Create a VMware snapshot before promoting domain controller

Similar Messages

• Remove vmware snapshot on R2 domain controller

  i have a vmware vm which is running W2012 R2 (Domain controller) and i made a snapshot in the past. can i remove the snapshot without any issues if i power the machine off. or will this cause issues because it will merge the 2 disks

  This question would better be answered in VMware forum. https://communities.vmware.com/welcome
  In current forum you would receive professional advice concerning Hyper-V.
  Generally taking snapshots from Domain Controller is NOT recommended, namely older ones may retire.
  And more, snapshots as such are better for testing and some kind of fast recovery (For example when updates fail.)
  Thanks for understanding
  Milos

• Newly promoted Domain Controller consuming constantly high CPU in lsass

  Hi
  We newly promoted a VMware Server........ Windows 2008 R2 to Domain controller  fully patched upto date with Microsoft patches and Symantec Endpoint protection 11
  Can anybody point me to check which component to find it why lsass is consuming more cpu because we recently promoted many DC's of physical servers which are functioning properly....
  Thanks & Regards S.Swaminathan Live & let others live!!!

  Can anybody point me to check which component to find it why lsass is consuming more cpu because we recently promoted many DC's of physical servers which are functioning properly....
  Hope this one helps:
  How to Troubleshoot High LSASS.EXE CPU Utilization on an Active Directory Domain Controllers
  Troubleshooting
  High LSASS CPU Utilization on a Domain Controller (Part 1 of 2)
  Mahdi Tehrani   |  
    |  
  www.mahditehrani.ir
  Please click on Propose As Answer or to mark this post as
  and helpful for other people.
  This posting is provided AS-IS with no warranties, and confers no rights.
  How to query members of 'Local Administrators' group in all computers?

• When promoting Domain Controller I get an error

  I just did a fresh install of Server 2012 R2 when I try and promote it I get the attached Error:

  I have a remote desktop connection to it. It is a Virtual Machine on VMWare ESXi server. There was no errors during the installation until I did the promotion process. I just confirmed the roles it still isn't working 
  Active Directory is installed and the following features are installed:
  - Active Directory module for Windows Powershell -Installed
  - AD DS Tools (Active Directory Administrative Center, AD DS Snap-Ins and Command-Line Tools)
  - AD LDS Snap-Ins and Command-Line Tools
  New DC Promotion Error:
  When I try to remove the Active Directory Role:
  Any Other suggestions would be great

• Install Domain Controller, Active Directory, RemoteApps on Single Server?

  Have a server that I want to experiment with RemoteApps.   Documentation I have read state you need to have a Domain Controller setup with AD on one server, and have a second server to install all the RemoteApps requirements. Is this true or can
  this all be done on one server.
  If I need a separate server for the Domain Controller and Active Directory, can I assume that a low end server would be sufficient?  Or would using Hyper-V with a single hardware server and create two virtual machines: one as the DC/AD, and the other
  to run Remote Apps be a possible solution.  Any advice?

  it really depends to be honest. I'd probably go something like this though:
  One Small physical server to act as a domain controller - you could put DHCP on this too
  One or Two physical, quite powerful servers to act as Hyper-V hosts - these can be domain joined. 
  Then for your VM's create the following:
  1 x additional domain controller
  For remote desktop services:
  1 x Remote Desktop Session Host
  1 x Connection Broker
  1 x Gateway and web server
  For additional services
  1 or 2 x Exchange
  1 x sharepoint
  1 x IIS
  but it really depends what you want to achieve. 
  The benefit from Virtual machines is that you can keep separate virtual servers for separate applications. 
  If you have two hosts you could then replicate the virtual machines between them if you wanted some layer of fault tolerance. 
  Hope this helps you a bit more. And thanks for positive blog feedback - its appreciated. 
  Regards,
  Denis Cooper
  MCITP EA - MCT
  Help keep the forums tidy, if this has helped please mark it as an answer
  My Blog
  LinkedIn:

