AD replication issue through Transparent FW

Hi,
We have DC and DR sites in two different location and having transparent firewall in each site protecting server farm. We are facing some issue when start AD replication. As per Microsoft port analyser, it giving us tcp port 445 and 3268 is filtered, however we have allow full IP level between these servers on both ends firewalls and also remove some inspection such as DNS. Packet capture also taken but cant find any clue.
Appreciate if someone has faced this issue and advice how to resolve.

Hi,
Based on your description, we can check if there is _msdcs object left which is related to the 2003 server.
Regarding this issue, the following link can be referred to as reference.
test dcdiag fails delegation: missing (glue) record for removed host
http://www.servbit.com/1359_test-dcdiag-fails-delegation-missing-glue-record-for-removed-host.html
Please Note: Since the website is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
Regards,
Frank Shen

Similar Messages

  • Error while connecting oracle11g to sql server through transparent gateway

    Hello
    i'm facing this errors when i try to connect oracle 11g to sql server through transparent gateway:
    http://www.freeimagehosting.net/newuploads/d4454.jpg
    the directory for my db is : C:\oracle\product\11.1.0\db1
    and for the gateway: C:\oracle\product\11.1.0\dg4msql
    the configurations i used:
    gateway :
    tnsnames.ora:
    dg4msql =
    (DESCRIPTION=
    (ADDRESS=(PROTOCOL=tcp)(HOST=Kinda-PC)(PORT=1522))
    (CONNECT_DATA=(SID=dg4msql))
    (HS=OK)
    listener.ora:
    GATELIST =
    (DESCRIPTION_LIST =
    (DESCRIPTION =
    (ADDRESS = (PROTOCOL = TCP)(HOST = Kinda-PC)(PORT = 1522))
    (DESCRIPTION =
    (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC1522))
    SID_LIST_LISTENER =
    (SID_LIST =
    (SID_DESC =
    (PROGRAM = dg4msql)
    (SID_NAME = dg4msql)
    (ORACLE_HOME = C:\oracle\product\11.1.0\dg4msql)
    and for the oracle database :
    listener.ora
    LISTENER =
    (DESCRIPTION_LIST =
    (DESCRIPTION =
    (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC1521))
    (ADDRESS = (PROTOCOL = TCP)(HOST = Kinda-PC)(PORT = 1521))
    tnsnames.ora:
    DB1 =
    (DESCRIPTION =
    (ADDRESS = (PROTOCOL = TCP)(HOST = Kinda-PC)(PORT = 1521))
    (CONNECT_DATA =
    (SERVER = DEDICATED)
    (SERVICE_NAME = db1)
    gateway =
    (DESCRIPTION=
    (ADDRESS=(PROTOCOL=tcp)(HOST=Kinda-PC)(PORT=1522))
    (CONNECT_DATA=(SID=dg4msql)
    (HS=OK)
    thanks :)
    Edited by: 903043 on Dec 18, 2011 6:18 AM

    Did you go through the various steps in the doc?
    There is a gateway specific forum below;
    Heterogeneous Connectivity
    Cheers
    David

  • Goos  issue through MIGO based on work order problems

    Hi All,
    Can any one guide me how to overcome the error"Purchasinh Info record not found in purchasing organisation 2434" while doing Goods(consignment materials) Issue through MIGO transaction based on work order. How to create the Purchase Info record??
    Any pointer from any side  will be highly appreciable...thanks in Advance
    Regards
    Azizur

    Dear Azis,
             Double Click on the serial no of the Component you will get the  inforecord fieldin the Purchasing tab. But this is only for Stock Materials.
    Please recheck again your components.
    Regards,
    Shareeq
    Edited by: K M AHAMED SHAREEQ HUSSAIN on Oct 13, 2009 2:42 PM

