none
Ошибки в AD RRS feed

  • Вопрос

  • Предистория: было два КД на 2008R2 (перед обновлением все проверили некаких ошибок небыло) понизили, снесли и установили на 2012 (имя сервера осталось прежднем), передали ему роли fsmo, понилизи основной, снесли и установили на 2012 (имя сохранилось прежднее), вернули роли FSMO.

    Вроде бы все работало, как казалось нормально, пока не появилась необходимость сабирать failover cluster, в консоли не мог подцепить ноды, из за якобы выключенного удаленного доступа, решил проверить GPO, и тут понеслась, при попытке изменить одну из сушествующих гпо (любую) на основном КД - владельце ролей FSMO, вылазит вот что: "The network name cannot be found; Failed to open the GP Object You might not have the appropriate rights."., интересно что на резервном (втором) КД все гпо открываются на ура.

    Копаем дальше: как видно из выовда консоли GPO не расшарены папки SYSVOL, netlogon... действительно:

    основной кд:

    Windows PowerShell
    Copyright (C) 2012 Microsoft Corporation. All rights reserved.

    PS C:\Users\Администратор> net share

    Share name   Resource                        Remark

    -------------------------------------------------------------------------------
    ADMIN$       C:\Windows                      Remote Admin
    C$           C:\                             Default share
    D$           D:\                             Default share
    S$           S:\                             Default share
    IPC$                                         Remote IPC
    Q$           Q:\                             Default share
    V$           V:\                             Default share
    Data         S:\Shares\Data
    Quorum       Q:\Shares\Quorum
    UpdateServicesPackages
                 C:\WSUS\UpdateServicesPackages  A network share to be used by c...
    Virtual Machines
                 V:\Shares\Virtual Machines
    WsusContent  C:\WSUS\WsusContent             A network share to be used by L...
    WSUSTemp     C:\Program Files\Update Services\LogFiles\WSUSTemp
                                                 A network share used by Local P...
    The command completed successfully.

    PS C:\Users\Администратор>

    резервный КД:

    Windows PowerShell
    Copyright (C) 2012 Microsoft Corporation. All rights reserved.

    PS C:\Users\Администратор> net share

    Share name   Resource                        Remark

    -------------------------------------------------------------------------------
    ADMIN$       C:\Windows                      Remote Admin
    C$           C:\                             Default share
    D$           D:\                             Default share
    S$           S:\                             Default share
    IPC$                                         Remote IPC
    Q$           Q:\                             Default share
    V$           V:\                             Default share
    Data         S:\Shares\Data
    Quorum       Q:\Shares\Quorum
    UpdateServicesPackages
                 C:\WSUS\UpdateServicesPackages  A network share to be used by c...
    Virtual Machines
                 V:\Shares\Virtual Machines
    WsusContent  C:\WSUS\WsusContent             A network share to be used by L...
    WSUSTemp     C:\Program Files\Update Services\LogFiles\WSUSTemp
                                                 A network share used by Local P...
    The command completed successfully.

    PS C:\Users\Администратор>

    Вывод команд которые както могут навести на мысль:

    Основной КД:

    Windows PowerShell
    Copyright (C) 2012 Microsoft Corporation. All rights reserved.

    PS C:\Users\Администратор> ipconfig /all

    Windows IP Configuration

       Host Name . . . . . . . . . . . . : MGO-FIRST
       Primary Dns Suffix  . . . . . . . : MGO.RU
       Node Type . . . . . . . . . . . . : Hybrid
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : MGO.RU

    Tunnel adapter Local Area Connection* 12:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft Failover Cluster Virtual Adapter
       Physical Address. . . . . . . . . : 02-F9-7F-14-B3-99
       DHCP Enabled. . . . . . . . . . . : Yes
       Autoconfiguration Enabled . . . . : Yes

    Ethernet adapter vEthernet (Microsoft Network Adapter Multiplexor Driver - Virtual Switch):

