What is the actual value of user-account-control for the DC? Regards,
Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.com -----Original Message----- From: Michael Leone [mailto:[email protected]] Sent: Wednesday, February 24, 2010 12:21 PM To: NT System Admin Issues Subject: Re: Parent DC fails Trusted Machine Account test On Wed, Feb 24, 2010 at 11:32 AM, Michael B. Smith <[email protected]> wrote: > What does netdiag say? (I don't have 2000 ANYWHERE anymore, but there > should be a secure channel test.) Nothing that says FAIL or ERROR ... Trust relationship test. . . . . . : Passed Test to ensure DomainSid of domain 'ADS' is correct. Secure channel for domain 'ADS' is to '\\admnrdc002.ads.pha.phila.gov'. Secure channel for domain 'ADS' was successfully set to PDC emulator '\\admnrdc002.ads.pha.phila.gov'. > What DC is the secure channel set to? (netdom verify) The secure channel from ADMNRDC001 to the domain ADS.PHA.PHILA.GOV has been verified. The connection is with the machine \\ADMNRDC002.ADS.PHA.PHILA.GOV. > Are there any replication failures? (replmon/repadmin) There were I had a replication failures from a DC in the child domain, in another site, to this parent DC. I'm actually in the process of setting up a replacement child DC at that site now ... at this moment, there are no replication failures. Starting test: MachineAccount * ADMNRDC001 is not a server trust account * ADMNRDC001 is not trusted for account delegation ......................... ADMNRDC001 failed test MachineAccount Starting test: Services ......................... ADMNRDC001 passed test Services Starting test: OutboundSecureChannels ** Did not run Outbound Secure Channels test because /testdomain: was not entered ......................... ADMNRDC001 passed test OutboundSecureChannels Starting test: ObjectsReplicated ......................... ADMNRDC001 passed test ObjectsReplicated Starting test: frssysvol ......................... ADMNRDC001 passed test frssysvol Starting test: kccevent An Warning Event occured. EventID: 0x800004F1 Time Generated: 02/24/2010 12:14:22 (Event String could not be retrieved) An Warning Event occured. EventID: 0x800004F1 Time Generated: 02/24/2010 12:14:45 (Event String could not be retrieved) ......................... ADMNRDC001 failed test kccevent Those warnings are event ID: 1265 - could not replicate with a specific partner (the problem child DC I mentioned earlier). However, I just did a "repadmin /showreps" and it seemed to be replicating now. That's why I am going to replace it - replication to/from this one specific child DC seems flaky and unstable. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
