Roger, Yes, the box is pointing to a correct dc which is actually the PDC running very well and healthy SYSVOL structure. I have been waiting for more than a week for replication to happen but still the same, even the sysvol folder is not shared. I am attaching dcdiag log, I really dont know if i can attach dcdiag.txt. Appologies if thatz not allowed..
TIA,
Athif
-----Original Message-----
From: Rutherford, Robert [mailto:[EMAIL PROTECTED]]
Sent: Monday, 24 May 2004 3:54 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Sysvol Damaged
Can you also run a dcdiag and see if it runs clean? If it doesn't then paste the results here.
Rob
-----Original Message-----
From: Roger Seielstad [mailto:[EMAIL PROTECTED]]
Sent: 24 May 2004 13:39
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Sysvol Damaged
Is the box pointing to a known good DNS server (preferably to DC's in a known good site)?
How long are you waiting for replication to happen? I generally like to let them spin overnight if at all possible before worrying about whether its working correctly.
--------------------------------------------------------------
Roger D. Seielstad - MTS MCSE MS-MVP
Sr. Systems Administrator
Inovis Inc.
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, May 24, 2004 4:45 AM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Sysvol Damaged
Hi Folks,
I am having a problem with one of my Additonal Domain Controller, which is recently promoted. Actually,this is a newly promoted ADC via a wan link. I had to demote it first using dcpromo/forceremoval as it had problem and it was screwed.( http://support.microsoft.com/default.aspx?kbid=332199 ) Also, i had to delete netlogon.chg file in system root as it was corrupted and then after the reboot the system created the file succesfully..
I later used ADSIEDIT to clear the metabase succesfully. Now in this DC is fresly promoted as a new Additonal Domain controller againt thru the WAN Link, Now, I cant see anything id domain.com in sysvol and itz not shared too. Also, i had to delete netlogon.chg file in system root as it was corrupted and then after the reboot the system created the file succesfully..
How do rebuild the sysvol strucuture, Do I need to use "D2" "D4" Burflags.. I am afraid because I have more that 5 ADC in this site and 2-3 are connected via WAN Link. Or shuld I manually copy the sysvol structure from the GOOD SYSVOL STRUCUTE on another DC and try to restart NTFRS, like, I am really running out of ideas.
Can any one help me on this issue.
Regards,
Mohammed Athif Khaleel
Asst.Network Engineer
AlFaisaliah Group Information Technology
Tel.: +966-1-461-0077 x.209
Moble.: +966-509774015
Email: [EMAIL PROTECTED]
"Save Internet, Keep all the systems patched"
Web: http://alfaisaliah.com
-----------------------------------------------------
This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom/which they are addressed. If you have received this email in error please notify the system manager at the following email address: [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Al Faisaliah Group. Internet communications cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, arrive late or contain viruses. The sender therefore does not accept liability for any errors or omissions in the context of this message, which arise as a result of Internet transmission. Finally, the recipient should check this email and any attachments for the presence of viruses. Al Faisaliah Group accepts no liability for any damage caused by any virus transmitted by this email.
-----------------------------------------------------
DC Diagnosis Performing initial setup: * Verifing that the local machine SONYDC, is a DC. * Connecting to directory service on server SONYDC. * Collecting site info. * Identifying all servers. * Found 18 DC(s). Testing 1 of them. Done gathering initial info.
Doing initial non skippeable tests
Testing server: RiyadhSite\SONYDC
Starting test: Connectivity
* Active Directory LDAP Services Check
* Active Directory RPC Services Check
......................... SONYDC passed test Connectivity
Doing primary tests
Testing server: RiyadhSite\SONYDC
Starting test: Replications
* Replications Check
[Replications Check,AFGDC1] DsReplicaGetInfo(REPSTO) failed with error 8453,
Replication access was denied..
[Replications Check,AFGDC02] DsReplicaGetInfo(REPSTO) failed with error 8453,
Replication access was denied..
