Chuck- Try granting the "Replication Synchronization" right on the domain object (domainDNS class) that you want the user to be able to replicate. Note that this provides the synchronization right for just that domain NC. You'll have to do the same thing to the schema and config objects to delegate replication for them as well.
Darren -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Charles Carerros Sent: Tuesday, April 06, 2004 7:27 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] AD Replication Dear Group, This might seem like a dull question but I have not been able to find a good answer for it, so here goes. I was wondering if it is possible to use the delegate administration feature to give a non-admin the ability to force replication of an AD? Thus far, we have been unable to do this. The user has the ability to see everything in the sites and services plug in however they still get an access error when they attempt to force the replication. The error reads: "The following error occurred during the attempt to synchronize naming context domain.ad.local from domain control domaincontroler to domain controller domaincontroler2: Replication access was denied. This operation will not continue." Any suggestions? Thanks, Chuck -- Charles D. Carerros Systems Administrator Information Technology Office College of Letters and Science University of Wisconsin -- Milwaukee [EMAIL PROTECTED] List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
