Forum Search:
Forum.Brain-Cluster.com: Brain Cluster Technical Forum
Ultimate forum for Technical Discussions

Home » Microsoft » Windows Server » Active Directory » RODC replicating to a failed 2008 DC !!!
RODC replicating to a failed 2008 DC !!! [message #160744] Mon, 07 September 2009 07:13 Go to next message
Ammar  is currently offline Ammar
Messages: 2
Registered: September 2009
Junior Member
I have an RODC replicating from a win 2008 wrtable DC which complete hardware
faced failure

We installed a new writable 2008 DC.

How can we make the RODC to replicate from that new DC ?? it is still
pointing to the old failed DC !!!!
Re: RODC replicating to a failed 2008 DC !!! [message #160755 is a reply to message #160744] Mon, 07 September 2009 12:34 Go to previous messageGo to next message
rishicool2002  is currently offline rishicool2002  United States
Messages: 4
Registered: July 2009
Junior Member
How many total number of domain controller do you have in the domain?
excluding RODC


--
rishicool2002
------------------------------------------------------------ ------------
rishicool2002's Profile: http://forums.techarena.in/members/114615.htm
View this thread: http://forums.techarena.in/active-directory/1243056.htm

http://forums.techarena.in
Re: RODC replicating to a failed 2008 DC !!! [message #160771 is a reply to message #160744] Mon, 07 September 2009 23:59 Go to previous messageGo to next message
meiweb  is currently offline meiweb  Germany
Messages: 2225
Registered: September 2009
Senior Member
Hello Ammar,

How many DCs in total do you have and which OS version? How did you install
the new DC, from backup or from scratch?

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> I have an RODC replicating from a win 2008 wrtable DC which complete
> hardware faced failure
>
> We installed a new writable 2008 DC.
>
> How can we make the RODC to replicate from that new DC ?? it is still
> pointing to the old failed DC !!!!
>
Re: RODC replicating to a failed 2008 DC !!! [message #160782 is a reply to message #160744] Tue, 08 September 2009 06:45 Go to previous messageGo to next message
pbbergs  is currently offline pbbergs  United States
Messages: 1024
Registered: July 2009
Senior Member
The KCC should find the new 2008 RWDC. Since it is 2008 and if you deleted
the DC from the ADUC, metedata cleanup should happen automatically. My
guess is you didn't give it enough time to rebuild the topology for you.

--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4
Microsoft's Thrive IT Pro of the Month - June 2009

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup This
posting is provided "AS IS" with no warranties, and confers no rights.

"Ammar" <Ammar@discussions.microsoft.com> wrote in message
news:7CAA7D40-22B5-483A-9CCD-C6CB394639FE@microsoft.com...
>I have an RODC replicating from a win 2008 wrtable DC which complete
>hardware
> faced failure
>
> We installed a new writable 2008 DC.
>
> How can we make the RODC to replicate from that new DC ?? it is still
> pointing to the old failed DC !!!!
Re: RODC replicating to a failed 2008 DC !!! [message #160789 is a reply to message #160771] Tue, 08 September 2009 07:34 Go to previous messageGo to next message
Ammar  is currently offline Ammar
Messages: 2
Registered: September 2009
Junior Member
Hi dear:

We have site 1 with RODC DC (Win 2008 STD SP1) only . I have another site
with one only writaable 2008 DC STD SP1 .

The wrtiable DC is crashed. i installed another one . RODC is still trying
to replicate from the old crashed DC







"Meinolf Weber [MVP-DS]" wrote:

> Hello Ammar,
>
> How many DCs in total do you have and which OS version? How did you install
> the new DC, from backup or from scratch?
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and confers
> no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>
> > I have an RODC replicating from a win 2008 wrtable DC which complete
> > hardware faced failure
> >
> > We installed a new writable 2008 DC.
> >
> > How can we make the RODC to replicate from that new DC ?? it is still
> > pointing to the old failed DC !!!!
> >
>
>
>
Re: RODC replicating to a failed 2008 DC !!! [message #160793 is a reply to message #160789] Tue, 08 September 2009 07:45 Go to previous messageGo to next message
meiweb  is currently offline meiweb  Germany
Messages: 2225
Registered: September 2009
Senior Member
Hello Ammar,

As Paul mentioned it should be done find the other DC automatic. But how
did you rebuild the 2008 DC, from scratch?