• NTLM Authentication with a domain controller/active directory

  Hi,
  I have a requirement to do an NTLM authentication with the MS active directory.
  I am aware that JNDI doesn't support this protocol to communicate with the AD.
  I have looked into couple of online solutions available but that doesn't seem to meet my requirement. Most of the solutions like (Apache commons NTLMScheme/NTCredentials and java.net.Authenticator etc...) are used for only NTLM proxy authentication (where both username, password is sent to the proxy server which does the actual NTLM authentication with the Active Directory.)
  What I need is a solution in Java where I can directly contact Active directory for negotiation of challenge/response mechanism.
  Can any of you guys suggest any alternative to achieve this ?

  it really depends to be honest. I'd probably go something like this though:
  One Small physical server to act as a domain controller - you could put DHCP on this too
  One or Two physical, quite powerful servers to act as Hyper-V hosts - these can be domain joined. 
  Then for your VM's create the following:
  1 x additional domain controller
  For remote desktop services:
  1 x Remote Desktop Session Host
  1 x Connection Broker
  1 x Gateway and web server
  For additional services
  1 or 2 x Exchange
  1 x sharepoint
  1 x IIS
  but it really depends what you want to achieve. 
  The benefit from Virtual machines is that you can keep separate virtual servers for separate applications. 
  If you have two hosts you could then replicate the virtual machines between them if you wanted some layer of fault tolerance. 
  Hope this helps you a bit more. And thanks for positive blog feedback - its appreciated. 
  Regards,
  Denis Cooper
  MCITP EA - MCT
  Help keep the forums tidy, if this has helped please mark it as an answer
  My Blog
  LinkedIn:

• Windows Server 2012 Standard - HP OfficeJet Pro 8600 Plus printer not working after promoting to Domain Controller / AD Services

  An associate and myself installed the built-in drivers for the HP OfficeJet Pro 8600 Plus multi-function (network) printer on a Windows Server 2012 Standard server installation and everything worked fine whenever I want to print anything directly from the
  Windows Server machine (there's a reason for this, so please understand that ;)  ).
  We were able to print without any problems from the Windows Server 2012 machine, using the drivers from Microsoft.  Mainly, because HP has not listed any specific support for Windows Server 2012, only Windows Server 2008 R2, however, the drivers that
  came with Windows 2012 seem to work very well.
  PROBLEM: I later had to promote the Windows Server 2012 to a Domain Controller, and created the Active Directory configurations, even enabled the Print Services.  After doing all of that, the HP printer will not print anything.  It's like all print
  requests directly from the Windows Server go to Nil.
  Has anyone encountered a problem like this before? The only thing I can think of is that after perhaps something affected printing directly once we promoted the server to being a DC, and added other features / roles.  I even tried installing the
  HP drivers for Windows Server 2008 R2, and the results are still the same...nothing prints.  Trust me, the printer is set as the Default Printer and even when choosing to print, we make sure the HP OfficeJet Pro is selected, and is on, as other Windows
  Client PC's can print to it directly.
  Does anyone have any suggestions we could try?  Thanks in advance.

  While it is quite a while since this was posted - I can concur a similar issue exists.
  We have spent the better part of a day trying to work out why other HP printers work fine but our 8620 prints are not printing and going to Nil.  The print server is hosted on a shared DC.  Comparing to the initial posters details, for some reason
  it seems to be most commonly related to the OfficeJet Pro 8600/8610/8620/8630 series printers.
  I ended up doing a print server migration from the domain controller to stand alone host and all printers now work from a single server rather than a mix.  Domain controller OSes varied from 2008, 2012, 2012 R2 (tested with multiple) and only after
  all of those failed then tried a stand alone server os machine as a last resort which worked fine.  Printing directly from Win 7 / 8 /8.1 clients to the IP always worked.

• 2012 Virtual Machine Black Screens Whenever Promoting to Domain Controller

  I have a brand new 2012 cluster with 2 hyper-v host nodes running Server 2012 (not R2). I have successfully spun up several virtual machines from templates via VMM 2012R2. 
  I added the AD DS role today to my DC01 server running server 2012 (not R2). Then I promoted it to a domain controller. When it came back up I got the login screen as normal and logged in. Upon login I only see a black screen. I can click ctr-alt-del and
  get the typical menu, but only logout responds. Everything else such as Task Manager just goes back to the black screen. Connecting via remote eventvwr and checking logs and events shows the DC Promo was successful; I can verify replication to other DC's etc.
  I don't see any problems with this server other than I can't see it after login. RDPing in provides the black screen as well. I am able to log in via safe mode and can see the desktop, but am not sure how to troubleshoot from there. I verified that integration
  services were latest and greatest before I promo'd.
  I de-promo'd it via server manager on another server 2012 server, then removed the roles and deleted it. I just created a new server and did the same process, only used a remote server manager for DCpromo this time. After reboot I have the identical issue
  with a black screen.
  Can anyone help?
  Peter