  • How to re-run output determination after goods issue through idoc

    Hello,
    i've got a question about output determination. We are currently in a process to automate picking, packing and goods issue through a 3rd party software. The software creates DELVRY03-Idocs including picking, packing and goods issue-information. Picking, packing and goods issue work just find and after submitting the idoc, the delivery is updated as needed.
    The problem arises when it comes to printing the shipping document on the printer belonging to the picking station that just processed the delivery. To determine the correct printer, the external software includes the picking station number inside the idoc. A user exit in idoc_input_delivery puts the number (3 digits) into likp-traid. The customizing for using this field inside output determination is complete and seems to be working.
    The problem is: as the number of the picking station is not known before goods issue, the LD00 message must not be generated before goods issue. I used the appropriate condition insinde the message scheme, the message is not generated until goods issue is complete. After processing the DELVRY03-Idoc, the message should be found and generated, but it isn't. When i take a look at the delivery after submitting the idoc, goods issue is complete, picking and packing is done - and no sign of an header message of type LD00. First i thought about a misconfiguration inside my customizing for output determination, but when i access the delivery via vl02n (change delivery), output determination seems to be processed again and without making any changes or actions, LD00 is generated and waiting for processing. After saving the delivery, LD00 is processed and the shipping document is printed exactly where it should be.
    So, as my customizing seems to work and everything else around idoc processing doesn't make any problems either, i conclude that, after processing the idoc, R/3 just needs a little kick to re-run the output determination, find the now fitting condition for LD00, find the appropriate entry in the condition table and print the document.
    I already tried report rsnast00, but this one just seems to run already created messages.
    Any ideas how to automate this little "kick in the butt"?
    Thanks in advance!

    I'm working on a similar issue with ws_delivery_update. I'm not using the IDOC as you are, but I'm using the function in a program of mine to PGI the delivery, but the output isn't being added to the delivery. I've tried to run the function twice as you suggested, but that doesn't seem to work. Do you have any suggestions or ideas on things to try?
    Thanks,
    Eric