Did you add it to the existing domain? Or did you create a new domain with
the same name?

Is the RODC listed in the RWDC AD UC domain controllers OU?

How is DNS configured in your domain, are both DCs also DNS server?

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Hi dear:
>
> We have site 1 with RODC DC (Win 2008 STD SP1) only . I have another
> site with one only writaable 2008 DC STD SP1 .
>
> The wrtiable DC is crashed. i installed another one . RODC is still
> trying to replicate from the old crashed DC
>
> "Meinolf Weber [MVP-DS]" wrote:
>
>> Hello Ammar,
>>
>> How many DCs in total do you have and which OS version? How did you
>> install the new DC, from backup or from scratch?
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers
>> no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>> I have an RODC replicating from a win 2008 wrtable DC which complete
>>> hardware faced failure
>>>
>>> We installed a new writable 2008 DC.
>>>
>>> How can we make the RODC to replicate from that new DC ?? it is
>>> still pointing to the old failed DC !!!!
>>>
Re: RODC replicating to a failed 2008 DC !!! [message #160803 is a reply to message #160789] Tue, 08 September 2009 13:55 Go to previous messageGo to next message
pbbergs  is currently offline pbbergs  United States
Messages: 1024
Registered: July 2009
Senior Member
If this was the only writable DC in your domain, if you didn't restore from
a backup this will never work. Your RODC is inbound only and since you lost
your only writable dc you have lost this domain. There is nothing that can
be done unless you can recover from tape. All users that are currently
allowed to authenticate (Cached passwords) will slowly wither away and you
will lose it all.

--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4
Microsoft's Thrive IT Pro of the Month - June 2009

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup This
posting is provided "AS IS" with no warranties, and confers no rights.

"Ammar" <Ammar@discussions.microsoft.com> wrote in message
news:74852630-8829-4303-90C5-9AA61053455E@microsoft.com...
> Hi dear:
>
> We have site 1 with RODC DC (Win 2008 STD SP1) only . I have another site
> with one only writaable 2008 DC STD SP1 .
>
> The wrtiable DC is crashed. i installed another one . RODC is still trying
> to replicate from the old crashed DC
>
>
>
>
>
>
>
> "Meinolf Weber [MVP-DS]" wrote:
>
>> Hello Ammar,
>>
>> How many DCs in total do you have and which OS version? How did you
>> install
>> the new DC, from backup or from scratch?
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers
>> no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>
>>
>> > I have an RODC replicating from a win 2008 wrtable DC which complete
>> > hardware faced failure
>> >
>> > We installed a new writable 2008 DC.
>> >
>> > How can we make the RODC to replicate from that new DC ?? it is still
>> > pointing to the old failed DC !!!!
>> >
>>
>>
>>
Re: RODC replicating to a failed 2008 DC !!! [message #160812 is a reply to message #160803] Tue, 08 September 2009 19:15 Go to previous messageGo to next message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"Paul Bergson [MVP-DS]" <pbbergs@no_spammsn.com> wrote in message
news:unRUZ5LMKHA.4964@TK2MSFTNGP06.phx.gbl...
> If this was the only writable DC in your domain, if you didn't restore
> from a backup this will never work. Your RODC is inbound only and since
> you lost your only writable dc you have lost this domain. There is
> nothing that can be done unless you can recover from tape. All users that
> are currently allowed to authenticate (Cached passwords) will slowly
> wither away and you will lose it all.

Paul, and Meinolf, I agree.

It *appears* that a new DC was built from scratch, and even if built from
scratch using the same domain name and the same DC computername, it won't
work because it's a completely different domain.

--
Ace

This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.

Please reply back to the newsgroup or forum for collaboration benefit among
responding engineers, and to help others benefit from your resolution.