  Hi Peter,
  Based on your description, the following thread also focused on this kind of issue and can be referred to for troubleshooting.
  Server 2012 Black Screen on Login
  http://community.spiceworks.com/topic/406717-server-2012-black-screen-on-login
  Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
  Hope it helps.
  Best regards,
  Frank Shen

• Windows 2012 Verification of prerequisites for Domain Controller promotion failed

  Windows 2012 Verification of prerequisites for Domain Controller promotion failed and gave the below error(In computer management local group and user option is not there as suggested by a solution!)
  "Verification of prerequisites for Domain Controller promotion failed. The local Administrator account becomes the domain Administrator account when you create a new domain. The new domain cannot be created because the local Administrator account password
  does not meet requirements.
  Currently, the local Administrator password is blank, which might lead to security issues. We recommend that you press Ctrl+Alt+Delete, use the net user command-line tool, or use Local Users and Groups to set a strong password for the local Administrator
  account before you create the new domain."

  OK, the reason you see this error is because when you set up and configured your Windows R2 environment you may have logged into the OS with an account other than Administrator. So, if you created your log in account named Bob, this is throwing off the Server.
  So, hit Ctrl-Alt-Delete, and look who you are logged in as, and then change the account you are logging in as and use the local Administrator account. What you may find is that the default Admin account password has not been set.
  Check that out and see if that is what you are experiencing.
  Best wishes

• Hyper-V host fails with "RPC Server unavailable" error when I try to promote Windows Server in virtual machine to a domain controller

  Host: Windows Server 2012 R2 with Hyper-V and RRAS (for Internet over NAT)
  VM: Windows Server 2012 R2 with installed Active Directory Domain Services
  When I open AD DS configuration window (“promote this server to a domain controller”) many services and programs on my host (include Hyper-V, RRAS & Server Manager) fails with RPC Server unavailable error.

  Hello Aleksandr,
  There wasn't any configuration information, ipconfig /all, network setup, etc. So it's difficult to tell.
  More importantly, are you trying to promote the host server? If yes, that is not advised, for one, because it's a Hyper-V server, (not suggested at all), and two, RRAS is installed. RRAS is problematic with any domain controller because it turns it into
  a multihomed domain controller.
  Active Directory communication fails on multihomed domain controllers
  http://support.microsoft.com/kb/272294/
  Multihomed DCs (with more than one unteamed NIC or multiple IPs) with DNS, RRAS, iSCSI, Clustering interfaces, management interfaces, backup interfaces, and/or PPPoE adapters - A multihomed DC is not a recommended configuration, however there are ways to
  configure a DC with registry mods:
  http://blogs.msmvps.com/acefekay/2009/08/17/multihomed-dcs-with-dns-rras-and-or-pppoe-adapters/
  7 Reasons not to Make Hyper-V a Domain Controller
  http://www.altaro.com/hyper-v/reasons-not-to-make-hyper-v-a-domain-controller/
  Domain Controller as Hyper-V host
  https://social.technet.microsoft.com/Forums/windowsserver/en-US/4ff14bec-a815-473b-8d2a-33e91e17197b/domain-controller-as-hyperv-host?forum=winserverhyperv
  Networking?
  I don't know how your networking is setup, whether there are multiple NICs on the host server, if they are teamed, if you have the host interface set to allow the operating system to share administration, or if there are separate interfaces for each. Can
  the host OS ping/communicate with the DC virtual machine?
  If there are more than one NIC, you have the choice to team the NICs and share the Teamed NICs for the Hyper-V OS and the VMs, or keep them separate where one is devoted for the Hyper-V OS, and one for the VMs.
  Hyper-V Server VLAN Network Configuration
  https://social.technet.microsoft.com/Forums/windowsserver/en-US/0aa71d2a-ebf9-4a3e-bbf5-94db55339fa2/hyperv-server-vlan-network-configuration?forum=winserverhyperv 
  Recommendation:
  Why not just create another VM DC?
  Ace Fekay
  MVP, MCT, MCSE 2012, MCITP EA & MCTS Windows 2008/R2, Exchange 2013, 2010 EA & 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003
  Microsoft Certified Trainer
  Microsoft MVP - Directory Services
  Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php
  This posting is provided AS-IS with no warranties or guarantees and confers no rights.

