory encountered a write conflict when
>> >> > applying
>> >> > replicated changes to the following object. Object:
>> >> > CN=JDoe,OU=employees,DC=subdomain1,DC=domain,DC=local Time in
>> >> > seconds:
>> >> > 0
>> >> > Event log entries preceding this entry will indicate whether or >> >> > not
>> >> > the
>> >> > update was accepted. A write conflict can be caused by
>> >> > simultaneous
>> >> > changes to the same object or simultaneous changes to other >> >> > objects
>> >> > that
>> >> > have
>> >> > attributes referencing this object. This commonly occurs when the
>> >> > object
>> >> > represents a large group with many members, and the functional >> >> > level
>> >> > of
>> >> > the
>> >> > forest is set to Windows 2000. This conflict triggered additional
>> >> > retries
>> >> > of
>> >> > the update. If the system appears slow, it could be because
>> >> > replication
>> >> > of
>> >> > these changes is occurring. User Action Use smaller groups >> >> > for
>> >> > this
>> >> > operation or raise the functional level to Windows Server 2003.
>> >> >
>> >> >
>> >> >
>> >> > The details say raise the level to Windows Server 2003, but it >> >> > has
>> >> > already
>> >> > been raised to that. In ever instance of this event that i have
>> >> > checked
>> >> > 1083
>> >> > is followed by 1955 and the time on both events is the same. The
>> >> > events
>> >> > only
>> >> > seem to appear on the old domain controllers (Pentium III's) that
>> >> > were
>> >> > upgraded from Windows 2000 several years ago. Any advice would be
>> >> > appreciated.
>> >> >
>> >> > Thanks
>> >> > -- >> >> > Dudley
>> >> > MCP, MCDST
>> >>
>> >>
>>
>>
.
- Follow-Ups:
- Re: NTDS Replication Event ID 1083/1955
- From: Dudley
- Re: NTDS Replication Event ID 1083/1955
- References:
- Re: NTDS Replication Event ID 1083/1955
- From: Paul Bergson [MVP-DS]
- Re: NTDS Replication Event ID 1083/1955
- From: Dudley
- Re: NTDS Replication Event ID 1083/1955
- From: Paul Bergson [MVP-DS]
- Re: NTDS Replication Event ID 1083/1955
- From: Dudley
- Re: NTDS Replication Event ID 1083/1955
- Prev by Date: Re: delegating Permissions
- Next by Date: Re: Windows 2008 Print Server GPO Problem
- Previous by thread: Re: NTDS Replication Event ID 1083/1955
- Next by thread: Re: NTDS Replication Event ID 1083/1955
- Index(es):
Relevant Pages
|