Ace Fekay, MCT, MCTS Exchange, MCSE, MCSA 2003 & 2000, MCSA Messaging
Microsoft Certified Trainer

For urgent issues, please contact Microsoft PSS directly. Please check
http://support.microsoft.com for regional support phone numbers.
Re: RODC replicating to a failed 2008 DC !!! [message #160842 is a reply to message #160812] Wed, 09 September 2009 06:21 Go to previous messageGo to next message
pbbergs  is currently offline pbbergs  United States
Messages: 1024
Registered: July 2009
Senior Member
Yup, stressful event. Need to get backups.

--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4
Microsoft's Thrive IT Pro of the Month - June 2009

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup This
posting is provided "AS IS" with no warranties, and confers no rights.

"Ace Fekay [MCT]" <aceman@mvps.RemoveThisPart.org> wrote in message
news:OIL3QsOMKHA.220@TK2MSFTNGP02.phx.gbl...
> "Paul Bergson [MVP-DS]" <pbbergs@no_spammsn.com> wrote in message
> news:unRUZ5LMKHA.4964@TK2MSFTNGP06.phx.gbl...
>> If this was the only writable DC in your domain, if you didn't restore
>> from a backup this will never work. Your RODC is inbound only and since
>> you lost your only writable dc you have lost this domain. There is
>> nothing that can be done unless you can recover from tape. All users
>> that are currently allowed to authenticate (Cached passwords) will slowly
>> wither away and you will lose it all.
>
> Paul, and Meinolf, I agree.
>
> It *appears* that a new DC was built from scratch, and even if built from
> scratch using the same domain name and the same DC computername, it won't
> work because it's a completely different domain.
>
> --
> Ace
>
> This posting is provided "AS-IS" with no warranties or guarantees and
> confers no rights.
>
> Please reply back to the newsgroup or forum for collaboration benefit
> among responding engineers, and to help others benefit from your
> resolution.
>
> Ace Fekay, MCT, MCTS Exchange, MCSE, MCSA 2003 & 2000, MCSA Messaging
> Microsoft Certified Trainer
>
> For urgent issues, please contact Microsoft PSS directly. Please check
> http://support.microsoft.com for regional support phone numbers.
>
>
Re: RODC replicating to a failed 2008 DC !!! [message #160865 is a reply to message #160803] Wed, 09 September 2009 19:00 Go to previous messageGo to next message
carl  is currently offline carl
Messages: 29
Registered: September 2009
Junior Member
Its always recommended to atleast have 2 RWDC for redundancy purposes.

In case there are other 2003 DC's in the same site as the RWDC, rebuilding
the failed RWDC from scratch with the same name is going to work?

In such a case where the only rwdc is not available and other 2k3 dc's are
available, what all functions of the RODC are effected?

Regards


"Paul Bergson [MVP-DS]" <pbbergs@no_spammsn.com> wrote in message
news:unRUZ5LMKHA.4964@TK2MSFTNGP06.phx.gbl...
> If this was the only writable DC in your domain, if you didn't restore
> from a backup this will never work. Your RODC is inbound only and since
> you lost your only writable dc you have lost this domain. There is
> nothing that can be done unless you can recover from tape. All users that
> are currently allowed to authenticate (Cached passwords) will slowly
> wither away and you will lose it all.
>
> --
> Paul Bergson
> MVP - Directory Services
> MCTS, MCT, MCSE, MCSA, Security+, BS CSci
> 2008, 2003, 2000 (Early Achiever), NT4
> Microsoft's Thrive IT Pro of the Month - June 2009
>
> http://www.pbbergs.com
>
> Please no e-mails, any questions should be posted in the NewsGroup This
> posting is provided "AS IS" with no warranties, and confers no rights.
>
> "Ammar" <Ammar@discussions.microsoft.com> wrote in message
> news:74852630-8829-4303-90C5-9AA61053455E@microsoft.com...
>> Hi dear:
>>
>> We have site 1 with RODC DC (Win 2008 STD SP1) only . I have another site
>> with one only writaable 2008 DC STD SP1 .
>>
>> The wrtiable DC is crashed. i installed another one . RODC is still
>> trying
>> to replicate from the old crashed DC
>>
>>
>>
>>
>>
>>
>>
>> "Meinolf Weber [MVP-DS]" wrote:
>>
>>> Hello Ammar,
>>>
>>> How many DCs in total do you have and which OS version? How did you
>>> install
>>> the new DC, from backup or from scratch?
>>>
>>> Best regards
>>>
>>> Meinolf Weber
>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>> confers
>>> no rights.
>>> ** Please do NOT email, only reply to Newsgroups
>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>
>>>
>>> > I have an RODC replicating from a win 2008 wrtable DC which complete
>>> > hardware faced failure
>>> >
>>> > We installed a new writable 2008 DC.
>>> >
>>> > How can we make the RODC to replicate from that new DC ?? it is still
>>> > pointing to the old failed DC !!!!
>>> >
>>>
>>>
>>>
>
>
Re: RODC replicating to a failed 2008 DC !!! [message #160871 is a reply to message #160865] Wed, 09 September 2009 21:07 Go to previous messageGo to next message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"Carl" <Carl@live.com> wrote in message
news:uI3ZaIbMKHA.1372@TK2MSFTNGP02.phx.gbl...