• Restore Domain Controller Server with Snapshot in HyperV

  Dear Team,
  I
  have a Domain Controller (Windows Server 2008R2) hosted  in my HyperV, and Accidentally
  its got corrupted and i have a snapshot backup which took 20 days back. when i restore that snapshot, i am unable to establish communication with al other computers those were already added to the domain. 
  We will highly appreciate if you could let us know how we can resume our AD Server’s communication with
  other servers.

  ALSO SEE
  https://jorgequestforknowledge.wordpress.com/2006/03/08/backup-and-restore-of-active-directory-2/
  Cheers,
  Jorge de Almeida Pinto
  Principal Consultant | MVP Directory Services | IAM Technologies
  COMMUNITY...:
  DISCLAIMER: This post is provided "AS IS" with no warranties of any kind, either expressed or implied, and confers no rights! Always evaluate/test yourself before using/implementing this!

• Promoting a server to a Domain Controller

  Quick question - I am just trying to satisfy my curiosity.
  I was reviewing our network at our new company and it looks like I have a Domain Controller using a DHCP address.
  I know best practice is to use a static address, but is it even possible to promote a server using that is using a DHCP address?
  Thanks

  Yes, it is possible to promote a DC using a DHCP address. You will receive a warning that says that you are not using a static IP when promoting your DC.
  This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
  Get Active Directory User Last Logon
  Create an Active Directory test domain similar to the production one
  Management of test accounts in an Active Directory production domain - Part I
  Management of test accounts in an Active Directory production domain - Part II
  Management of test accounts in an Active Directory production domain - Part III
  Reset Active Directory user password

• Having trouble promoting a server to a Child Domain Controller

  Hello,
  I am having promoting a 2012 server that's already a member of a domain to a child domain controller.  All of the prereq's are met.  When I try to promote it, it shows the steps being processed.  When it begins to replicate the parent domain's
  database, it runs all night and never completes.  Any Idea what's going on?
  Thanks
  John G.
  John Grace

