locked
Impact running "Esentutl /p <database name>" command RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi All,

    I have domain controller hosted on server 2012, and due to hardware issue server was rebooted unexpectedly and now its not booting showing BSOD screen.

    searched some article on google and found that NTDS file is corrupted and need repair, here i want to know the impact or consideration to run the repair for NTDS.dit file

    Please help 

    Monday, September 12, 2016 12:08 PM

Answers

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi

     First you should check the article for Esentutl /repair

    https://technet.microsoft.com/en-us/library/hh875504%28v=ws.11%29.aspx?f=255&MSPPError=-2147217396

    here i want to know the impact or consideration to run the repair for NTDS.dit file>>> So if the DB is corrupted you should try to repair(mean there is no negative effects),But repair does not run database recovery. If a database is in “Dirty Shutdown” state, it is strongly recommended that before proceeding with repair, recovery is first run to properly complete database operations for the previous shutdown.

    This posting is provided AS IS with no warranties or guarantees,and confers no rights. Best regards Burak Uğur

    • Proposed as answer by Wendy Jiang Monday, September 19, 2016 9:15 AM
    • Marked as answer by Wendy Jiang Friday, September 23, 2016 8:54 AM
    Monday, September 12, 2016 3:20 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi

     Check these;

    AD replication is not working with event 1865 logged

    https://support.microsoft.com/en-us/kb/944351

    Event ID 1865 — KCC Replication Path Computation

    https://technet.microsoft.com/en-us/library/cc756648(v=ws.10).aspx

    Event ID 1925: Attempt to establish a replication link failed due to connectivity problem

    https://technet.microsoft.com/en-us/library/cc949135(v=ws.10).aspx

    Also you can verify connectivity with PortQryUI;

    https://www.microsoft.com/en-us/download/details.aspx?id=24009

    Also i can see there have 2 (duplicate) replication connection for each server with partner DC in another site, i am not sure which one i have to delete>>> If you do not know the site in which the domain controller is located, open a command prompt and type ipconfig to get the IP address of the domain controller. Use the IP address to verify that an IP address maps to a subnet, and then determine the site association.

    Also check the article; https://technet.microsoft.com/en-us/library/cc816761(v=ws.10).aspx

    This posting is provided AS IS with no warranties or guarantees,and confers no rights. Best regards Burak Uğur

    • Proposed as answer by Wendy Jiang Monday, September 19, 2016 9:15 AM
    • Marked as answer by Wendy Jiang Friday, September 23, 2016 8:54 AM
    Tuesday, September 13, 2016 3:43 PM

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi

     First you should check the article for Esentutl /repair

    https://technet.microsoft.com/en-us/library/hh875504%28v=ws.11%29.aspx?f=255&MSPPError=-2147217396

    here i want to know the impact or consideration to run the repair for NTDS.dit file>>> So if the DB is corrupted you should try to repair(mean there is no negative effects),But repair does not run database recovery. If a database is in “Dirty Shutdown” state, it is strongly recommended that before proceeding with repair, recovery is first run to properly complete database operations for the previous shutdown.

    This posting is provided AS IS with no warranties or guarantees,and confers no rights. Best regards Burak Uğur

    • Proposed as answer by Wendy Jiang Monday, September 19, 2016 9:15 AM
    • Marked as answer by Wendy Jiang Friday, September 23, 2016 8:54 AM
    Monday, September 12, 2016 3:20 PM
  • Question
    Sign in to vote
    0
    Sign in to vote
    Hi, 
    As far as I know, Esentutl has no idea if the file is an Active Directory database, all it knows is that it is a jet database.  As such, it will look for inconsistencies and truncate the database if necessary.
    If you have another DC in the environment, you could have a try demoting and promoting the server to domain controller again, this would create a fresh database without any errors from the other existing DC.
    Please refer to a similar thread as below: https://social.technet.microsoft.com/Forums/sharepoint/en-US/b3c69603-91c1-4aca-9590-203864806954/repairing-ntdsdit-file?forum=winserverDS
    Best regards,
    Wendy

    Please remember to mark the replies as answers if they help and unmark them if they provide no help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Tuesday, September 13, 2016 8:39 AM
  • Question
    Sign in to vote
    0
    Sign in to vote
    Hi, 
    As far as I know, Esentutl has no idea if the file is an Active Directory database,

    No,that's partially incorrect,Esentutl makes "Dirty shutdown" state to "Clean Shutdown" state including AD databases.Then try to repair corrupted Active Directory database.(if it could be).

    That's the command also "Esentutl /p c:\windows\ntds\ntds.dit"

    This posting is provided AS IS with no warranties or guarantees,and confers no rights. Best regards Burak Uğur

    Tuesday, September 13, 2016 8:48 AM
  • Question
    Sign in to vote
    0
    Sign in to vote

    I tried to repair ntds using the command SERVER1 and after reboot server start normally but now i can see below alert on another DC SERVER2 in same site.

    The Knowledge Consistency Checker (KCC) has detected problems with the following directory partition. 

    Directory partition:
    DC=ForestDnsZones,DC=persistent,DC=co,DC=in 

    also there have another events on affected DC "SERVER1", already posted issue at https://social.technet.microsoft.com/Forums/windowsserver/en-US/17a75802-9273-44d6-b3f7-d78becd60ec4/replication-error-ntfrs-event-13552-13555-13562?forum=winserverDS

    Also i can see there have 2 (duplicate) replication connection for each server with partner DC in another site, i am not sure which one i have to delete. i have created object and its replicating with other DC so there is no blockage in replication but still these alert are there on the server.

    Please suggest.

    Tuesday, September 13, 2016 1:25 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi

     Check these;

    AD replication is not working with event 1865 logged

    https://support.microsoft.com/en-us/kb/944351

    Event ID 1865 — KCC Replication Path Computation

    https://technet.microsoft.com/en-us/library/cc756648(v=ws.10).aspx

    Event ID 1925: Attempt to establish a replication link failed due to connectivity problem

    https://technet.microsoft.com/en-us/library/cc949135(v=ws.10).aspx

    Also you can verify connectivity with PortQryUI;

    https://www.microsoft.com/en-us/download/details.aspx?id=24009

    Also i can see there have 2 (duplicate) replication connection for each server with partner DC in another site, i am not sure which one i have to delete>>> If you do not know the site in which the domain controller is located, open a command prompt and type ipconfig to get the IP address of the domain controller. Use the IP address to verify that an IP address maps to a subnet, and then determine the site association.

    Also check the article; https://technet.microsoft.com/en-us/library/cc816761(v=ws.10).aspx

    This posting is provided AS IS with no warranties or guarantees,and confers no rights. Best regards Burak Uğur

    • Proposed as answer by Wendy Jiang Monday, September 19, 2016 9:15 AM
    • Marked as answer by Wendy Jiang Friday, September 23, 2016 8:54 AM
    Tuesday, September 13, 2016 3:43 PM