If you have a failed DC, and you cannot bring it back online, then there a
number of tasks you must perform before building a new one iwth the same
name and IP. First you must seize the FSMO roles to one of the other
existing DCs (not the RODC). Then you must run a Metadata Cleanup to remove
all references of the gonner DC from AD, as well as delete it out of Sites
and Services. Then allow replication to occur for these changes to be made
aware on all DCs (including the RODC). Then rebuild.

You can view the replication partnerships in Sites and Services to see which
DC the RODC is has a connection object. After cleaning up AD of the old DC,
you can force the KCC to re-evaluate the AD infrastructure to re-create a
suitable connection object automatically.

The following should help guide you.

Make sure all machines are registered in DNS, seize the 5 FSMO roles.
Using Ntdsutil.exe to transfer or seize FSMO roles to a domain controller
http://support.microsoft.com/kb/255504

If it is not already a GC, make the other DC a GC (Global Catalog):
How to create or move a global catalog in Windows Server 2003, Windows 2000,
or Small Business Server 2000 (It's the same with Windows 2008):
http://support.microsoft.com/?id=313994

Cleanup (Metadata Cleanup) the AD database from the crashed DC - How to
remove data in Active Directory after an unsuccessful domain controller
demotion
http://support.microsoft.com/kb/216498

Ace



> Its always recommended to atleast have 2 RWDC for redundancy purposes.
>
> In case there are other 2003 DC's in the same site as the RWDC, rebuilding
> the failed RWDC from scratch with the same name is going to work?
>
> In such a case where the only rwdc is not available and other 2k3 dc's are
> available, what all functions of the RODC are effected?
>
> Regards
>
>
> "Paul Bergson [MVP-DS]" <pbbergs@no_spammsn.com> wrote in message
> news:unRUZ5LMKHA.4964@TK2MSFTNGP06.phx.gbl...
>> If this was the only writable DC in your domain, if you didn't restore
>> from a backup this will never work. Your RODC is inbound only and since
>> you lost your only writable dc you have lost this domain. There is
>> nothing that can be done unless you can recover from tape. All users
>> that are currently allowed to authenticate (Cached passwords) will slowly
>> wither away and you will lose it all.
>>
>> --
>> Paul Bergson
>> MVP - Directory Services
>> MCTS, MCT, MCSE, MCSA, Security+, BS CSci
>> 2008, 2003, 2000 (Early Achiever), NT4
>> Microsoft's Thrive IT Pro of the Month - June 2009
>>
>> http://www.pbbergs.com
>>
>> Please no e-mails, any questions should be posted in the NewsGroup This
>> posting is provided "AS IS" with no warranties, and confers no rights.
>>
>> "Ammar" <Ammar@discussions.microsoft.com> wrote in message
>> news:74852630-8829-4303-90C5-9AA61053455E@microsoft.com...
>>> Hi dear:
>>>
>>> We have site 1 with RODC DC (Win 2008 STD SP1) only . I have another
>>> site
>>> with one only writaable 2008 DC STD SP1 .
>>>
>>> The wrtiable DC is crashed. i installed another one . RODC is still
>>> trying
>>> to replicate from the old crashed DC
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> "Meinolf Weber [MVP-DS]" wrote:
>>>
>>>> Hello Ammar,
>>>>
>>>> How many DCs in total do you have and which OS version? How did you
>>>> install
>>>> the new DC, from backup or from scratch?
>>>>
>>>> Best regards
>>>>
>>>> Meinolf Weber
>>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>>> confers
>>>> no rights.
>>>> ** Please do NOT email, only reply to Newsgroups
>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>
>>>>
>>>> > I have an RODC replicating from a win 2008 wrtable DC which complete
>>>> > hardware faced failure
>>>> >
>>>> > We installed a new writable 2008 DC.
>>>> >
>>>> > How can we make the RODC to replicate from that new DC ?? it is still
>>>> > pointing to the old failed DC !!!!
>>>> >
>>>>
>>>>
>>>>
>>
>>
>
>
Re: RODC replicating to a failed 2008 DC !!! [message #160887 is a reply to message #160865] Thu, 10 September 2009 06:17 Go to previous messageGo to next message
pbbergs  is currently offline pbbergs  United States
Messages: 1024
Registered: July 2009
Senior Member
Bringing a same named 2003 DC online before proper cleanup won't work as
expected, Ace has given clear concise details. New to Windows 2008, if you
delete the failed DC via ADUC, metadata cleanup happens w/o user
intervention.