  Hello,
  Just to let you know I can ftp, telnet, and map drives to gptsserver1.gpts.biz from gptsserver2.gpts.biz but can't promote gptsserver2.gpts.biz to a child domain controller.  Any help is appreciated.
  Here is the contents of dcpromo.log from gptsserver2.gpts.biz:
  08/13/2014 21:14:32 [INFO] Promotion request for domain controller of new domain
  08/13/2014 21:14:32 [INFO] DnsDomainName  gpts2.gpts.biz
  08/13/2014 21:14:32 [INFO] FlatDomainName  GPTS2
  08/13/2014 21:14:32 [INFO] SiteName  Default-First-Site-Name
  08/13/2014 21:14:32 [INFO] SystemVolumeRootPath  C:\Windows\SYSVOL
  08/13/2014 21:14:32 [INFO] DsDatabasePath  C:\Windows\NTDS, DsLogPath  C:\Windows\NTDS
  08/13/2014 21:14:32 [INFO] ParentDnsDomainName  gpts.biz
  08/13/2014 21:14:32 [INFO] ParentServer  gptsserver1.gpts.biz
  08/13/2014 21:14:32 [INFO] Account (NULL)
  08/13/2014 21:14:32 [INFO] Options  5243072
  08/13/2014 21:14:32 [INFO] Validate supplied paths
  08/13/2014 21:14:32 [INFO] Validating path C:\Windows\NTDS.
  08/13/2014 21:14:32 [INFO] Path is a directory
  08/13/2014 21:14:32 [INFO] Path is on a fixed disk drive.
  08/13/2014 21:14:32 [INFO] Validating path C:\Windows\NTDS.
  08/13/2014 21:14:32 [INFO] Path is a directory
  08/13/2014 21:14:32 [INFO] Path is on a fixed disk drive.
  08/13/2014 21:14:32 [INFO] Validating path C:\Windows\SYSVOL.
  08/13/2014 21:14:32 [INFO] Path is on a fixed disk drive.
  08/13/2014 21:14:32 [INFO] Path is on an NTFS volume
  08/13/2014 21:14:32 [INFO] Child domain creation -- check the new domain name is child of parent domain name.
  08/13/2014 21:14:32 [INFO] Domain Creation -- check that the flat name is unique.
  08/13/2014 21:14:42 [INFO] Start the worker task
  08/13/2014 21:14:42 [INFO] Request for promotion returning 0
  08/13/2014 21:14:42 [INFO] Using supplied domain controller: gptsserver1.gpts.biz
  08/13/2014 21:14:42 [INFO] Using supplied site: Default-First-Site-Name
  08/13/2014 21:14:42 [INFO] Forcing time sync
  08/13/2014 21:14:42 [INFO] Forcing a time sync with gptsserver1.gpts.biz
  08/13/2014 21:14:42 [INFO] Reading domain policy from the domain controller gptsserver1.gpts.biz
  08/13/2014 21:14:42 [INFO] Stopping service NETLOGON
  08/13/2014 21:14:42 [INFO] Stopping service NETLOGON
  08/13/2014 21:14:42 [INFO] ControlService(STOP) on NETLOGON returned 0(gle=1062)
  08/13/2014 21:14:42 [INFO] Exiting service-stop loop after service NETLOGON entered STOPPED state
  08/13/2014 21:14:42 [INFO] StopService on NETLOGON returned 0
  08/13/2014 21:14:42 [INFO] Configuring service NETLOGON to 1 returned 0
  08/13/2014 21:14:42 [INFO] Stopped NETLOGON
  08/13/2014 21:14:42 [INFO] Creating the System Volume C:\Windows\SYSVOL
  08/13/2014 21:14:42 [INFO] Deleting current sysvol path C:\Windows\SYSVOL 
  08/13/2014 21:14:43 [INFO] Preparing for system volume replication using root C:\Windows\SYSVOL
  08/13/2014 21:14:43 [INFO] Created the system volume
  08/13/2014 21:14:43 [INFO] Copying initial Directory Service database file C:\Windows\system32\ntds.dit to C:\Windows\NTDS\ntds.dit
  08/13/2014 21:14:43 [INFO] Installing the Directory Service
  08/13/2014 21:14:43 [INFO] Calling NtdsInstall for gpts2.gpts.biz
  08/13/2014 21:14:43 [INFO] Starting Active Directory Domain Services installation
  08/13/2014 21:14:43 [INFO] Validating user supplied options
  08/13/2014 21:14:43 [INFO] Determining a site in which to install
  08/13/2014 21:14:43 [INFO] Examining an existing forest...
  08/13/2014 21:14:43 [INFO] Configuring the local computer to host Active Directory Domain Services
  08/13/2014 21:14:44 [INFO] EVENTLOG (Informational): NTDS General / Service Control : 1094
  Software write caching for the following disk drive has been disabled to prevent possible data loss during system failures such as power outages or hardware component failures that can cause a sudden shutdown of the system. The disk drive that stores Active
  Directory Domain Services log files is the only drive affected by this change.
  Disk drive:
  c:
  08/13/2014 21:14:55 [INFO] EVENTLOG (Informational): NTDS General / Internal Configuration : 2120
  This Active Directory Domain Services server does not support the Recycle Bin. Deleted objects may be undeleted, however, when an object is undeleted, some attributes of that object may be lost.  Additionally, attributes of other objects that refer to
  the object being undeleted may also be lost.
  08/13/2014 21:14:56 [INFO] Replicating the schema directory partition
  08/13/2014 21:14:56 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1963
  Internal event: The following local directory service received an exception from a remote procedure call (RPC) connection. Extensive RPC information was requested. This is intermediate information and might not contain a possible cause.
  Process ID: 
  488
  Reported error information:
  Error value: 
  Access is denied. (5)
  directory service: 
  gptsserver1.gpts.biz
  Extensive error information:
  Error value: 
  Access is denied. 5
  directory service: 
  gptsserver2
  Additional Data
  Internal ID: 
  5000dfc
  08/13/2014 21:14:56 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1961
