question

DuaneLMorris-0386 avatar image
0 Votes"
DuaneLMorris-0386 asked DuaneLMorris-0386 answered

introducing server 2019 into existing AD

AD Functional level at 2012R2
GC's are 2012R2 and one 2016
Added 2019 server, did dcpromo and said successful, but won't sync, dns, etc.

Errors with: the replication operation failed because of a schema mismatch between the servers involved

Ideas how to get around. We noticed that when trying to introduce 2016 RODC and 2019 RODC and now 2019 GC

windows-active-directorywindows-server-2019
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

The two prerequisites to introducing the first 2019 domain controller are that domain functional level needs to be 2008 or higher and older sysvol FRS replication needs to have been migrated to DFSR
https://techcommunity.microsoft.com/t5/Storage-at-Microsoft/Streamlined-Migration-of-FRS-to-DFSR-SYSVOL/ba-p/425405

I'd use dcdiag / repadmin tools to verify health correcting all errors found before starting any operations. Then stand up the new 2019, patch it fully, license it, join existing domain, add active directory domain services, promote it also making it a GC (recommended), transfer FSMO roles over (optional), transfer pdc emulator role (optional), use dcdiag / repadmin tools to again verify health, when all is good you can decommission / demote old one.


--please don't forget to upvote and Accept as answer if the reply is helpful--





5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DuaneLMorris-0386 avatar image
0 Votes"
DuaneLMorris-0386 answered DSPatrick commented

Yeah did the FRS to DFSR migration, ran AD Replication tool, dcdiag, etc and not a single error. Introduced 2019 and that when things start erroring.

Dfsrmig /getmigrationstate

The following domain controllers have not reached Global state ('Eliminated'):

Domain Controller (Local Migration State) - DC Type



50CAL ('Start') - Writable DC

Migration has not yet reached a consistent state on all domain controllers.
State information might be stale due to Active Directory Domain Services latency.

· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

I'd probably remove this one, perform cleanup (if necessary)
https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/ad-ds-metadata-cleanup
https://techcommunity.microsoft.com/t5/itops-talk-blog/step-by-step-manually-removing-a-domain-controller-server/ba-p/280564

Then check results again. Please run;

Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log
repadmin /showrepl >C:\repl.txt
ipconfig /all > C:\dc1.txt
ipconfig /all > C:\dc2.txt
ipconfig /all > C:\dc3.txt
(etc. as other DC's exist)

then put unzipped text files up on OneDrive and share a link.



0 Votes 0 ·

Will remove from AD, Cleanup AD and start over. :(

0 Votes 0 ·
DSPatrick avatar image DSPatrick DuaneLMorris-0386 ·

Sounds good, you're welcome.


--please don't forget to Accept as answer if the reply is helpful--


0 Votes 0 ·
DuaneLMorris-0386 avatar image
0 Votes"
DuaneLMorris-0386 answered

In fact will not even allow you to promote if FDSR is not completed

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DuaneLMorris-0386 avatar image
0 Votes"
DuaneLMorris-0386 answered

God I hate stepping backwards!! Removed the 2019 Server from AD and everything back and running. Every test I run comes back without errors.
Tried using my SA Support for this and wound up with a non-english speaking tech that had no clue!! 500K per year for our EA and Support is worthless!

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.