--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4
Microsoft's Thrive IT Pro of the Month - June 2009

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup This
posting is provided "AS IS" with no warranties, and confers no rights.

"Carl" <Carl@live.com> wrote in message
news:uI3ZaIbMKHA.1372@TK2MSFTNGP02.phx.gbl...
> Its always recommended to atleast have 2 RWDC for redundancy purposes.
>
> In case there are other 2003 DC's in the same site as the RWDC, rebuilding
> the failed RWDC from scratch with the same name is going to work?
>
> In such a case where the only rwdc is not available and other 2k3 dc's are
> available, what all functions of the RODC are effected?
>
> Regards
>
>
> "Paul Bergson [MVP-DS]" <pbbergs@no_spammsn.com> wrote in message
> news:unRUZ5LMKHA.4964@TK2MSFTNGP06.phx.gbl...
>> If this was the only writable DC in your domain, if you didn't restore
>> from a backup this will never work. Your RODC is inbound only and since
>> you lost your only writable dc you have lost this domain. There is
>> nothing that can be done unless you can recover from tape. All users
>> that are currently allowed to authenticate (Cached passwords) will slowly
>> wither away and you will lose it all.
>>
>> --
>> Paul Bergson
>> MVP - Directory Services
>> MCTS, MCT, MCSE, MCSA, Security+, BS CSci
>> 2008, 2003, 2000 (Early Achiever), NT4
>> Microsoft's Thrive IT Pro of the Month - June 2009
>>
>> http://www.pbbergs.com
>>
>> Please no e-mails, any questions should be posted in the NewsGroup This
>> posting is provided "AS IS" with no warranties, and confers no rights.
>>
>> "Ammar" <Ammar@discussions.microsoft.com> wrote in message
>> news:74852630-8829-4303-90C5-9AA61053455E@microsoft.com...
>>> Hi dear:
>>>
>>> We have site 1 with RODC DC (Win 2008 STD SP1) only . I have another
>>> site
>>> with one only writaable 2008 DC STD SP1 .
>>>
>>> The wrtiable DC is crashed. i installed another one . RODC is still
>>> trying
>>> to replicate from the old crashed DC
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> "Meinolf Weber [MVP-DS]" wrote:
>>>
>>>> Hello Ammar,
>>>>
>>>> How many DCs in total do you have and which OS version? How did you
>>>> install
>>>> the new DC, from backup or from scratch?
>>>>
>>>> Best regards
>>>>
>>>> Meinolf Weber
>>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>>> confers
>>>> no rights.
>>>> ** Please do NOT email, only reply to Newsgroups
>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>
>>>>
>>>> > I have an RODC replicating from a win 2008 wrtable DC which complete
>>>> > hardware faced failure
>>>> >
>>>> > We installed a new writable 2008 DC.
>>>> >
>>>> > How can we make the RODC to replicate from that new DC ?? it is still
>>>> > pointing to the old failed DC !!!!
>>>> >
>>>>
>>>>
>>>>
>>
>>
>
>
Re: RODC replicating to a failed 2008 DC !!! [message #160903 is a reply to message #160887] Thu, 10 September 2009 08:44 Go to previous messageGo to next message
aceman  is currently offline aceman  United States
Messages: 5816
Registered: July 2009
Senior Member
"Paul Bergson [MVP-DS]" <pbbergs@no_spammsn.com> wrote in message
news:OVLgjChMKHA.504@TK2MSFTNGP06.phx.gbl...
> Bringing a same named 2003 DC online before proper cleanup won't work as
> expected, Ace has given clear concise details. New to Windows 2008, if
> you delete the failed DC via ADUC, metadata cleanup happens w/o user
> intervention.
>