[Replications Check,AFGDC1] DsReplicaGetInfo(REPSTO) failed with error 8453,
Replication access was denied..
[Replications Check,AFGDC02] DsReplicaGetInfo(REPSTO) failed with error 8453,
Replication access was denied..
......................... SONYDC passed test Replications
Test omitted by user request: Topology
Test omitted by user request: CutoffServers
Starting test: NCSecDesc
* Security Permissions Check for
DC=riyadh,DC=afg,DC=com
* Security Permissions Check for
CN=Schema,CN=Configuration,DC=afg,DC=com
* Security Permissions Check for
CN=Configuration,DC=afg,DC=com
......................... SONYDC passed test NCSecDesc
Starting test: NetLogons
* Network Logons Privileges Check
......................... SONYDC passed test NetLogons
Starting test: Advertising
Warning: DsGetDcName returned information for \\ryd_dc3.riyadh.afg.com, when
we were trying to reach SONYDC.
Server is not responding or is not considered suitable.
The DC SONYDC is advertising itself as a DC and having a DS.
The DC SONYDC is advertising as an LDAP server
The DC SONYDC is advertising as having a writeable directory
The DC SONYDC is advertising as a Key Distribution Center
The DC SONYDC is advertising as a time server
......................... SONYDC failed test Advertising
Starting test: KnowsOfRoleHolders
Role Schema Owner = CN=NTDS
Settings,CN=AFGDC1,CN=Servers,CN=RiyadhSite,CN=Sites,CN=Configuration,DC=afg,DC=com
Role Domain Owner = CN=NTDS
Settings,CN=AFGDC1,CN=Servers,CN=RiyadhSite,CN=Sites,CN=Configuration,DC=afg,DC=com
Role PDC Owner = CN=NTDS
Settings,CN=DCWINS,CN=Servers,CN=RiyadhSite,CN=Sites,CN=Configuration,DC=afg,DC=com
Role Rid Owner = CN=NTDS
Settings,CN=DCWINS,CN=Servers,CN=RiyadhSite,CN=Sites,CN=Configuration,DC=afg,DC=com
Role Infrastructure Update Owner = CN=NTDS
Settings,CN=RYD_DC3,CN=Servers,CN=RiyadhSite,CN=Sites,CN=Configuration,DC=afg,DC=com
......................... SONYDC passed test KnowsOfRoleHolders
Starting test: RidManager
* Available RID Pool for the Domain is 14951 to 1073741823
* DCWINS.riyadh.afg.com is the RID Master
* DsBind with RID Master was successful
* rIDAllocationPool is 14451 to 14950
* rIDNextRID: 14453
* rIDPreviousAllocationPool is 14451 to 14950
......................... SONYDC passed test RidManager
Starting test: MachineAccount
* SPN found :LDAP/SONYDC.riyadh.afg.com/riyadh.afg.com
* SPN found :LDAP/SONYDC.riyadh.afg.com
* SPN found :LDAP/SONYDC
* SPN found :LDAP/SONYDC.riyadh.afg.com/RIYADH
* SPN found :LDAP/1a84d20b-d14d-407f-aae8-00694796ba33._msdcs.afg.com
* SPN found
:E3514235-4B06-11D1-AB04-00C04FC2DCD2/1a84d20b-d14d-407f-aae8-00694796ba33/riyadh.afg.com
* SPN found :HOST/SONYDC.riyadh.afg.com/riyadh.afg.com
* SPN found :HOST/SONYDC.riyadh.afg.com
* SPN found :HOST/SONYDC
* SPN found :HOST/SONYDC.riyadh.afg.com/RIYADH
* SPN found :GC/SONYDC.riyadh.afg.com/afg.com
......................... SONYDC passed test MachineAccount
Starting test: Services
* Checking Service: Dnscache
* Checking Service: NtFrs
* Checking Service: IsmServ
* Checking Service: kdc
* Checking Service: SamSs
* Checking Service: LanmanServer
* Checking Service: LanmanWorkstation
* Checking Service: RpcSs
* Checking Service: RPCLOCATOR
* Checking Service: w32time
* Checking Service: TrkWks
* Checking Service: TrkSvr
* Checking Service: NETLOGON
* Checking Service: Dnscache
Could not open IISADMIN Service on [SONYDC]:failed with 1060: The
specified service does not exist as an installed service.
