question

LazherYAAKOUBI-7887 avatar image
0 Votes"
LazherYAAKOUBI-7887 asked DSPatrick answered

ADLDS Replication Issue

Hi,

I have a problem in ADLDS replication with the error:

C:\Users\admin>Repadmin /showreps Servername:50009
Default-First-Site-Name\adlds-proj-Servername$GED00
DSA Options: (none)
Site Options: (none)
DSA object GUID: b76e9d0f-b80b-42a5-a4be-c039b7349e9b
DSA invocationID: 4d964e55-e5c7-4a4f-8573-e40eb45f74d8
Source: Default-First-Site-Name\Servername$GED009
72 CONSECUTIVE FAILURES since 2021-06-20 19:20:36
Last error: -2146893022 (0x80090322):
The target principal name is incorrect.
Naming Context: CN=Configuration,CN={B113BCF3-6CBE-4E06-9B0D-A4D38D7561CC}
Source: Default-First-Site-Name\Servername$GED009
WARNING: KCC could not add this REPLICA LINK due to error.
Naming Context: CN=Schema,CN=Configuration,CN={B113BCF3-6CBE-4E06-9B0D-A4D38D7561CC}
Source: Default-First-Site-Name\Servername$GED009
WARNING: KCC could not add this REPLICA LINK due to error.*


I have checked the SPN and it is correct:

Registered ServicePrincipalNames for CN=Servername,OU=domainname Adlds,OU=domainname Computers,DC=,DC=local:
ldap/Servername.domainname.local:50998
ldap/Servername:50998
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername.domainname.local:50998
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername:50998
ldap/Servername.domainname.local:50100
ldap/Servername:50100
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername.domainname.local:50100
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername:50100
ldap/Servername.domainname.local:50097
ldap/Servername:50097
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername.domainname.local:50097
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername:50097
ldap/Servername.domainname.local:50296
ldap/ADLDS-VM01:50296
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername.domainname.local:50296
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername:50296
ldap/Servername.domainname.local:50111
ldap/Servername:50111
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername.domainname.local:50111
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername:50111
ldap/Servername.domainname.local:50999
ldap/Servername:50999
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername.domainname.local:50999
E3514235-4B06-11D1-AB04-00C04FC2DCD2-ADAM/Servername:50999
WSMAN/Servername
WSMAN/Servername.domainname.local
TERMSRV/Servername
TERMSRV/Servername.domainname.local
RestrictedKrbHost/Servername
HOST/Servername
RestrictedKrbHost/Servername.domainname.local
HOST/Servername.domainname.local


Event ID: 1925

**The attempt to establish a replication link for the following writable directory partition failed.


Directory partition:
CN=Schema,CN=Configuration,CN={B113BCF3-6CBE-4E06-9B0D-A4D38D7561CC}
Source directory service:
CN=NTDS Settings,CN=Servername$GED004REPLI,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,CN={B113BCF3-6CBE-4E06-9B0D-A4D38D7561CC}
Source directory service address:
Servername.domainname.local:fb0277d3-38d2-4711-8246-f000eee32ce1
Intersite transport (if any):


This directory service will be unable to replicate with the source directory service until this problem is corrected.


User Action
Verify if the source directory service is accessible or network connectivity is available.


Additional Data
Error value:
1772 The list of RPC servers available for the binding of auto handles has been exhausted.**

Help!!


thnx.

windows-active-directory
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Please run;

Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log
repadmin /showrepl >C:\repl.txt
ipconfig /all > C:\dc1.txt
ipconfig /all > C:\dc2.txt
ipconfig /all > C:\dc3.txt

then put unzipped text files up on OneDrive and share a link.



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

VickyWang-MFST avatar image
0 Votes"
VickyWang-MFST answered

Hi,

This is a comminication issue and more related to DNS problem, please check the DNS pointing is correct on all DC. You may refer this article:
Best practices for DNS client settings on DC and domain members.
http://abhijitw.wordpress.com/2012/03/03/best-practices-for-dns-client-settings-on-domain-controller/

Once you are done with above, run “ipconfig /flushdns & ipconfig /registerdns“, restart DNS server and NETLOGON service on each DC.

For Troubleshooting AD Replication error 1753 see this:
There are no more endpoints available from the endpoint mapper.
http://support.microsoft.com/kb/2089874

Please note:
IPv6 should not be disabled on DC’s NIC card. Set it to “obtain IPV6 address automatically” and “obtain DNS server address automatically”

Disable windows filrewall, security application and antivirus application.

On 2003 DC, run services.msc > Windows firewall > stop and disable > apply.
On 2008 DC, follow this: http://technet.microsoft.com/en-us/library/cc766337(v=ws.10).aspx
Once done with above, run dcdiag /q and repadmin /replsum, if still issue re-occurs post dcdiag /q and ipconfig /all result.

Best regards,
Vicky

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

VickyWang-MFST avatar image
0 Votes"
VickyWang-MFST answered

Hi,

Welcome to share your current situation if there are any updates.

Please feel free to let us know if you need further assistance.


Best Regards,
Vicky

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

VickyWang-MFST avatar image
0 Votes"
VickyWang-MFST answered

Hi,

Welcome to share your current situation if there are any updates.

Please feel free to let us know if you need further assistance.


Best Regards,
Vicky

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

VickyWang-MFST avatar image
0 Votes"
VickyWang-MFST answered

Hi,

Welcome to share your current situation if there are any updates.

Please feel free to let us know if you need further assistance.


Best Regards,
Vicky

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

VickyWang-MFST avatar image
0 Votes"
VickyWang-MFST answered

Hi,

Welcome to share your current situation if there are any updates.

Please feel free to let us know if you need further assistance.


Best Regards,
Vicky

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Just checking if there's any progress or updates?

--please don't forget to upvote and Accept as answer if the reply is helpful--



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.