  • 10.9: Server Replication Issue

    Hi ther guys,
      I have seen several posts about this replication issue since 2012, i have 2 fresh install systems 10.9 Server app 3.0.2 on both boxes DNS shows correctly setup but im totaly lost on where to continue.
    Is there anyone out there that already resolved this?
    domaintest2:~ admin$ sudo slapconfig -createreplica 192.168.2.17 diradmin
    Password:
    2014-01-08 01:05:11 +0000 slapconfig -createreplica
    diradmin's Password:
    2014-01-08 01:05:22 +0000 1 Creating computer record for replica
    2014-01-08 01:05:26 +0000 command: /usr/sbin/slapconfig -delkeychain /LDAPv3/127.0.0.1 domaintest2.int$
    2014-01-08 01:05:26 +0000 Added computer password to keychain
    2014-01-08 01:05:26 +0000 Adding ldap and host service principals
    Unable to obtain kerberos princ, using CRAM-MD5: -2
    Unable to obtain kerberos princ, using CRAM-MD5: -2
    2014-01-08 01:05:26 +0000 2 Creating ldap replicator user
    2014-01-08 01:05:26 +0000 _ldap_replicator exists from previous replica - migrating
    2014-01-08 01:05:26 +0000 NSString *_getReplicatorPasswordWithNode(ODNode *): no syncrepl attribute found in results
    2014-01-08 01:05:26 +0000 Unable to get replicator password, recreating replicator
    2014-01-08 01:05:27 +0000 GetLastServerID: Error creating DSLDAPContainer: 77014 Can't contact LDAP server (-1)
    2014-01-08 01:05:27 +0000 ServerID for this replica 1
    2014-01-08 01:05:27 +0000 SetLastServerID: Unable to create DSLDAPContainer: 77014 Can't contact LDAP server (-1)
    2014-01-08 01:05:27 +0000 Error setting last server id
    2014-01-08 01:05:28 +0000 command: /usr/bin/sntp -s time.apple.com.
    2014-01-08 01:05:29 +0000 3 Updating local replica configuration
    2014-01-08 01:05:29 +0000 4 Gathering replication data from the master
    2014-01-08 01:05:29 +0000 5 Copying master database to new replica
    2014-01-08 01:05:29 +0000 Removed directory at path /var/db/openldap/openldap-data.
    2014-01-08 01:05:29 +0000 Starting LDAP server (slapd)
    2014-01-08 01:05:30 +0000 slapd started
    2014-01-08 01:05:30 +0000 Stopping LDAP server (slapd)
    2014-01-08 01:05:31 +0000 command: /usr/sbin/slaptest -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d
    2014-01-08 01:05:31 +0000 command: /usr/sbin/slapadd -c -w -l /var/db/openldap/openldap-data/backup.ldif
    2014-01-08 01:05:31 +0000 command: /usr/sbin/slapadd -c -w -b cn=authdata -l /var/db/openldap/authdata/authdata.ldif
    2014-01-08 01:05:31 +0000
    2014-01-08 01:05:31 +0000 52cca45b slapd is running in import mode - only use if importing large data
              52cca45b bdb_monitor_db_open: monitoring disabled; configure monitor database to enable
    2014-01-08 01:05:31 +0000 6 Starting new replica
    2014-01-08 01:05:31 +0000 Starting LDAP server (slapd)
    2014-01-08 01:05:31 +0000 slapd started
    2014-01-08 01:05:31 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
    2014-01-08 01:05:31 +0000 command: /usr/bin/ldapsearch -x -LLL -H ldapi://%2Fvar%2Frun%2Fldapi -b cn=config -s base olcServerID
    2014-01-08 01:05:31 +0000 command: /usr/bin/ldapmodify -c -x -H ldapi://%2Fvar%2Frun%2Fldapi
    2014-01-08 01:05:31 +0000 Starting password server
    2014-01-08 01:05:37 +0000 CFStringRef CopyHostGUID(DSLDAPContainerRef, CFStringRef): Could not get query results
    2014-01-08 01:05:37 +0000 FATAL : Could not retrieve HOST GUID for parent
    2014-01-08 01:05:37 +0000 FATAL : Could not retrieve HOST GUID for parent (error = 78)
    2014-01-08 01:05:37 +0000 Deleting Cert Authority related data
    2014-01-08 01:05:37 +0000 No intCAIdentity, not removing int CA from keychain
    2014-01-08 01:05:37 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertd.plist
    2014-01-08 01:05:37 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertd-helper.plist
    2014-01-08 01:05:37 +0000 command: /bin/launchctl unload -w /System/Library/LaunchDaemons/com.apple.xscertadmin.plist
    2014-01-08 01:05:37 +0000 Updating ldapreplicas on primary master
    2014-01-08 01:05:37 +0000 Unable to create ODNode for domaintest1.int: 2100 Connection failed to the directory server.
    2014-01-08 01:05:37 +0000 Primary master node is nil!
    2014-01-08 01:05:37 +0000 Unable to locate ldapreplicas record: 0 (null)
    2014-01-08 01:05:37 +0000 Error setting read ldap replicas array: 0 (null)
    2014-01-08 01:05:37 +0000 Error setting write ldap replicas array: 0 (null)
    2014-01-08 01:05:37 +0000 ODRecord *_getODRecord(ODNode *, NSString *, NSString *, NSArray *): ODNodeRef parameter error
    2014-01-08 01:05:37 +0000 int _removeReplicaFromConfigRecord(ODNode *, NSString *): ODRecord not found
    2014-01-08 01:05:37 +0000 Error synchronizing ldapreplicas: 0 (null)
    2014-01-08 01:05:37 +0000 Removing self from the database
    2014-01-08 01:05:37 +0000 Warning: An error occurred while re-enabling GSSAPI.
    2014-01-08 01:05:38 +0000 Stopping LDAP server (slapd)
    2014-01-08 01:05:39 +0000 Stopping password server
    2014-01-08 01:05:39 +0000 Removed all service principals from keytab for realm DOMAINTEST1.INT
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/__db.001.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/__db.002.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/__db.003.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/__db.004.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/__db.005.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/__db.006.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/altSecurityIdentities.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/apple-config-realname.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/apple-generateduid.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-memberguid.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-nestedgroup.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/apple-group-realname.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/cn.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/DB_CONFIG.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/dn2id.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/entryCSN.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/entryUUID.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/gidNumber.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/givenName.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/id2entry.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/ipHostNumber.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/log.0000000001.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/macAddress.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/memberUid.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/objectClass.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/ou.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/sn.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/uid.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/openldap-data/uidNumber.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/__db.001.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/__db.002.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/__db.003.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/__db.004.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/__db.005.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/__db.006.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/alock.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/authdata.ldif.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/authGUID.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/DB_CONFIG.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/dn2id.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/draft-krbPrincipalAliases.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/draft-krbPrincipalName.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/entryCSN.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/entryUUID.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/id2entry.bdb.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/log.0000000001.
    2014-01-08 01:05:39 +0000 Removed file at path /var/db/openldap/authdata/objectClass.bdb.
    2014-01-08 01:05:39 +0000 Removed directory at path /var/db/openldap/authdata.
    2014-01-08 01:05:39 +0000 Removed file at path /etc/openldap/slapd_macosxserver.conf.
    2014-01-08 01:05:39 +0000 Removed file at path /etc/openldap/slapd.conf.
    2014-01-08 01:05:39 +0000 Removed directory at path /etc/openldap/slapd.d/cn=config.
    2014-01-08 01:05:39 +0000 Removed file at path /etc/openldap/slapd.d/cn=config.ldif.
    2014-01-08 01:05:39 +0000 Removed directory at path /etc/openldap/slapd.d.
    2014-01-08 01:05:39 +0000 Removed directory at path /etc/openldap/slapd.d.backup/cn=config.
    2014-01-08 01:05:39 +0000 Removed file at path /etc/openldap/slapd.d.backup/cn=config.ldif.
    2014-01-08 01:05:39 +0000 Removed directory at path /etc/openldap/slapd.d.backup.
    2014-01-08 01:05:39 +0000 Stopping password server
    2014-01-08 01:05:39 +0000 Removed file at path /etc/ntp_opendirectory.conf.
    2014-01-08 01:05:39 +0000 Removed file at path /Library/Preferences/com.apple.openldap.plist.

