none
Issue with GPupdate in Trust environment RRS feed

  • Question


  • We have Two way forest trust between Domain A and Domain B. Trust looks fine.

    From Domain B server we logged in using domain A user id but the GPO update got failed with error code 1503.

    Error:

    The processing of Group Policy failed. Windows could not resolve the user name. This could be caused by one of more of the following:

    a) Name Resolution failure on the current domain controller.

    b) Active Directory Replication Latency (an account created on another domain controller has not replicated to the current domain controller).

    ErrorCode : 1722

    ErrorDescription : The RPC server is unavailable. 

    When we tried nltest, it was throwing below error.

    Nltest /dclist:domain A

    Cannot DsBind to A.com (\\server1.A.com).Status = 1722 0x6ba RPC_S_SERVER_UNAVAILABLE
    I_NetGetDCList failed: Status = 6118 0x17e6 ERROR_NO_BROWSER_SERVERS_FOUND

    Also when try to add the users from domain A using local users and group management, it shows the rpc server is unavailable.                                                                                                                                                                                                                                                        Verified that RPC service is started, necessary ports including port 135 tcp/upd are working fine. No issue in dns perspective, AD perspective, replication looks fine. Nothing block from firewall end.

    Disjoin the server from domain and rejoined the server, noting works still facing the same issue  
                                                                                                                                                  Any suggestion ? also is there any chance to check via network monitoring tool ?



    • Edited by Hari_RS01 Thursday, October 15, 2020 6:19 PM
    Thursday, October 15, 2020 5:45 PM

All replies