  Internal event: This log entry is a continuation from the preceding extended error information entry on the following error and directory service.
  Extended information:
  Error value: 
  Access is denied. (5)
  directory service: 
  gptsserver2
  Supplemental information:
  Detection location: 
  1461
  Generating component: 
  RPC Runtime
  Time at directory service: 
  2014-08-14 04:14:56
  Additional Data
  Error value: 
  Access is denied. (5)
  08/13/2014 21:14:56 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 2839
  Internal event: This log entry is a continuation from the preceding extended error information entry.
  Extended information:
  Extended Error Parameters: 
  0
  Parameter 1: 
  (NULL)
  Parameter 2: 
  (NULL)
  Parameter 3: 
  (NULL)
  Parameter 4: 
  (NULL)
  Parameter 5: 
  (null)
  Parameter 6: 
  (null)
  Parameter 7: 
  (null)
  08/13/2014 21:14:56 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1962
  Internal event: The local directory service received an exception from a remote procedure call (RPC) connection. Extended error information is not available.
  directory service: 
  gptsserver1.gpts.biz
  Additional Data
  Error value: 
  Access is denied. (5)
  08/13/2014 21:14:56 [INFO] EVENTLOG (Error): NTDS Replication / Setup : 1125
  The Active Directory Domain Services Installation Wizard (Dcpromo) was unable to establish connection with the following domain controller.
  Domain controller:
  gptsserver1.gpts.biz
  Additional Data
  Error value:
  5 Access is denied.
  08/13/2014 21:15:04 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1963
  Internal event: The following local directory service received an exception from a remote procedure call (RPC) connection. Extensive RPC information was requested. This is intermediate information and might not contain a possible cause.
  Process ID: 
  488
  Reported error information:
  Error value: 
  Access is denied. (5)
  directory service: 
  gptsserver1.gpts.biz
  Extensive error information:
  Error value: 
  Access is denied. 5
  directory service: 
  gptsserver2
  Additional Data
  Internal ID: 
  5000dfc
  08/13/2014 21:15:04 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1961
  Internal event: This log entry is a continuation from the preceding extended error information entry on the following error and directory service.
  Extended information:
  Error value: 
  Access is denied. (5)
  directory service: 
  gptsserver2
  Supplemental information:
  Detection location: 
  1461
  Generating component: 
  RPC Runtime
  Time at directory service: 
  2014-08-14 04:15:04
  Additional Data
  Error value: 
  Access is denied. (5)
  08/13/2014 21:15:04 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 2839
  Internal event: This log entry is a continuation from the preceding extended error information entry.
  Extended information:
  Extended Error Parameters: 
  0
  Parameter 1: 
  (NULL)
  Parameter 2: 
  (NULL)
  Parameter 3: 
  (NULL)
  Parameter 4: 
  (NULL)
  Parameter 5: 
  (null)
  Parameter 6: 
  (null)
  Parameter 7: 
  (null)
  08/13/2014 21:15:04 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1962
  Internal event: The local directory service received an exception from a remote procedure call (RPC) connection. Extended error information is not available.
  directory service: 
  gptsserver1.gpts.biz
  Additional Data
  Error value: 
  Access is denied. (5)
  08/13/2014 21:15:04 [INFO] EVENTLOG (Error): NTDS Replication / Setup : 1125
  The Active Directory Domain Services Installation Wizard (Dcpromo) was unable to establish connection with the following domain controller.
  Domain controller:
  gptsserver1.gpts.biz
  Additional Data
  Error value:
  5 Access is denied.
  08/13/2014 21:15:20 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1963
  Internal event: The following local directory service received an exception from a remote procedure call (RPC) connection. Extensive RPC information was requested. This is intermediate information and might not contain a possible cause.
  Process ID: 
  488
  Reported error information:
  Error value: 
  Access is denied. (5)
  directory service: 
  gptsserver1.gpts.biz
  Extensive error information:
  Error value: 
  Access is denied. 5
  directory service: 
  gptsserver2
  Additional Data
  Internal ID: 
  5000dfc
  08/13/2014 21:15:20 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1961
  Internal event: This log entry is a continuation from the preceding extended error information entry on the following error and directory service.
  Extended information:
  Error value: 
  Access is denied. (5)
  directory service: 
  gptsserver2
  Supplemental information:
  Detection location: 
  1461
  Generating component: 
  RPC Runtime
  Time at directory service: 
  2014-08-14 04:15:20
  Additional Data
  Error value: 
  Access is denied. (5)
  08/13/2014 21:15:20 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 2839
  Internal event: This log entry is a continuation from the preceding extended error information entry.
  Extended information:
  Extended Error Parameters: 
  0
  Parameter 1: 
  (NULL)
  Parameter 2: 
  (NULL)
  Parameter 3: 
  (NULL)
  Parameter 4: 