    We're having the exact same issue, also between two 10.9 servers - any luck finding a resolution?

  • Active directory SYSVOL replication issues

    Hello. 
    I have 2 domain controllers, both of them on the same site DC1 & DC2. I have added a new site with a DC3. When I have added DC3 to the domain, I have realized, SYSVOL was not initialized correctly. I went back to DC1 and found out, there's following
    error in the event viewer:
    Error: 4012 on DC1
    The DFS Replication service stopped replication on the folder with the following local path: C:\Windows\SYSVOL\domain. This server has been disconnected from other partners for 99 days, which is longer than the time allowed by the MaxOfflineTimeInDays parameter
    (60). DFS Replication considers the data in this folder to be stale, and this server will not replicate the folder until this error is corrected.
    Error: 2213 on DC2
    The DFS Replication service stopped replication on volume C:. This occurs when a DFSR JET database is not shut down cleanly and Auto Recovery is disabled. To resolve this issue, back up the files in the affected replicated folders, and then use the ResumeReplication
    WMI method to resume replication. 
    This indicates a DFS replication issue between DC1 & DC2 and probably this would be the reason, why the SYSVOL was not properly initialized on DC3. 
    How can I restore correct DFS replication between DC1 & DC2? I've read
    this article, but it's not clear to me, which of the 2 domain controllers has a good version of SYSVOL + I can not find a decent step-by-step article for reconnecting Windows 2012 domain controller.
    Any idea, how I can proceed further here?

