none
"Error occurred during the attempt to synchronize naming context ..." when replicate two domains

    Question

  • Hi All,

    I got replication problem in windows server 2003 SP2 when i force replicate at Active Directory Site and Service. i got following error message:

    When i check dcdiag.exe command i got following error result:

    Microsoft Windows [Version 5.2.3790]
    (C) Copyright 1985-2003 Microsoft Corp.

    C:\Documents and Settings\Administrator>dcdiag

    Domain Controller Diagnosis

    Performing initial setup:
       Done gathering initial info.

    Doing initial required tests

       Testing server: Default-First-Site-Name\BASE-SERVER
          Starting test: Connectivity
             ......................... BASE-SERVER passed test Connectivity

    Doing primary tests

       Testing server: Default-First-Site-Name\BASE-SERVER
          Starting test: Replications
             [Replications Check,BASE-SERVER] A recent replication attempt failed:
                From BASE-SERVER2 to BASE-SERVER
                Naming Context: DC=ForestDnsZones,DC=bases,DC=local
                The replication generated an error (1256):
                The remote system is not available. For information about network tr
    oubleshooting, see Windows Help.
                The failure occurred at 2011-11-14 11:59:07.
                The last success occurred at 2011-11-09 12:58:51.
                125 failures have occurred since the last success.
             [BASE-SERVER2] DsBindWithSpnEx() failed with error 1722,
             The RPC server is unavailable..
             [Replications Check,BASE-SERVER] A recent replication attempt failed:
                From BASE-SERVER2 to BASE-SERVER
                Naming Context: DC=DomainDnsZones,DC=bases,DC=local
                The replication generated an error (1256):
                The remote system is not available. For information about network tr
    oubleshooting, see Windows Help.
                The failure occurred at 2011-11-14 11:59:07.
                The last success occurred at 2011-11-09 12:58:50.
                124 failures have occurred since the last success.
             [Replications Check,BASE-SERVER] A recent replication attempt failed:
                From BASE-SERVER2 to BASE-SERVER
                Naming Context: CN=Schema,CN=Configuration,DC=bases,DC=local
                The replication generated an error (1722):
                The RPC server is unavailable.
                The failure occurred at 2011-11-14 11:59:49.
                The last success occurred at 2011-11-09 12:58:49.
                124 failures have occurred since the last success.
                The source remains down. Please check the machine.
             [Replications Check,BASE-SERVER] A recent replication attempt failed:
                From BASE-SERVER2 to BASE-SERVER
                Naming Context: CN=Configuration,DC=bases,DC=local
                The replication generated an error (1722):
                The RPC server is unavailable.
                The failure occurred at 2011-11-14 11:59:28.
                The last success occurred at 2011-11-09 13:50:06.
                302 failures have occurred since the last success.
                The source remains down. Please check the machine.
             [Replications Check,BASE-SERVER] A recent replication attempt failed:
                From BASE-SERVER2 to BASE-SERVER
                Naming Context: DC=bases,DC=local
                The replication generated an error (1722):
                The RPC server is unavailable.
                The failure occurred at 2011-11-14 11:59:07.
                The last success occurred at 2011-11-09 13:56:36.
                233 failures have occurred since the last success.
                The source remains down. Please check the machine.
             REPLICATION-RECEIVED LATENCY WARNING
             BASE-SERVER:  Current time is 2011-11-14 12:00:05.
                DC=ForestDnsZones,DC=bases,DC=local
                   Last replication recieved from BASE-SERVER2 at 2011-11-09 12:58:5
    1.
                DC=DomainDnsZones,DC=bases,DC=local
                   Last replication recieved from BASE-SERVER2 at 2011-11-09 12:58:5
    0.
                CN=Schema,CN=Configuration,DC=bases,DC=local
                   Last replication recieved from BASE-SERVER2 at 2011-11-09 12:58:4
    8.
                CN=Configuration,DC=bases,DC=local
                   Last replication recieved from BASE-SERVER2 at 2011-11-09 13:50:0
    6.
                DC=bases,DC=local
                   Last replication recieved from BASE-SERVER2 at 2011-11-09 13:56:3
    6.
             ......................... BASE-SERVER passed test Replications
          Starting test: NCSecDesc
             ......................... BASE-SERVER passed test NCSecDesc
          Starting test: NetLogons
             ......................... BASE-SERVER passed test NetLogons
          Starting test: Advertising
             ......................... BASE-SERVER passed test Advertising
          Starting test: KnowsOfRoleHolders
             ......................... BASE-SERVER passed test KnowsOfRoleHolders
          Starting test: RidManager
             ......................... BASE-SERVER passed test RidManager
          Starting test: MachineAccount
             ......................... BASE-SERVER passed test MachineAccount
          Starting test: Services
                IsmServ Service is stopped on [BASE-SERVER]
             ......................... BASE-SERVER failed test Services
          Starting test: ObjectsReplicated
             ......................... BASE-SERVER passed test ObjectsReplicated
          Starting test: frssysvol
             ......................... BASE-SERVER passed test frssysvol
          Starting test: frsevent
             ......................... BASE-SERVER passed test frsevent
          Starting test: kccevent
             ......................... BASE-SERVER passed test kccevent
          Starting test: systemlog
             ......................... BASE-SERVER passed test systemlog
          Starting test: VerifyReferences
             ......................... BASE-SERVER passed test VerifyReferences

