Hi everyone,
I've looked in the FAQ's and searched to no avail. I have a small AD test NW setup at home: 2 Win2k dcs running GC, DHCP, DNS, etc., with 3 clients also running w2k. Everything is working good, except for an oddity. One of my DC's couldn't replicate a particular naming context to the other DC. It was weird, you would see connection objects for both servers in AD Sites & Services, repadmin /showreps would show both servers as replication partners (inbound and outbound), and repadmin /showconn would show the connection objects. Also, here is the event log for DC1:
Event Type: Information
Event Source: NTDS KCC
Event Category: Knowledge Consistency Checker
Event ID: 1308
Date: 1/27/2004
Time: 5:56:55 PM
User: N/A
Computer: DC1
Description:
The Directory Service consistency checker has noticed that 2 successive replication attempts with CN=NTDS Settings,CN=DC2,CN=Servers,CN=bigfirmHQ,CN=Sites,CN=Configuration,DC=bigfirm,DC=biz have failed over a period of 2842 minutes. The connection object for this server will be kept in place, and new temporary connections will established to ensure that replication continues. The Directory Service will continue to retry replication with CN=NTDS Settings,CN=DC2,CN=Servers,CN=bigfirmHQ,CN=Sites,CN=Configuration,DC=bigfirm,DC=biz; once successful the temporary connection will be removed.
Per the KB article on "TS-ing Intra-Site Replication" and looking at DNS I finally resolved the issue. There was no SRV record for DC2 on DC1, more specifically in the DNS console on DC1 the CNAME for DC2 (which had the GUID listed) was missing in the _msdcs folder. I added the record and the above error is gone now. I understand what is happening here and I see how much of a role the SRV records play, but I don't understand exactly what happens from reading the event message. Is DC1 trying to notify DC2 (as replication is notify/pull relationship) and cannot because of the missing SRV or has it notifed the neighboring DC and DC2 can't pull the update down? Or is it the other way around, meaning DC2 can notify DC1 that there is an AD update and DC1 can't get it from DC2? EventID had nothing listed unfortunately with regards to this error. Any help/insight into this is greatly appreciated!
Ed
I've looked in the FAQ's and searched to no avail. I have a small AD test NW setup at home: 2 Win2k dcs running GC, DHCP, DNS, etc., with 3 clients also running w2k. Everything is working good, except for an oddity. One of my DC's couldn't replicate a particular naming context to the other DC. It was weird, you would see connection objects for both servers in AD Sites & Services, repadmin /showreps would show both servers as replication partners (inbound and outbound), and repadmin /showconn would show the connection objects. Also, here is the event log for DC1:
Event Type: Information
Event Source: NTDS KCC
Event Category: Knowledge Consistency Checker
Event ID: 1308
Date: 1/27/2004
Time: 5:56:55 PM
User: N/A
Computer: DC1
Description:
The Directory Service consistency checker has noticed that 2 successive replication attempts with CN=NTDS Settings,CN=DC2,CN=Servers,CN=bigfirmHQ,CN=Sites,CN=Configuration,DC=bigfirm,DC=biz have failed over a period of 2842 minutes. The connection object for this server will be kept in place, and new temporary connections will established to ensure that replication continues. The Directory Service will continue to retry replication with CN=NTDS Settings,CN=DC2,CN=Servers,CN=bigfirmHQ,CN=Sites,CN=Configuration,DC=bigfirm,DC=biz; once successful the temporary connection will be removed.
Per the KB article on "TS-ing Intra-Site Replication" and looking at DNS I finally resolved the issue. There was no SRV record for DC2 on DC1, more specifically in the DNS console on DC1 the CNAME for DC2 (which had the GUID listed) was missing in the _msdcs folder. I added the record and the above error is gone now. I understand what is happening here and I see how much of a role the SRV records play, but I don't understand exactly what happens from reading the event message. Is DC1 trying to notify DC2 (as replication is notify/pull relationship) and cannot because of the missing SRV or has it notifed the neighboring DC and DC2 can't pull the update down? Or is it the other way around, meaning DC2 can notify DC1 that there is an AD update and DC1 can't get it from DC2? EventID had nothing listed unfortunately with regards to this error. Any help/insight into this is greatly appreciated!
Ed