    Here's a complete documentation with resolution of my issue. I have created this documentation for my own purposes in our WIKI, so I will paste it here (I hope, it will help somebody else in the future):
    The Problem
    We have bought a new server for our domain. This server (NEWDC01) was promoted to be a domain
    controller in the DOMAIN. After the promotion, I have added a single computer to the domain. When I have logged on the client to the domain, I realized, this computer is not using the new domain controller (NEWDC01)
    for authentication, but DC02 domain controller instead. This is not intended. Local clients should use local domain controllers for authentication (assuming, the Active directory sites & services are configured properly). Further investigation revealed,
    there are some replication errors on OLDDC01 & OLDDC02 servers. First I need to solve these replication errors. Then I can
    add the NEWDC01 server to domain properly.
    Analysis
    There are several errors related to DFSR replication on both domain controllers:
    Error: 4012 on OLDDC01
    The DFS Replication service stopped replication on the folder with the following local path: C:\Windows\SYSVOL\domain.
    This server has been disconnected from other partners for 99 days, which is longer than the time allowed by the MaxOfflineTimeInDays parameter (60). DFS Replication considers the data in this folder to be stale, and this server will not replicate the folder
    until this error is corrected.
    Error: 2213 on OLDDC02
    The DFS Replication service stopped replication on volume C:. This occurs when a DFSR JET database
    is not shut down cleanly and Auto Recovery is disabled. To resolve this issue, back up the files in the affected replicated folders, and then use the ResumeReplication WMI method to resume replication.
    In order to have active directory in a healthy condition, one must ensure, there’s a successful
    replication between existing domain controllers up and running. If the replication does not work correctly, you can expect bunch of issues.
    group policies and logon scripts are not applied correctly, or as intended
    when you want to add a new domain controller to the domain, it will not work as expected (although, you will not see any specific errors after the
    server is promoted to be a domain controller)
    Active directory backup
    I have scheduled an AD backup on OLDDC01 server using the ‘Windows Backup’ solution to make sure,
    I can restore the AD / SYSVOL, in case something goes wrong. The backup is scheduled to be executed every day.
    Active directory restore
    In this particular case, I will talk only about SYSVOL restore. As indicated above, we must get
    rid of the DFSR event viewer errors which you can find in event viewer. One of them is indicating, that the JET database was not shut down cleanly and autorecovery was disabled. The other error indicates, the SYSVOL volume is no longer replicated. I am not
    sure, what is the reason, why the AD’s in the domain stopped to replicate. Probably it was an unclean server shutdown. The DFSR service stopped to replicate the SYSVOL share and I was not aware about that. When the replication did not run for more than ~99
    days, the SYSVOL share was excluded from the DFSR replications.
    Find out the most accurate SYSVOL share in the domain
    I have compared the content of the SYSVOL directories on both OLDDC01 and OLDDC02 servers: C:\Windows\SYSVOL\domain\Policies.
    Both directories have 37 subdirectories. Each subdirectory corresponds to one group policy. This means, that the content is approximately the same, thus I can’t tell, which version is most recent. I do most of the GPO changes on OLDDC01, so I made a conclusion,
    that this server contains the most recent version of the SYSVOL share.
    There are 2 types of SYSVOL restores, you can do:
    Authoritative restore
    Non-authoritative restore
    Non-authoritative restore
    This is a more simple kind of a restore. You can perform this kind of restore, when you are sure,
    that one of the domain controllers is authoritative (e.g. you presume, the SYSVOL share is intact and working properly). If you can identify such a working server, you can perform non-authoritative restore of the active directory on a broken domain controller.
    Authoritative restore
    In this case, you can designate a specific domain controller to be authoritative. You set a special
    flag on this server, which will prohibit to overwrite it’s state from another domain controllers, when the replication is enabled on the server again. After you designate one server to be authoritative, you need to update all the another domain controllers
    using the non-authoritative procedure.
    In this article, you can find, how to perform authoritative vs. non authoritative AD resotre:
    http://support.microsoft.com/kb/2218556.
    In my case, I was not sure, which of the domain controllers had a more recent copy of AD, so I
    have decided to make OLDDC01 authoritative (check the link above). Once this has been done, I have made a non-authoritative update on OLDDC02 server.
    Everything was almost ready. The last step, I needed to execute was, I needed to fix the ‘JET’
    event viewer error on SRVBK1. In the event log entry on the bottom, you can find following:
    Recovery Steps
    1. Back up the files in all replicated folders on the volume. Failure to do
    so may result in data loss due to unexpected conflict resolution during the recovery of the replicated folders.
    2. To resume the replication for this volume, use the WMI method ResumeReplication
    of the DfsrVolumeConfig class. For example, from an elevated command prompt, type the following command:
    wmic /namespace:\\root\microsoftdfs path dfsrVolumeConfig
    where volumeGuid="D37A9FC3-8B1D-11E2-93E8-806E6F6E6963" call ResumeReplication
    For more information, see http://support.microsoft.com/kb/2663685.
    Final words
    After I have executed this command, the replication was again started between OLDDC01 and OLDDC02
    servers. After I have started up the NEWDC01 server, I have realized, it has automatically replicated the contents of the SYSVOL share - almost immediately after the server was started up. I have again tried to login with the local client into DOMAIN domain
    and now I see, that local client is using local Domain controller for authentication.
    Everything seems to be OK now.

  • How can i solve a issue through remeady

    how can i solve a issue through remeady..
    With Regards
    Prasanta

    Hello,
    Remedy and other similar products are the tools which track the Action / Time taken for resolving a call. Normally, once an issue is reported, that will be recorded in a tool with an estimated fix time. If the call is not fixed / actioned within the estimated time, it go as breached.
    The analyst need to update the call status in the tool. They will need to update the actions taken, call notes ..etc. Once the issue is fixed, you may set the call status as resolved. Once you set the status as resolved, the user who riased the issue will get an e-mail. They will confirm whether the issue is actually closed or not. Depends upon their cconfirmation, the status will be set to Closed or again Reopen.
    This is a typical helpdesk tool scenario.
    Prase