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Hyper-V Virtual Ethernet Adapter #2
       Physical Address. . . . . . . . . : 2C-76-8A-A9-95-6E
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
       IPv4 Address. . . . . . . . . . . : 192.168.10.22(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 192.168.10.1
       DNS Servers . . . . . . . . . . . : 192.168.10.2
                                           192.168.10.22
                                           127.0.0.1
       NetBIOS over Tcpip. . . . . . . . : Disabled

    Tunnel adapter isatap.{49EA7871-36C5-4ADE-A203-06AC426C1907}:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter Teredo Tunneling Pseudo-Interface:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.{567D9A93-C501-4991-81CF-DEDEE44C618A}:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
    PS C:\Users\Администратор> dcdiag /q
             Warning: DsGetDcName returned information for \\MGO-SECOND.MGO.RU, when we were trying to reach MGO-FIRST.
             SERVER IS NOT RESPONDING or IS NOT CONSIDERED SUITABLE.
             ......................... MGO-FIRST failed test Advertising
             There are warning or error events within the last 24 hours after the SYSVOL has been shared.  Failing SYSVOL
             replication problems may cause Group Policy problems.
             ......................... MGO-FIRST failed test DFSREvent
             Unable to connect to the NETLOGON share! (\\MGO-FIRST\netlogon)
             [MGO-FIRST] An net use or LsaPolicy operation failed with error 67, The network name cannot be found..
             ......................... MGO-FIRST failed test NetLogons
             An error event occurred.  EventID: 0xC00110F1
                Time Generated: 12/18/2012   18:30:02
                Event String: The WINS Server could not initialize security to allow the read-only operations.
             An error event occurred.  EventID: 0x0000041E
                Time Generated: 12/18/2012   18:51:15
                Event String:
                The processing of Group Policy failed. Windows could not obtain the name of a domain controller. This could
    be caused by a name resolution failure. Verify your Domain Name System (DNS) is configured and working correctly.
             An error event occurred.  EventID: 0x40011006
                Time Generated: 12/18/2012   19:00:02
                Event String:
                The connection was aborted by the remote WINS. Remote WINS may not be configured to replicate with the serve
    r.
             ......................... MGO-FIRST failed test SystemLog
             Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
             A Time Server could not be located.
             The server holding the PDC role is down.
             Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 1355
             A Good Time Server could not be located.
             ......................... MGO.RU failed test LocatorCheck
    PS C:\Users\Администратор> netdom query fsmo
    Schema master               MGO-FIRST.MGO.RU
    Domain naming master        MGO-FIRST.MGO.RU
    PDC                         MGO-FIRST.MGO.RU
    RID pool manager            MGO-FIRST.MGO.RU
    Infrastructure master       MGO-FIRST.MGO.RU
    The command completed successfully.

    Резервный КД:

    Windows PowerShell
    Copyright (C) 2012 Microsoft Corporation. All rights reserved.

    PS C:\Users\Администратор> ipconfig /all

    Windows IP Configuration

       Host Name . . . . . . . . . . . . : MGO-SECOND
       Primary Dns Suffix  . . . . . . . : MGO.RU
       Node Type . . . . . . . . . . . . : Hybrid
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : MGO.RU

    Ethernet adapter vEthernet (vNetwork):

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Hyper-V Virtual Ethernet Adapter #2
       Physical Address. . . . . . . . . : 00-1B-78-9A-68-78
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
       IPv4 Address. . . . . . . . . . . : 192.168.10.2(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 192.168.10.1
       DNS Servers . . . . . . . . . . . : 192.168.10.22
                                           192.168.10.2
                                           127.0.0.1
       NetBIOS over Tcpip. . . . . . . . : Disabled

    Tunnel adapter isatap.{344E9146-C76C-4A87-A9C8-293EC602A037}:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter Teredo Tunneling Pseudo-Interface:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
    PS C:\Users\Администратор> dcdiag /fix

    Directory Server Diagnosis

    Performing initial setup:
       Trying to find home server...
       Home Server = MGO-SECOND
       * Identified AD Forest.
       Done gathering initial info.