  (NULL)
  Parameter 5: 
  (null)
  Parameter 6: 
  (null)
  Parameter 7: 
  (null)
  08/13/2014 21:15:20 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1962
  Internal event: The local directory service received an exception from a remote procedure call (RPC) connection. Extended error information is not available.
  directory service: 
  gptsserver1.gpts.biz
  Additional Data
  Error value: 
  Access is denied. (5)
  08/13/2014 21:15:20 [INFO] EVENTLOG (Error): NTDS Replication / Setup : 1125
  The Active Directory Domain Services Installation Wizard (Dcpromo) was unable to establish connection with the following domain controller.
  Domain controller:
  gptsserver1.gpts.biz
  Additional Data
  Error value:
  5 Access is denied.
  08/13/2014 21:15:52 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1963
  Internal event: The following local directory service received an exception from a remote procedure call (RPC) connection. Extensive RPC information was requested. This is intermediate information and might not contain a possible cause.
  Process ID: 
  488
  Reported error information:
  Error value: 
  Access is denied. (5)
  directory service: 
  gptsserver1.gpts.biz
  Extensive error information:
  Error value: 
  Access is denied. 5
  directory service: 
  gptsserver2
  Additional Data
  Internal ID: 
  5000dfc
  08/13/2014 21:15:52 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1961
  Internal event: This log entry is a continuation from the preceding extended error information entry on the following error and directory service.
  Extended information:
  Error value: 
  Access is denied. (5)
  directory service: 
  gptsserver2
  Supplemental information:
  Detection location: 
  1461
  Generating component: 
  RPC Runtime
  Time at directory service: 
  2014-08-14 04:15:52
  Additional Data
  Error value: 
  Access is denied. (5)
  08/13/2014 21:15:52 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 2839
  Internal event: This log entry is a continuation from the preceding extended error information entry.
  Extended information:
  Extended Error Parameters: 
  0
  Parameter 1: 
  (NULL)
  Parameter 2: 
  (NULL)
  Parameter 3: 
  (NULL)
  Parameter 4: 
  (NULL)
  Parameter 5: 
  (null)
  Parameter 6: 
  (null)
  Parameter 7: 
  (null)
  08/13/2014 21:15:52 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1962
  Internal event: The local directory service received an exception from a remote procedure call (RPC) connection. Extended error information is not available.
  directory service: 
  gptsserver1.gpts.biz
  Additional Data
  Error value: 
  Access is denied. (5)
  08/13/2014 21:15:52 [INFO] EVENTLOG (Error): NTDS Replication / Setup : 1125
  The Active Directory Domain Services Installation Wizard (Dcpromo) was unable to establish connection with the following domain controller.
  Domain controller:
  gptsserver1.gpts.biz
  Additional Data
  Error value:
  5 Access is denied.
  08/13/2014 21:16:56 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1963
  Internal event: The following local directory service received an exception from a remote procedure call (RPC) connection. Extensive RPC information was requested. This is intermediate information and might not contain a possible cause.
  Process ID: 
  488
  Reported error information:
  Error value: 
  Access is denied. (5)
  directory service: 
  gptsserver1.gpts.biz
  Extensive error information:
  Error value: 
  Access is denied. 5
  directory service: 
  gptsserver2
  Additional Data
  Internal ID: 
  5000dfc
  08/13/2014 21:16:56 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1961
  Internal event: This log entry is a continuation from the preceding extended error information entry on the following error and directory service.
  Extended information:
  Error value: 
  Access is denied. (5)
  directory service: 
  gptsserver2
  Supplemental information:
  Detection location: 
  1461
  Generating component: 
  RPC Runtime
  Time at directory service: 
  2014-08-14 04:16:56
  Additional Data
  Error value: 
  Access is denied. (5)
  08/13/2014 21:16:56 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 2839
  Internal event: This log entry is a continuation from the preceding extended error information entry.
  Extended information:
  Extended Error Parameters: 
  0
  Parameter 1: 
  (NULL)
  Parameter 2: 
  (NULL)
  Parameter 3: 
  (NULL)
  Parameter 4: 
  (NULL)
  Parameter 5: 
  (null)
  Parameter 6: 
  (null)
  Parameter 7: 
  (null)
  08/13/2014 21:16:56 [INFO] EVENTLOG (Error): NTDS Replication / DS RPC Client : 1962
  Internal event: The local directory service received an exception from a remote procedure call (RPC) connection. Extended error information is not available.
  directory service: 
  gptsserver1.gpts.biz
  Additional Data
  Error value: 
  Access is denied. (5)
  08/13/2014 21:16:56 [INFO] EVENTLOG (Error): NTDS Replication / Setup : 1125
  The Active Directory Domain Services Installation Wizard (Dcpromo) was unable to establish connection with the following domain controller.
  Domain controller:
  gptsserver1.gpts.biz
  Additional Data
  Error value:
  5 Access is denied.
  John Grace