I like that new feature. But I will still check with ntdsutil to make sure
it's gone, as well as Sites and Services! Kind of old school about that. :-)

Ace
Re: RODC replicating to a failed 2008 DC !!! [message #161013 is a reply to message #160871] Sun, 13 September 2009 08:27 Go to previous messageGo to next message
Jim  is currently offline Jim  Germany
Messages: 1625
Registered: July 2009
Senior Member
Carl, in response to your question

In a Windows Server 2003 Domain with a couple of w2k3 DCs, 1 w2k8 RWDC and 1RODC, if the 1 RWDC crashes, the PRP and others start failing. I think the RODC will still continue to forward any authentication requests for which creds are not locally cached.

I know RODC can redistribute connection objects, in case the upstream w2k8 RWDC fails, the the RODC should be able to establish a new connection with any of the other w2k3 Dc's in the same site.


"Ace Fekay [MCT]" <aceman@mvps.RemoveThisPart.org> wrote in message news:%23tbFGPcMKHA.1280@TK2MSFTNGP04.phx.gbl...
> "Carl" <Carl@live.com> wrote in message
> news:uI3ZaIbMKHA.1372@TK2MSFTNGP02.phx.gbl...
>
> If you have a failed DC, and you cannot bring it back online, then there a
> number of tasks you must perform before building a new one iwth the same
> name and IP. First you must seize the FSMO roles to one of the other
> existing DCs (not the RODC). Then you must run a Metadata Cleanup to remove
> all references of the gonner DC from AD, as well as delete it out of Sites
> and Services. Then allow replication to occur for these changes to be made
> aware on all DCs (including the RODC). Then rebuild.
>
> You can view the replication partnerships in Sites and Services to see which
> DC the RODC is has a connection object. After cleaning up AD of the old DC,
> you can force the KCC to re-evaluate the AD infrastructure to re-create a
> suitable connection object automatically.
>
> The following should help guide you.
>
> Make sure all machines are registered in DNS, seize the 5 FSMO roles.
> Using Ntdsutil.exe to transfer or seize FSMO roles to a domain controller
> http://support.microsoft.com/kb/255504
>
> If it is not already a GC, make the other DC a GC (Global Catalog):
> How to create or move a global catalog in Windows Server 2003, Windows 2000,
> or Small Business Server 2000 (It's the same with Windows 2008):
> http://support.microsoft.com/?id=313994
>
> Cleanup (Metadata Cleanup) the AD database from the crashed DC - How to
> remove data in Active Directory after an unsuccessful domain controller
> demotion
> http://support.microsoft.com/kb/216498
>
> Ace
>
>
>
>> Its always recommended to atleast have 2 RWDC for redundancy purposes.
>>
>> In case there are other 2003 DC's in the same site as the RWDC, rebuilding
>> the failed RWDC from scratch with the same name is going to work?
>>
>> In such a case where the only rwdc is not available and other 2k3 dc's are
>> available, what all functions of the RODC are effected?
>>
>> Regards
>>
>>
>> "Paul Bergson [MVP-DS]" <pbbergs@no_spammsn.com> wrote in message
>> news:unRUZ5LMKHA.4964@TK2MSFTNGP06.phx.gbl...
>>> If this was the only writable DC in your domain, if you didn't restore
>>> from a backup this will never work. Your RODC is inbound only and since
>>> you lost your only writable dc you have lost this domain. There is
>>> nothing that can be done unless you can recover from tape. All users
>>> that are currently allowed to authenticate (Cached passwords) will slowly
>>> wither away and you will lose it all.
>>>
>>> --
>>> Paul Bergson
>>> MVP - Directory Services
>>> MCTS, MCT, MCSE, MCSA, Security+, BS CSci
>>> 2008, 2003, 2000 (Early Achiever), NT4