  • Multiple RDS Device CALs Issued through Windows 2003 RDS Hosts

    Environment
    Windows 2012 R2 RDS license server issuing device CALs
    5 Citrix farms (PS4, PS4.5, XA5, XA6, and XA6.5) 
    Symptoms
    - RDS device CALs issued through the PS4/Windows 2003 R2 and PS4.5/Windows 2003 R2 servers show the Citrix server name in the Window 2012 R2 RD license manager console instead of the workstation name (See below).
    - The PS4/Windows 2003 R2 and PS4.5/Windows 2003 R2 servers are issuing a large number of device CALs to workstations.  For example, we have two PS4/Windows 2003 R2 servers that publish a single application.  There are 20 users
    of the applications with dedicated workstations that should all have a device CAL, but everyday I see device CALs being issued from these servers (See below).  
    Any help would be greatly appreciated.  Thank you.
     Scott   

    Hi Scott,
    Thank you for posting in Windows Server Forum.
    Have you find any Error\Event Id for this case?
    From the description it appears that there is some misconfiguration for redirecting the server during load balancing the device CAL among the server and that’s why device is getting misplaced. You can please relook at configuration for License server with following
    article.
    RD Licensing Configuration on Windows Server 2012
    http://blogs.technet.com/b/askperf/archive/2013/09/20/rd-licensing-configuration-on-windows-server-2012.aspx
    Hope it helps!
    Thanks.
    Dharmesh Solanki
    TechNet Community Support

  • Lync Sign in issue through Proxy

    Hi All,
    Not to be confused when said Lync Sign in issue through Proxy as it is unlikely that this is an issue with the proxy settings. Find it out yourself from the behavior below.
    It is in fact a weird issue that I have come across.
    Overall there are almost 30 Lync Users accounts.
    And they are trying to authenticate to external Lync Server.
    28/30 works fine through the proxy. Except for 2 user accounts.
    The proxy settings are same for all the users and no individual configurations set.
    Now, here is the interesting part. Go out of the network and authenticate this 2 user account to any of the workstation which is not going through Proxy, it works. Come back to the workstation which is going through the proxy and try again, it will work
    now.
    Now, I am interested in finding how exactly does Microsoft authenticates their Lync users. And what are the step by step procedure of User Authentication for Lync service. And why is this happening?
    Just to add some more point here, these happens only with 2 specific accounts.
    And if you try using these 2 accounts on any of the 28 working workstations, which is going through the proxy, the first time, it would still fail to get authenticated.
    Can someone put a highlight on these behaviors? is there any user specific settings on the lync server?
    Thanks for your inputs.

    You can check the following blogs about Lync authentication process:
    http://blog.schertz.name/2012/12/lync-2013-client-autodiscover/
    http://blogs.technet.com/b/nexthop/archive/2012/11/28/lync-2010-client-authentication.aspx
    Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or
    suitability of any software or information found there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link.
    You can enable Lync client logging to collect the log file to check the sign in process for these two users can’t sign in externally.
    Lisa Zheng
    TechNet Community Support

  • Why SAP SRM material replication happens through CRM middleware?

    Can some one help me to understand, Why SAP SRM material replication happens through CRM middleware? Is there any functional/Technical reason behind this design?

    Dear Sridhar,
    SRM releases later SRM 4.0 are working with the same middleware implementation,
    there where no changes between the releases. The SRM middleware implementation
    was decoupled from the CRM middleware development at that time.
    (Middleware is based on the basis functionality of queued Remote Function Calls qRFC)
    Regards
    Laszlo

  • HT201272 Does anyone know how to get an episode of a tv programme that never downloaded when I bought a subscription. Episode 1 didn't download and I have all other episodes. I looked at the issues through report a problem but I cannot find an answer.

    Does anyone know how to get an episode of a tv programme that never downloaded when I bought a subscription. Episode 1 didn't download and I have all other episodes. I looked at the issues through report a problem but I cannot find an answer.
    I bought a series pass and unfortunately epsiode 1 didn't download at all. I was watching the downloads and restarting once they stopped as I allow multiple downloads at athe same time

    It sounds like you may have hidden it, in which case you should be able to unhide it : iTunes Store: Hiding and unhiding purchases. (You can't turn off the hiding of items.)
    But you should be keeping and maintaining a backup copy of all of your downloads and not relying on being able to redownload them - any item could be removed from the store by the rights-holders at any time, if they do then you won't be able to redownload them (nor will be able to do redownload items if you move countries).