    Doing initial required tests

       Testing server: Default-First-Site-Name\MGO-SECOND
          Starting test: Connectivity
             ......................... MGO-SECOND passed test Connectivity

    Doing primary tests

       Testing server: Default-First-Site-Name\MGO-SECOND
          Starting test: Advertising
             Warning: MGO-SECOND is not advertising as a time server.
             ......................... MGO-SECOND failed test Advertising
          Starting test: FrsEvent
             ......................... MGO-SECOND passed test FrsEvent
          Starting test: DFSREvent
             There are warning or error events within the last 24 hours after the SYSVOL has been shared.  Failing SYSVOL
             replication problems may cause Group Policy problems.
             ......................... MGO-SECOND passed test DFSREvent
          Starting test: SysVolCheck
             ......................... MGO-SECOND passed test SysVolCheck
          Starting test: KccEvent
             ......................... MGO-SECOND passed test KccEvent
          Starting test: KnowsOfRoleHolders
             ......................... MGO-SECOND passed test KnowsOfRoleHolders
          Starting test: MachineAccount
             ......................... MGO-SECOND passed test MachineAccount
          Starting test: NCSecDesc
             ......................... MGO-SECOND passed test NCSecDesc
          Starting test: NetLogons
             ......................... MGO-SECOND passed test NetLogons
          Starting test: ObjectsReplicated
             ......................... MGO-SECOND passed test ObjectsReplicated
          Starting test: Replications
             ......................... MGO-SECOND passed test Replications
          Starting test: RidManager
             ......................... MGO-SECOND passed test RidManager
          Starting test: Services
             ......................... MGO-SECOND passed test Services
          Starting test: SystemLog
             An error event occurred.  EventID: 0x40011006
                Time Generated: 12/18/2012   18:35:30
                Event String:
                The connection was aborted by the remote WINS. Remote WINS may not be configured to replicate with the serve
    r.
             An error event occurred.  EventID: 0x00002720
                Time Generated: 12/18/2012   18:47:18
                Event String:
                The application-specific permission settings do not grant Local Activation permission for the COM Server app
    lication with CLSID
             An error event occurred.  EventID: 0x40011017
                Time Generated: 12/18/2012   18:50:35
                Event String:
                WINS received a packet that has the wrong format. For example, a label may be  More than 63 octets.
             An error event occurred.  EventID: 0x00000060
                Time Generated: 12/18/2012   18:52:32
                Event String:
                Hypervisor processor startup failed (APIC ID 0x6, status 0x1035). Further processors in the system were not
    started.
             A warning event occurred.  EventID: 0x000003F6
                Time Generated: 12/18/2012   18:52:59
                Event String:
                Name resolution for the name _ldap._tcp.dc._msdcs.MGO.RU. timed out after none of the configured DNS servers
     responded.
             A warning event occurred.  EventID: 0x00000C18
                Time Generated: 12/18/2012   18:53:08
                Event String: The primary Domain Controller for this domain could not be located.
             A warning event occurred.  EventID: 0x000727AA
                Time Generated: 12/18/2012   18:53:16
                Event String:
                The WinRM service failed to create the following SPNs: WSMAN/MGO-SECOND.MGO.RU; WSMAN/MGO-SECOND.
             An error event occurred.  EventID: 0xC00110F1
                Time Generated: 12/18/2012   18:53:16
                Event String: The WINS Server could not initialize security to allow the read-only operations.
             A warning event occurred.  EventID: 0x00002724
                Time Generated: 12/18/2012   18:53:17
                Event String:
                This computer has at least one dynamically assigned IPv6 address.For reliable DHCPv6 server operation, you s
    hould use only static IPv6 addresses.
             An error event occurred.  EventID: 0x00000416
                Time Generated: 12/18/2012   18:53:19
                Event String:
                The DHCP/BINL service on the local machine, belonging to the Windows Administrative domain MGO.RU, has deter
    mined that it is not authorized to start.  It has stopped servicing clients.  The following are some possible reasons fo
    r this:
             A warning event occurred.  EventID: 0x00000081
                Time Generated: 12/18/2012   18:53:27
                Event String:
                NtpClient was unable to set a domain peer to use as a time source because of discovery error. NtpClient will
     try again in 15 minutes and double the reattempt interval thereafter. The error was: The entry is not found. (0x800706E
    1)
             A warning event occurred.  EventID: 0x00000081
                Time Generated: 12/18/2012   18:53:31
                Event String:
                NtpClient was unable to set a domain peer to use as a time source because of discovery error. NtpClient will
     try again in 15 minutes and double the reattempt interval thereafter. The error was: The entry is not found. (0x800706E
    1)
             A warning event occurred.  EventID: 0x00000081
                Time Generated: 12/18/2012   18:53:34
                Event String:
                NtpClient was unable to set a domain peer to use as a time source because of discovery error. NtpClient will
     try again in 15 minutes and double the reattempt interval thereafter. The error was: The entry is not found. (0x800706E
    1)
             A warning event occurred.  EventID: 0x00000081
                Time Generated: 12/18/2012   18:53:36
                Event String:
                NtpClient was unable to set a domain peer to use as a time source because of discovery error. NtpClient will
     try again in 15 minutes and double the reattempt interval thereafter. The error was: The entry is not found. (0x800706E
    1)
             ......................... MGO-SECOND failed test SystemLog
          Starting test: VerifyReferences
             ......................... MGO-SECOND passed test VerifyReferences