* Checking Service: NtFrs
Could not open SMTPSVC Service on [SONYDC]:failed with 1060: The specified
service does not exist as an installed service.
......................... SONYDC failed test Services
Test omitted by user request: OutboundSecureChannels
Starting test: ObjectsReplicated
SONYDC is in domain DC=riyadh,DC=afg,DC=com
Checking for CN=SONYDC,OU=Domain Controllers,DC=riyadh,DC=afg,DC=com in
domain DC=riyadh,DC=afg,DC=com on 1 servers
Object is up-to-date on all servers.
Checking for CN=NTDS
Settings,CN=SONYDC,CN=Servers,CN=RiyadhSite,CN=Sites,CN=Configuration,DC=afg,DC=com in
domain CN=Configuration,DC=afg,DC=com on 1 servers
Object is up-to-date on all servers.
......................... SONYDC passed test ObjectsReplicated
Starting test: frssysvol
* The File Replication Service Event log test
Error: No record of File Replication System, SYSVOL started.
The Active Directory may be prevented from starting.
There are errors after the SYSVOL has been shared.
The SYSVOL can prevent the AD from starting.
An Warning Event occured. EventID: 0x800034FD
Time Generated: 05/24/2004 16:03:00
Event String: File Replication Service is initializing thesystem volume
with data from another domaincontroller. Computer SONYDC cannot become adomain
controller until this process is complete.The system volume will then be shared as
SYSVOL. To check for the SYSVOL share, at the commandprompt, type: net share When
File Replication Service completes theinitialization process, the SYSVOL share
willappear. The initialization of the system volume can takesome time. The time is
dependent on the amount ofdata in the system volume, the availability ofother domain
controllers, and the replicationinterval between domain controllers.
An Warning Event occured. EventID: 0x800034C4
Time Generated: 05/24/2004 16:05:31
Event String: The File Replication Service is having troubleenabling
replication from \\DCWINS.riyadh.afg.comto SONYDC for c:\winnt\sysvol\domain using
theDNS name \\DCWINS.riyadh.afg.com. FRS will keepretrying. Following are some of the
reasons you would seethis warning. [1] FRS can not correctly resolve the DNS
name\\DCWINS.riyadh.afg.com from this computer. [2] FRS is not running
on\\DCWINS.riyadh.afg.com. [3] The topology information in the ActiveDirectory for
this replica has not yet replicatedto all the Domain Controllers. This event log
message will appear once perconnection, After the problem is fixed you willsee another
event log message indicating that theconnection has been established.
An Warning Event occured. EventID: 0x800034C4
Time Generated: 05/24/2004 16:13:32
Event String: The File Replication Service is having troubleenabling
replication from DCWINS to SONYDC forc:\winnt\sysvol\domain using the DNS
nameDCWINS.riyadh.afg.com. FRS will keep retrying. Following are some of the reasons
you would seethis warning. [1] FRS can not correctly resolve the DNS
nameDCWINS.riyadh.afg.com from this computer. [2] FRS is not running on
DCWINS.riyadh.afg.com. [3] The topology information in the ActiveDirectory for this
replica has not yet replicatedto all the Domain Controllers. This event log message
will appear once perconnection, After the problem is fixed you willsee another event
log message indicating that theconnection has been established.