       Running partition tests on : ForestDnsZones
          Starting test: CrossRefValidation
             ......................... ForestDnsZones passed test CrossRefValidation

          Starting test: CheckSDRefDom
             ......................... ForestDnsZones passed test CheckSDRefDom

       Running partition tests on : DomainDnsZones
          Starting test: CrossRefValidation
             ......................... DomainDnsZones passed test CrossRefValidation

          Starting test: CheckSDRefDom
             ......................... DomainDnsZones passed test CheckSDRefDom

       Running partition tests on : Schema
          Starting test: CrossRefValidation
             ......................... Schema passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Schema passed test CheckSDRefDom

       Running partition tests on : Configuration
          Starting test: CrossRefValidation
             ......................... Configuration passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Configuration passed test CheckSDRefDom

       Running partition tests on : bases
          Starting test: CrossRefValidation
             ......................... bases passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... bases passed test CheckSDRefDom

       Running enterprise tests on : bases.local
          Starting test: Intersite
             ......................... bases.local passed test Intersite
          Starting test: FsmoCheck
             ......................... bases.local passed test FsmoCheck

    C:\Documents and Settings\Administrator>

     

    So, please help me how can i solve this problem.Thanks a lot.

    Best Regards,

    Win


    winstar
    Monday, November 14, 2011 4:18 AM

Answers

  • You are getting the error "The RPC server is unavailable" relates to port being blocked or network connectivity issue.I would suggest contact network/security team to verify whether all the related AD ports being configured and allowed on the firewall for communication. Portquery is free tool from the MS which can be downloaded and installed to verify the necessary ports are opened or not.

    Also, disable local windows firewall service, by default it is enabled in vista/windows 2008 and above. Check the network connectivity and latency.


    http://blogs.technet.com/b/abizerh/archive/2009/06/11/troubleshooting-rpc-server-is-unavailable-error-reported-in-failing-ad-replication-scenario.aspx

    Active Directory and Active Directory Domain Services Port Requirements

    http://technet.microsoft.com/en-us/library/dd772723%28WS.10%29.aspx

    Also Ensure the following on DC:
    1. Each DC / DNS server points to its private IP address as primary DNS server and other remote/local DNS servers as secondary in TCP/IP properties.
    2. Each DC has just one IP address and single network adapter is enabled.
    3. Contact your ISP and get valid DNS IPs from them and add it in to the forwarders, Do not set public DNS server in TCP/IP setting of DC.
    4. Once you are done, run "ipconfig /flushdns & ipconfig /registerdns", restart DNS and NETLOGON service each DC.

    Do not put private DNS IP addresses in forwarder list.

    Regards,
    Sandesh Dubey.
    -------------------------------
    MCSE|MCSA:Messaging|MCTS|MCITP:Enterprise Adminitrator
    My Blog: http://sandeshdubey.wordpress.com
    This posting is provided AS IS with no warranties, and confers no rights.

    • Marked as answer by winstar15 Monday, November 14, 2011 5:28 AM
    Monday, November 14, 2011 4:54 AM

All replies

  • You are getting the error "The RPC server is unavailable" relates to port being blocked or network connectivity issue.I would suggest contact network/security team to verify whether all the related AD ports being configured and allowed on the firewall for communication. Portquery is free tool from the MS which can be downloaded and installed to verify the necessary ports are opened or not.

    Also, disable local windows firewall service, by default it is enabled in vista/windows 2008 and above. Check the network connectivity and latency.


    http://blogs.technet.com/b/abizerh/archive/2009/06/11/troubleshooting-rpc-server-is-unavailable-error-reported-in-failing-ad-replication-scenario.aspx

    Active Directory and Active Directory Domain Services Port Requirements

    http://technet.microsoft.com/en-us/library/dd772723%28WS.10%29.aspx

    Also Ensure the following on DC:
    1. Each DC / DNS server points to its private IP address as primary DNS server and other remote/local DNS servers as secondary in TCP/IP properties.
    2. Each DC has just one IP address and single network adapter is enabled.
    3. Contact your ISP and get valid DNS IPs from them and add it in to the forwarders, Do not set public DNS server in TCP/IP setting of DC.
    4. Once you are done, run "ipconfig /flushdns & ipconfig /registerdns", restart DNS and NETLOGON service each DC.

    Do not put private DNS IP addresses in forwarder list.

    Regards,
    Sandesh Dubey.
    -------------------------------
    MCSE|MCSA:Messaging|MCTS|MCITP:Enterprise Adminitrator
    My Blog: http://sandeshdubey.wordpress.com
    This posting is provided AS IS with no warranties, and confers no rights.

    • Marked as answer by winstar15 Monday, November 14, 2011 5:28 AM
    Monday, November 14, 2011 4:54 AM
  • Hi Sandesh Dubey,

     

    Thanks a lot for your helping and suggestion to fix my problem, as your instructions I disable my local windows firewall service then i can replicate back immediately. Thanks.

     

    Best Regards,

    Win

     

     


    winstar
    Monday, November 14, 2011 5:34 AM