  • AD replication issue. had 1722 error after running repadmin

    Hi,
    I got 1722 error ( The RPC server is unavailable) when I run repadmin /replsummary. The result points that one source DSA is having 1722 error and the problem DC is the DC I run repadmin command from.
    Do it make sense. Why DC itself cannot rpc to itself?
    Thanks
    Qing

    I would start with what is mentioned in this Wiki article: http://social.technet.microsoft.com/wiki/contents/articles/18513.active-directory-replication-issues-basic-troubleshooting-steps-single-ad-domain-in-a-single-ad-forest.aspx
    That should be a good start for troubleshooting.
    This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
    Get Active Directory User Last Logon
    Create an Active Directory test domain similar to the production one
    Management of test accounts in an Active Directory production domain - Part I
    Management of test accounts in an Active Directory production domain - Part II
    Management of test accounts in an Active Directory production domain - Part III
    Reset Active Directory user password

  • Replication issue between lync 2010 FE and lync 2013 FE

    Hello
    I face any issue in my lync server's .
    I was in the last steps in the migration process from lync 2010 to 2013 enterprise edition .
    where CMS was moved already to 2013 , and later on many time I checked the replication and it was fine , then I deleted the CMS DB FROM 2010 FE and I checked the replication and it was fine .
    later on I proceed to delete the archiving server and monitoring server and it was fine .
    later on I proceed to
    Reset call admission control
    Prevent sessions for services
    Stop Lync Server 2010 services
    Remove a Front End Server from a pool
    I just I face this replication issue after I start the process to delete the lync 2010 pool which im stuck on it now .
    one more thing while I was trying to delete the 2010 front end pool , I got the error .
    Error: An error occurred: "System.InvalidOperationException" "Cannot publish topology changes. Conference directories still exist on a pool that would be deleted. Remove the conference directories before continuing."
    so I moved the conference directories from 2010 pool to the 2013 pool successfully.
    but later on when I check the replication I notice the replication issue ?
    Get-CsManagementStoreReplicationStatus
    UpToDate           : False         """""""""""""""""""it is already shutdown
    ReplicaFqdn        : HQ-EDGE01.mydom
    LastStatusReport   :
    LastUpdateCreation : 3/23/2015 11:22:17 AM
    ProductVersion     :
    UpToDate           : True
    ReplicaFqdn        : HQ-LYNC2013-FE.mydom
    LastStatusReport   : 3/19/2015 5:21:27 PM
    LastUpdateCreation : 3/19/2015 5:21:25 PM
    ProductVersion     : 5.0.8308.556
    UpToDate           : False
    ReplicaFqdn        : HQ-LYNC-FE-01.mydom
    LastStatusReport   : 3/19/2015 11:38:25 AM
    LastUpdateCreation : 3/23/2015 11:52:17 AM
    ProductVersion     : 4.0.7577.0
    then I run the
    I run Invoke-CsManagementStoreReplication
    Get-CsManagementStoreReplicationStatus
    UpToDate           : False     """""""""""""""""""it is already shutdown """"""""""""""""""
    ReplicaFqdn        : HQ-EDGE01.mydomain
    LastStatusReport   :
    LastUpdateCreation : 3/23/2015 10:18:22 PM
    ProductVersion     :
    UpToDate           : True
    ReplicaFqdn        : HQ-LYNC2013-FE.mydomain
    LastStatusReport   : 3/23/2015 10:18:26 PM
    LastUpdateCreation : 3/23/2015 10:18:22 PM
    ProductVersion     : 5.0.8308.556
    UpToDate           : False
    ReplicaFqdn        : HQ-LYNC-FE-01.mydomain
    LastStatusReport   : 3/19/2015 11:38:25 AM
    LastUpdateCreation : 3/23/2015 10:18:22 PM
    ProductVersion     : 4.0.7577.0
    ====================
    Get-CsManagementStoreReplicationStatus
    UpToDate           : False  """"""""""""""" it is already down """""""""""""""""""""
    ReplicaFqdn        : HQ-EDGE01.mydomain
    LastStatusReport   :
    LastUpdateCreation : 3/23/2015 10:53:23 PM
    ProductVersion     :
    UpToDate           : True
    ReplicaFqdn        : HQ-LYNC2013-FE.mydomain
    LastStatusReport   : 3/23/2015 10:18:26 PM
    LastUpdateCreation : 3/23/2015 10:18:22 PM
    ProductVersion     : 5.0.8308.556
    UpToDate           : False
    ReplicaFqdn        : HQ-LYNC-FE-01.mydomain
    LastStatusReport   : 3/19/2015 11:38:25 AM
    LastUpdateCreation : 3/23/2015 10:53:23 PM
    ProductVersion     : 4.0.7577.0
    why LastUpdateCreation : 3/23/2015 10:53:23 PM from the lync 2010 pool  ????
    I'm not doing any change on 2010 pool now (I just try to delete it ) , all the change it is on 2013 pool .
    for edge server 2013 I shut down the server since there is another configuration issue there (so replication to edge server not the issue now since it is down).
    my question is this will affect my lync 2013 since it is the production now  ? is this un completed steps for removing the 2010 pool affect my production.
    is the replication issue affects my 2013 pool ?
    Kind Regards
    MK