       Running partition tests on : DomainDnsZones
          Starting test: CheckSDRefDom
             ......................... DomainDnsZones passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... DomainDnsZones passed test CrossRefValidation

       Running partition tests on : ForestDnsZones
          Starting test: CheckSDRefDom
             ......................... ForestDnsZones passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... ForestDnsZones passed test CrossRefValidation

       Running partition tests on : Schema
          Starting test: CheckSDRefDom
             ......................... Schema passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... Schema passed test CrossRefValidation

       Running partition tests on : Configuration
          Starting test: CheckSDRefDom
             ......................... Configuration passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... Configuration passed test CrossRefValidation

       Running partition tests on : MGO
          Starting test: CheckSDRefDom
             ......................... MGO passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... MGO passed test CrossRefValidation

       Running enterprise tests on : MGO.RU
          Starting test: LocatorCheck
             Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1355
             A Primary Domain Controller could not be located.
             The server holding the PDC role is down.
             Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
             A Time Server could not be located.
             The server holding the PDC role is down.
             Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 1355
             A Good Time Server could not be located.
             ......................... MGO.RU failed test LocatorCheck
          Starting test: Intersite
             ......................... MGO.RU passed test Intersite
    PS C:\Users\Администратор> net dom query fsmo
    The syntax of this command is:

    NET
        [ ACCOUNTS | COMPUTER | CONFIG | CONTINUE | FILE | GROUP | HELP |
          HELPMSG | LOCALGROUP | PAUSE | SESSION | SHARE | START |
          STATISTICS | STOP | TIME | USE | USER | VIEW ]
    PS C:\Users\Администратор> netdom query fsmo
    Schema master               MGO-FIRST.MGO.RU
    Domain naming master        MGO-FIRST.MGO.RU
    PDC                         MGO-FIRST.MGO.RU
    RID pool manager            MGO-FIRST.MGO.RU
    Infrastructure master       MGO-FIRST.MGO.RU
    The command completed successfully.



