Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Replication!?!?! 2

Status
Not open for further replies.
jwilder

jwilder

IS-IT--Management
Mar 21, 2001
66
US
Can someone post on how to appropriately setup Directory Replication on my PDC's and BDC's?

I have my NT Logon Batch file and when I update it on the PDC, I need it on the BDC's. I thought I properly setup Replication through the Server Manager, but it doesn't seem to replicate. When users login, they seem to pull the Batch file that resides on the BDC, not the PDC, which is the old one and doesn't have the current changes.

I update the batch file on my PDC NETLOGON share (C:\Winnt\System32\Repl\Import\Scripts) and in the Server Manager set the Replication Directories to their default incoming and outgoing which basically pointed to the C:\Winnt\System32\Repl\Import & \Export Directories.

Am I missing something?

Thanks. Jason Wilder
IT/CAD Manager
"When I go, I want to go in my sleep like Grandpa. Not screaming in terror like his passengers."
 
Sort by date Sort by votes
First, you should be updating files in the export folder on the PDC. In the replication properties of the PDC the "To list should contain all domain controllers including the PDC. The "From list" should have the PDC. On the BDC, the replication properties should have "Do not export selected" and the "From list" should contain the PDC. You also need to make sure the Directory Replicator service is starting with an account that has appropriate permissions to all servers participating in the replication. I hope this helps.
 
Upvote 0 Downvote
Just a minor comment on what mcconmw said: In the "to" list on your PDC you can just specify the domain name, this will target all domain controllers in the domain. Similarly, you can specify the domain name in the "from" list on all the BDCs.

Makes it just a touch easier...:cool: - Bill

"You can get anything you want out of life, if you'll just help enough other people get what they want" - Zig Ziglar
 
Upvote 0 Downvote
You can also force the replication start, and check the files on BDC immidiately after, whether it worked or not.
 
Upvote 0 Downvote
Directory Replication is the process of replicating directories and their contents from one machine to one or more machines. The only machines that can be export servers are Windows NT Server machines. Import servers can be an NT server, NT workstation or OS/2 LAN Manager machine.

The main usage for Directory Replication is for the export of login scripts from the PDC to the BDC(s), where the PDC is the export server and the BDC the import server. This means when you login the BDC can also supply the login script as well as the authentication of the user, leaving the PDC free. This is the case that will be explained below.

You must add an account that will be used for the Directory Replication (i.e. Repuser). You cannot use the name Replicator as there is a user group of this name. Start User Manager for Domains (Start - Programs - Administrative Programs - User Manager for Domains)
From the User menu, select New User.
Name the user RepUser, with a full name and description. Set the password.
Unselect "User must change password at next logon" and select "Password never expires"
Click Groups and add to "Backup Operators" group
Click Hours and ensure the user has 24hours for all days
Close User Manager for Domains
The user has now been added to the domain, and the export server now needs to be configured

Logon to the Export Server machine, the Primary Domain Controller as an Administrator
From Control Panel click on Services
Select "Directory Replication" and click Startup. Select Automatic, and for "Log on as" click the "..." button and select the Repuser and click Add. Next type in the password for the Repuser that you set.
Click OK and a message &quot;User <domain>\Repuser has been granted the Logon as a Service right and added to the local Replicator local group&quot; will be displayed.
Close the Services Control Panel applet
Double click the &quot;Server&quot; Control Panel applet and click the Replication button
In the export by default it will show %systemroot%/system32/Repl/Export which is where login scripts should be held. Clear any entries in the Export or Import machine list.
Make sure &quot;Export Directories&quot; and &quot;Import Directories&quot; are checked, and close the Replication applet.
From the Services Control Panel Applet click on &quot;Directory Replication&quot; and click Start
Logoff of the PDC and logon to the BDC (or whatever the import machine)
Start the Services Control Panel Applet and as before enable the Replication Service to automatically start at reboot but do not manually start it now. (if it is started, stop it)
Start the Server Control Panel Applet and select Replication
Select &quot;Import Directories&quot; and check the list of machines to import from is blank
Click OK and it will start the &quot;Directory Replication&quot; service
You may be wondering why you should keep your login scripts in the export area, when your NETLOGON share is import/scripts, well it will actually replicate to itself from the export/scripts to import/scripts so they will be the same.

Some people have problems with replication and adding Repuser to the Domain Administrators group may fix the problem. Also only directories directly under the /export directory will be replicated, files will not be, they have to be in a subdirectory of export.

If you have problems you may also need to add an entry to the registry to allow the replicator service to access the remote registries. Open hkey_local_machine\system\currentcontrolset\control\securepipeservers\winreg\allowedpaths and add &quot;system\currentcontrolset\services\replicator&quot;
Peter Van Eeckhoutte
peter.ve@pandora.be

 
Upvote 0 Downvote
Thank you for that awesome info Peter. Looks like that's exactly what I need to do.

Thank you all for the information! Jason Wilder
IT/CAD Manager
&quot;When I go, I want to go in my sleep like Grandpa. Not screaming in terror like his passengers.&quot;
 
Upvote 0 Downvote
Ok, quick clarification.

Peter, you didn't specifically point it out in your directions, but do I also need to assign RepUser in the Service 'Directory Replicator' on the BDC and other machines also, since it is a domain account?

I followed your instructions to the letter, but the PDC only replicated to itself and not the other machines.

Thanks. Jason Wilder
IT/CAD Manager
&quot;When I go, I want to go in my sleep like Grandpa. Not screaming in terror like his passengers.&quot;
 
Upvote 0 Downvote
indeed, you need to run all replicator services on that RepUser account... Peter Van Eeckhoutte
peter.ve@pandora.be

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

amanua
  • Locked
  • Question
Event ID 13508 Sysvol replication problems
Replies
0
Views
126
amanua
amanua
sicute
  • Locked
  • Question
sybase replication server 15.7.1 in Microsoft Cluster
Replies
0
Views
58
sicute
sicute
Tabelas
  • Locked
  • Question
DFS - No replication option available
Replies
0
Views
68
Tabelas
Tabelas
acl03
  • Locked
  • Question
How to do 2008 r2 AD replication over a FW?
Replies
2
Views
117
acl03
acl03
DrB0b
  • Locked
  • Question
Replication Group error
Replies
1
Views
117
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top