An Warning Event occured. EventID: 0x800034C4
Time Generated: 05/24/2004 16:14:17
Event String: The File Replication Service is having troubleenabling
replication from MEGA-DC1 to SONYDC forc:\winnt\sysvol\domain using the DNS
namemega-dc1.riyadh.afg.com. FRS will keep retrying. Following are some of the
reasons you would seethis warning. [1] FRS can not correctly resolve the DNS
namemega-dc1.riyadh.afg.com from this computer. [2] FRS is not running
onmega-dc1.riyadh.afg.com. [3] The topology information in the ActiveDirectory for
this replica has not yet replicatedto all the Domain Controllers. This event log
message will appear once perconnection, After the problem is fixed you willsee another
event log message indicating that theconnection has been established.
An Warning Event occured. EventID: 0x800034C4
Time Generated: 05/24/2004 16:14:40
Event String: The File Replication Service is having troubleenabling
replication from SAFISULAIDC1 to SONYDCfor c:\winnt\sysvol\domain using the DNS
namesafisulaidc1.riyadh.afg.com. FRS will keepretrying. Following are some of the
reasons you would seethis warning. [1] FRS can not correctly resolve the DNS
namesafisulaidc1.riyadh.afg.com from this computer. [2] FRS is not running
onsafisulaidc1.riyadh.afg.com. [3] The topology information in the ActiveDirectory
for this replica has not yet replicatedto all the Domain Controllers. This event log
message will appear once perconnection, After the problem is fixed you willsee another
event log message indicating that theconnection has been established.
An Warning Event occured. EventID: 0x800034C4
Time Generated: 05/24/2004 16:14:40
Event String: The File Replication Service is having troubleenabling
replication from RIY04-DC01 to SONYDCfor c:\winnt\sysvol\domain using the DNS
nameRIY04-DC01.riyadh.afg.com. FRS will keepretrying. Following are some of the
reasons you would seethis warning. [1] FRS can not correctly resolve the DNS
nameRIY04-DC01.riyadh.afg.com from this computer. [2] FRS is not running
onRIY04-DC01.riyadh.afg.com. [3] The topology information in the ActiveDirectory for
this replica has not yet replicatedto all the Domain Controllers. This event log
message will appear once perconnection, After the problem is fixed you willsee another
event log message indicating that theconnection has been established.
......................... SONYDC passed test frssysvol
Starting test: kccevent
* The KCC Event log test
An Warning Event occured. EventID: 0x800004F1
Time Generated: 05/24/2004 16:29:16
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x800004F1
Time Generated: 05/24/2004 16:29:39
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x800004F1
Time Generated: 05/24/2004 16:30:02
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x800004F1
Time Generated: 05/24/2004 16:30:25
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x800004F1
Time Generated: 05/24/2004 16:30:48
(Event String could not be retrieved)
......................... SONYDC failed test kccevent
Starting test: systemlog
* The System Event log test
An Error Event occured. EventID: 0x80001778
Time Generated: 05/24/2004 16:01:55
Event String: The previous system shutdown at 3:56:55 PM on5/24/2004 was
unexpected.
......................... SONYDC failed test systemlog
Running enterprise tests on : afg.com
Starting test: Intersite
Skipping site KhobarSite, this site is outside the scope provided by
the command line arguments provided.
Skipping site KharjSite, this site is outside the scope provided by
the command line arguments provided.
Skipping site JeddahSite, this site is outside the scope provided by
the command line arguments provided.
Skipping site RiyadhSite, this site is outside the scope provided by
the command line arguments provided.
......................... afg.com passed test Intersite
Starting test: FsmoCheck
GC Name: \\DCWINS.riyadh.afg.com
Locator Flags: 0xe00001fd
PDC Name: \\DCWINS.riyadh.afg.com
Locator Flags: 0xe00001fd
Time Server Name: \\DCWINS.riyadh.afg.com
Locator Flags: 0xe00001fd
Preferred Time Server Name: \\DCWINS.riyadh.afg.com
Locator Flags: 0xe00001fd
KDC Name: \\DCWINS.riyadh.afg.com
Locator Flags: 0xe00001fd
......................... afg.com passed test FsmoCheck