    18 декабря 2012 г. 13:39

Ответы

  • Шо, опять? )) тогда

     1) На PDC Emulator( MGO-FIRST.MGO.RU) выполняем:

    w32tm /config /manualpeerlist:PEERS /syncfromflags:manual /reliable:yes /update

     Где PEERS  наши выбранные серверы времени, это м.б.IP а лучше, конечно DNS имена. Не забываем пробелы между и кавычки: "time.domain.com time1.domain.com".

    How to configure an authoritative time server in Windows Server

    http://support.microsoft.com/kb/816042 

    После этого перезапустите службу времени.

    2) WINS вы устанавливали?

    • Помечено в качестве ответа Gashkov Sergey 19 декабря 2012 г. 3:40
    18 декабря 2012 г. 19:48

Все ответы

  • ещё в логах ада:

    The DFS Replication service initialized SYSVOL at local path C:\Windows\SYSVOL\domain and is waiting to perform initial replication. The replicated folder will remain in the initial synchronization state until it has replicated with its partner MGO-SECOND.MGO.RU. If the server was in the process of being promoted to a domain controller, the domain controller will not advertise and function as a domain controller until this issue is resolved. This can occur if the specified partner is also in the initial synchronization state, or if sharing violations are encountered on this server or the sync partner. If this event occurred during the migration of SYSVOL from File Replication service (FRS) to DFS Replication, changes will not replicate out until this issue is resolved. This can cause the SYSVOL folder on this server to become out of sync with other domain controllers. 
     
    Additional Information: 
    Replicated Folder Name: SYSVOL Share 
    Replicated Folder ID: 1B1A9050-43A2-44D1-B4DD-E9EE8885D0EC 
    Replication Group Name: Domain System Volume 
    Replication Group ID: 0716A93F-B9B3-4D00-958E-0D3DD38D4860 
    Member ID: 16F513F4-D8F7-4488-B0C6-43A0C84FF52C 
    Read-Only: 0

    18 декабря 2012 г. 16:52
  • Шо, опять? )) тогда

     1) На PDC Emulator( MGO-FIRST.MGO.RU) выполняем:

    w32tm /config /manualpeerlist:PEERS /syncfromflags:manual /reliable:yes /update

     Где PEERS  наши выбранные серверы времени, это м.б.IP а лучше, конечно DNS имена. Не забываем пробелы между и кавычки: "time.domain.com time1.domain.com".

    How to configure an authoritative time server in Windows Server

    http://support.microsoft.com/kb/816042 

    После этого перезапустите службу времени.

    2) WINS вы устанавливали?

    • Помечено в качестве ответа Gashkov Sergey 19 декабря 2012 г. 3:40
    18 декабря 2012 г. 19:48
  • не опять, а снова =))))

    1)время синхронизировал с основным КД, т.к. у меня не один из кд в инет не смотрит:

    основной:

    PS C:\Users\Администратор> w32tm /config /manualpeerlist:mgo-first /syncfromflags:manual /reliable:yes /update
    The command completed successfully.

    резервный:

    PS C:\Users\Администратор> w32tm /config /manualpeerlist:mgo-first /syncfromflags:manual /reliable:yes /update
    The command completed successfully.

    2) винс был, но уже убрали (ребутили)

    логи реплик:

    основной КД:

    PS C:\Users\Администратор> repadmin /showrepl

    Repadmin: running command /showrepl against full DC localhost
    Default-First-Site-Name\MGO-FIRST
    DSA Options: IS_GC
    Site Options: (none)
    DSA object GUID: 1000dd3e-3e85-4122-a233-24d0593bf843
    DSA invocationID: 00235d81-d345-415e-920e-fc40b8eb589c

    ==== INBOUND NEIGHBORS ======================================

    DC=MGO,DC=RU
        Default-First-Site-Name\MGO-SECOND via RPC
            DSA object GUID: 2f785007-565e-49b9-bf2b-e6c8fa4ed033
            Last attempt @ 2012-12-19 08:40:29 was successful.

