VMwareParticipantApril 17, 2017 at 12:09 am #166967
i am using windows small business server 2008 as domain controller. users changed password is not replicating in client machines. i have notice eventlog error 1864 in the server. i have one unused ad SVRWIN01 which i have not used is this the reason for the issue. below is the error log. Kindly please help
This is the replication status for the following directory partition on this directory server.
This directory server has not recently received replication information from a number of directory servers. The count of directory servers is shown, divided into the following intervals.
More than 24 hours:
More than a week:
More than one month:
More than two months:
More than a tombstone lifetime:
Tombstone lifetime (days):
Directory servers that do not replicate in a timely manner may encounter errors. They may miss password changes and be unable to authenticate. A DC that has not replicated in a tombstone lifetime may have missed the deletion of some objects, and may be automatically blocked from future replication until it is reconciled.
To identify the directory servers by name, use the dcdiag.exe tool.
You can also use the support tool repadmin.exe to display the replication latencies of the directory servers. The command is “repadmin /showvector /latency
“.April 17, 2017 at 2:07 am #389508
i have 2 dc.one DC is not using. the server is completely shutdown.April 17, 2017 at 3:10 am #245624
If the server is shutdown this will affect replication.
How long as the server been shutdown? Was it decomissioned or failed? Was it cleanup correctly from AD? Will the server be brought back online?April 17, 2017 at 3:18 am #389509
server decomissioned. could you please help me how to cleanup from AD completely. i am using windows SBS Server 2008.April 17, 2017 at 3:21 am #245625
Search the Petri site for Metadata cleanup.
You MUST ensure that the server is never brought back online.May 2, 2017 at 12:25 am #389510
i followed the steps told by petri sir in our site https://www.petri.com/delete_failed_dcs_from_ad. i have completed all the steps upto 22. in 23 step told that
- Remove the CNAME record in the _msdcs.root domain of forest zone in DNS. You should also delete the HOSTNAME and other DNS records. but there is not delete option is appearing in my dc when i am trying to delete record. Please find the attached screenshot.
JeremyWModeratorMay 2, 2017 at 11:07 am #271476
For Name Server records Windows DNS controls those through the properties page. So open the properties and remove the server from there.May 3, 2017 at 12:21 am #389511
Thanks. i have deleted the DNS records also. but still if i creating a new user it is adding into the removed DC. exchange mailbox creating in the removed DC. how to fix this. please help
JeremyWModeratorMay 3, 2017 at 8:51 am #271479
Can you post some screen shots? I don’t know how it would be “adding into the removed DC.”May 11, 2017 at 4:36 am #389512
@jeremey @ wullieb1 it is fixed now. now i am facing another issue. if user want to change the password from his machine getting below error
configuration information could not be read from the domain controller either because the machine is unavailable or access has been denied
Please help me to fix this.
You must be logged in to reply to this topic.