3.4.4.2.3.2.11 ActiveDirectoryPartition/ReadOnlyReplicaDirectoryServer

The ReadOnlyReplicaDirectoryServer element contains the FQDNs (1) of the read-only directory servers in the domain.

 <xs:element
   name="ReadOnlyReplicaDirectoryServer" nillable="true"
   type="sera:ArrayOfstring" />

The ReadOnlyReplicaDirectoryServer element is populated from the server!dnsHostName attribute on the parent object of all nTDSDSA objects ([MS-ADTS] section 6.1.1.2.2.1.2.1.1) which meet the following criteria:

  • The objectClass attribute of the object is nTDSSDA and the client has access rights to read the attribute.

  • The nTDSDSA!msDS-hasDomainNCs attribute is equal to the rootDSE!defaultNamingContext attribute ([MS-ADTS] section 3.1.1.3.2.3) and the client has access rights to read the attributes.

  • The nTDSDSA!objectCategory attribute ([MS-ADTS] section 6.1.6.7.6) refers to the classSchema object for the nTDSDSRO class and the client has access rights to read the attribute.

  • The server!dnsHostName attribute is present on the parent of the nTDSDSA object and the client has access rights to read the attribute.

If no nTDSDSA objects satisfy the above requirements, the server returns a null ActiveDirectoryPartition/ReadOnlyReplicaDirectoryServer element.