Sign in
 

none
Site to site replication

 > 

    Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi, 

    we have 4 domain controllers - all are in different locations and in separate ad sites. How can I speed replication times between the domains because once the user is locked out we are having to look for the domain controller they are locked out on and then unlock them on that domain controller because the other DC's aren't aware of the lock out yet. 

    Thank you

    Monday, November 28, 2016 1:52 PM
    |

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote

    From the Active Directory Sites and Services console you can reduce the connection object to 15mins of replication.

    Another way to achieve that would be to run a script at a minute or two with

    repadmin /syncall /force

    from each domain controller, but that doesn't scale well.

    Monday, November 28, 2016 2:21 PM
    |
  • Question
    Sign in to vote
    1
    Sign in to vote

    You could also enable Active Directory Replication: Change Notification.  This will replicate changes between sites without having to wait 15 min.

    https://blogs.msdn.microsoft.com/canberrapfe/2012/03/25/active-directory-replication-change-notification-you/

    But Account locked out is an "Urgent Replication" and should be replicated within few seconds (±15 to 30 sec).

    https://technet.microsoft.com/en-us/library/cc772726(v=ws.10).aspx

    This posting is provided AS IS without warranty of any kind

    Monday, November 28, 2016 2:45 PM
    |
  • Question
    Sign in to vote
    0
    Sign in to vote
    Hi, it is already 15 minutes but shouldn't account lockout's be sync'd almost instantly?
    Monday, November 28, 2016 9:21 PM
    |
  • Question
    Sign in to vote
    0
    Sign in to vote
    Thank you, I will look into this and let you know how it went.
    Monday, November 28, 2016 9:22 PM
    |
  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi,

    I am checking how the issue going, if you still have any questions, please feel free to contact us.

    And if the replies as above are helpful, we would appreciate you to mark them as answers, and if you resolve it using your own solution, please share your experience and solution here. It will be greatly helpful to others who have the same question.

    Appreciate for your feedback.

    Best regards,

    Wendy

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com

    Wednesday, November 30, 2016 2:44 AM
    |
    Moderator