    CN=Configuration,DC=MGO,DC=RU
        Default-First-Site-Name\MGO-SECOND via RPC
            DSA object GUID: 2f785007-565e-49b9-bf2b-e6c8fa4ed033
            Last attempt @ 2012-12-19 08:35:54 was successful.

    CN=Schema,CN=Configuration,DC=MGO,DC=RU
        Default-First-Site-Name\MGO-SECOND via RPC
            DSA object GUID: 2f785007-565e-49b9-bf2b-e6c8fa4ed033
            Last attempt @ 2012-12-19 08:35:54 was successful.

    DC=ForestDnsZones,DC=MGO,DC=RU
        Default-First-Site-Name\MGO-SECOND via RPC
            DSA object GUID: 2f785007-565e-49b9-bf2b-e6c8fa4ed033
            Last attempt @ 2012-12-19 08:36:10 was successful.

    DC=DomainDnsZones,DC=MGO,DC=RU
        Default-First-Site-Name\MGO-SECOND via RPC
            DSA object GUID: 2f785007-565e-49b9-bf2b-e6c8fa4ed033
            Last attempt @ 2012-12-19 08:35:54 was successful.

    резервный КД:

    PS C:\Users\Администратор> repadmin /showreps
    Default-First-Site-Name\MGO-SECOND
    DSA Options: IS_GC
    Site Options: (none)
    DSA object GUID: 2f785007-565e-49b9-bf2b-e6c8fa4ed033
    DSA invocationID: d3037630-f7b7-47f1-ada6-44be79941c1b

    ==== INBOUND NEIGHBORS ======================================

    DC=MGO,DC=RU
        Default-First-Site-Name\MGO-FIRST via RPC
            DSA object GUID: 1000dd3e-3e85-4122-a233-24d0593bf843
            Last attempt @ 2012-12-19 08:50:24 was successful.

    CN=Configuration,DC=MGO,DC=RU
        Default-First-Site-Name\MGO-FIRST via RPC
            DSA object GUID: 1000dd3e-3e85-4122-a233-24d0593bf843
            Last attempt @ 2012-12-19 08:48:19 failed, result 1908 (0x774):
                Could not find the domain controller for this domain.
            1 consecutive failure(s).
            Last success @ 2012-12-19 08:40:39.

    CN=Schema,CN=Configuration,DC=MGO,DC=RU
        Default-First-Site-Name\MGO-FIRST via RPC
            DSA object GUID: 1000dd3e-3e85-4122-a233-24d0593bf843
            Last attempt @ 2012-12-19 08:48:19 failed, result 1908 (0x774):
                Could not find the domain controller for this domain.
            2 consecutive failure(s).
            Last success @ 2012-12-18 20:52:56.

    DC=ForestDnsZones,DC=MGO,DC=RU
        Default-First-Site-Name\MGO-FIRST via RPC
            DSA object GUID: 1000dd3e-3e85-4122-a233-24d0593bf843
            Last attempt @ 2012-12-19 08:48:42 was successful.

    DC=DomainDnsZones,DC=MGO,DC=RU
        Default-First-Site-Name\MGO-FIRST via RPC
            DSA object GUID: 1000dd3e-3e85-4122-a233-24d0593bf843
            Last attempt @ 2012-12-19 08:48:19 failed, result 1908 (0x774):
                Could not find the domain controller for this domain.
            2 consecutive failure(s).
            Last success @ 2012-12-18 20:52:56.

    19 декабря 2012 г. 2:50
  • после рестарта обоих серверов папки появились!!!

    остнастка гпо заработала!!!ура!!

     но ошибки на резервном кд в реплике остались 8(

    19 декабря 2012 г. 2:54
  • спустя какето время все стало ок, вопрос закрыт, спасибо Dmitriy Razbornov
    19 декабря 2012 г. 3:40