    Hi,
    From your description above, did you mean before deleting the Lync Server 2010 Pool from topology, you found the replication of Lync 2010 FE Server not update to date?
    If it is the case, based on my knowledge, there is no affect for Lync Server 2013 Pool. Please double check if Lync Server 2013 Pool work normally, and Lync users in Lync 2013 Pool can use all Lync function without issues. Then you can delete Lync 2010 Pool
    from Topology and publish it. After finish it, please re-run step 2 on Lync Server 2013 FE Servers.
    Best Regards,
    Eason Huang  
    Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]
    Eason Huang
    TechNet Community Support

  • Site not working through Transparent Proxy

    I have a site that will not load through transparent proxy at one of my buildings.
    I have 2 buildings with same BM setup (3.9SP2 on NW6.5 SP7). At one location, I can not resolve a web site when running through transparent proxy.
    At the other location, it works just fine.
    Also, if I set the proxy to either BM server, the site loads without incident.
    As another note, both locations use the same internal DNS server which is located in the building where transparent proxy works for this site.
    What am I missing?
    Any ideas as to what to try next is greatly appreciated.

    On 03/16/2010 03:26 PM, sjdimare wrote:
    >
    > Thanks for the reply. Both BM servers are using the same proxy.cfg file
    > - Craig Johnson's - revision 30.
    >
    > I ran a lan trace on 2 separate PCs from the different networks.
    >
    > On the working network, you can see the DNS lookup in the wireshark
    > log.
    >
    > In the network where it is not working, there is no DNS entry even
    > showing that it is trying to resolve the domain name. Other sites are
    > working just fine and you can see the DNS entry going to our internal
    > DNS server.
    >
    > In the non-working segment, if I hard set the proxy, you see an HTTP
    > entry going to the proxy server and resolving the domain in question.
    >
    > Very strange.
    >
    > Any new ideas are greatly appreciated.
    >
    > Steve D.
    >
    >
    Then the pc failing has problem to resolve the entry. When you force the
    browser, pc does not resolve anything, just send the url to bm and bm
    resolve it. With TP, it is the PC who makes it. It could be that this pc
    has already cached this site. But then you should see the reqesut goign
    to the bm server. Without seeing the traces ( i do not understand your
    there is no DNS entry even
    showing that it is trying to resolve the domain name,) i can not comment
    in more detail other that you've got a PC or network problem or dns
    problem with this particular site, but not a bm.
    if trace shows dns query from the pc and no answer, but is really
    strange, do the same step but this time take a lan trace on the dns
    server to confirm that request is received and what it does with it.

  • DC Replication issue

    Hello Team,
    We have built a new Domain Controller in our environment with OS 2003 Server.
    While checking for replication from an existing server (using the command repadmin /replsummary) I get and an as below:
    1753 - NLHAAAHDC002
    (NLHAAAHDC002 is the DC name that is built new)
    Also if I run the same command on the new server (NLHAAAHDC002) I get the error that as below:
    "'repadmin' is not recognized as an internal or external command,
    operable program or batch file".
    An urgent response is appreciated.
    Regards,
    Suman Rout

    Hi Suman,
    Please refer the below link on Microsoft KB article for Troubleshooting steps - DC Replication issue,
    http://support.microsoft.com/kb/2089874/en-us
    Regards,
    Gopi
    JiJi
    Technologies

Maybe you are looking for