>>> Microsoft's Thrive IT Pro of the Month - June 2009
>>>
>>> http://www.pbbergs.com
>>>
>>> Please no e-mails, any questions should be posted in the NewsGroup This
>>> posting is provided "AS IS" with no warranties, and confers no rights.
>>>
>>> "Ammar" <Ammar@discussions.microsoft.com> wrote in message
>>> news:74852630-8829-4303-90C5-9AA61053455E@microsoft.com...
>>>> Hi dear:
>>>>
>>>> We have site 1 with RODC DC (Win 2008 STD SP1) only . I have another
>>>> site
>>>> with one only writaable 2008 DC STD SP1 .
>>>>
>>>> The wrtiable DC is crashed. i installed another one . RODC is still
>>>> trying
>>>> to replicate from the old crashed DC
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> "Meinolf Weber [MVP-DS]" wrote:
>>>>
>>>>> Hello Ammar,
>>>>>
>>>>> How many DCs in total do you have and which OS version? How did you
>>>>> install
>>>>> the new DC, from backup or from scratch?
>>>>>
>>>>> Best regards
>>>>>
>>>>> Meinolf Weber
>>>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>>>> confers
>>>>> no rights.
>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>
>>>>>
>>>>> > I have an RODC replicating from a win 2008 wrtable DC which complete
>>>>> > hardware faced failure
>>>>> >
>>>>> > We installed a new writable 2008 DC.
>>>>> >
>>>>> > How can we make the RODC to replicate from that new DC ?? it is still
>>>>> > pointing to the old failed DC !!!!
>>>>> >
>>>>>
>>>>>
>>>>>
>>>
>>>
>>
>>
>
>
--
Re: RODC replicating to a failed 2008 DC !!! [message #162108 is a reply to message #160744] Wed, 14 October 2009 15:44 Go to previous message
SubstituteThisWithMyF  is currently offline SubstituteThisWithMyF  Netherlands
Messages: 85
Registered: October 2009
Member
the RODC is most likely pointing to itself and to the failed DC (DNS client
settings)
change that, so the RODC points to a live w2k8 dc, then NET STOP NETLOGON &
NET START NETLOGON

--

Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)

# Jorge de Almeida Pinto # MVP Identity & Access - Directory Services #

BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx
------------------------------------------------------------ ------------------------------
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always test ANY suggestion in a test environment before implementing!
------------------------------------------------------------ ------------------------------
#################################################
#################################################
------------------------------------------------------------ ------------------------------

"Ammar" <Ammar@discussions.microsoft.com> wrote in message
news:7CAA7D40-22B5-483A-9CCD-C6CB394639FE@microsoft.com...
> I have an RODC replicating from a win 2008 wrtable DC which complete
> hardware
> faced failure
>
> We installed a new writable 2008 DC.
>
> How can we make the RODC to replicate from that new DC ?? it is still
> pointing to the old failed DC !!!!
>
> __________ Information from ESET Smart Security, version of virus
> signature database 4507 (20091014) __________
>
> The message was checked by ESET Smart Security.
>
> http://www.eset.com
>
>
>

__________ Information from ESET Smart Security, version of virus signature database 4507 (20091014) __________

The message was checked by ESET Smart Security.

http://www.eset.com
Previous Topic:Account Lockout
Next Topic:AD Delegation Rights to patch DC's
Goto Forum:
  


Current Time: Wed Jan 17 04:12:48 MST 2018

Total time taken to generate the page: 0.04734 seconds
.:: Contact :: Home ::Sitemap::.

Powered by: FUDforum 3.0.0RC2.
Copyright ©2001-2009 FUDforum Bulletin Board Software