• Old domain controller crashed. Created a new one..having to rejoin computers to domain..easier way to do this?

  I had a single domain controller. It has crashed. I had to create a new domain controller with all the same existing information from the old server..same domain name, server name, and IP. Im having issues with desktops. Everything is setup on the server.
  The desktops however I need to rejoin them to the domain and get them to start synching properly. But when I do this, the profile is resetting itself to a new profile. How can I keep the same profile with the same documents. Or am I out of luck on this and
  have to recreate the profiles. I have had to recreate the profiles so far, but do not want to do this for about 5 computers because there is way to much software and work that will need to be involved in moving these profiles. Any shortcut for these computers
  to automatically see this domain server and synch to it? Everything is identical to the old server. The old server is inaccessible.
  The new servers domain name is the same, IP address is the same, and computer name is the same. AD running with all identical information. DNS installed.
  Let me know if anyone has some advice on here.

  There's unfortunately a lot more involved than names, domain names and IP addresses.
  Most of those are linked to long numbers such as "SID"s and "GUID"s in the background that actually govern the interaction between clients and servers (authentication for one).
  Without the same SIDs and GUID, I fear there will be no end to your problems.
  That's why either a second domain controller or a good backup are so important. 
  Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you.

• Is it possible to bypass Domain Controller Promotion (dcpromo) Hard Drive Check? My Server has an embedded drive instead of a SATA port. (emmc)

  I have a small computer with just an embedded drive instead of a sata port. It seemed perfect for a small domain controller, since it has 32G's which is more than enough space, and with a gigabit Ethernet, and 1.6Ghz dual core cpu, seemed more than enough
  for what I needed.
  Windows 2012, or Windows Server Technical Preview, both install fine on it, but when I run dcpromo to create the domain It fails on selecting the location for files. The error is that the path is not a hard drive. The machine only has USB ports so I can't
  add a SATA drive just to store these logs/configs, even if I wanted to.  
  The actual computer I was trying to use: http://www.ecs.com.tw/LIVA/
  Thanks for any help.

  On the Windows Server Technical Preview, 
  Install-ADDSForest -SkipPreChecks -DomainName DOMAIN.CONTOSO.COM -DomainMode Win2008 -ForestMode Win2008R2 –DatabasePath "C:\Windows\NTDS" –SYSVOLPath "C:\Windows\NTDS" –LogPath "C:\Windows\NTDS\Logs"
  gives me the error "No NTFS 5 drives exit." (note exit, not exist)
  I'll reinstalling windows 2012 and see if I get a different message there.
  This was just a standard install, so the drive is definitely NTFS.