Hello all,
I've had a problem with joining new computers to domain. It was working fine until recently (few weeks back it was still ok) - I'm not aware of anything that was changed since then, except that the primary DC was restarted. The Priamry DC has been moved to AZURE and two on-site DCs were shut down - this was done several months ago. From what I know, those old on-site DCs were not demoted yet (just in case they will be required again to turn on). However, now I'm experiencing this issue, and I kind of think it could be the root cause here? In the new DC in Azure I see:
WARNING about FSMO - "This server is the owner of the following FSMO role, but does not consider it valid. For the partition which contains the FSMO, this server has not replicated successfully with any of its partners since this server has been restarted. Replication errors are preventing validation of this role"... etc....
ERROR - "The request for a new account-identifier pool failed. The operation will be retried until the request succeeds. The error is
" The role owner attribute could not be read."
from what I've read so far, non-working replications may be the probelm that I have to fix to get it working properly? If so, can I just turn on the old on-prem DCs and demote them to resolve this Replication issues? Those servers were off for around 5 months now...
Just FYI - the connectivity seems to be working fine between the computer and DC in Azure... I can ping it with no issue..