none
Exchange 2019安装补丁后准备域出错 RRS feed

 > 

  • 问题

  • Question
    登录进行投票
    0
    登录进行投票

    环境为单域多站点架构,在主域控所在站点的Exchange服务器准备域,报错如下:

    The following error was generated when "$error.Clear();
     $createTenantRoot = ($RoleIsDatacenter -or
    $RoleIsPartnerHosted);
     $createMsoSyncRoot = $RoleIsDatacenter;

     #$RoleDatacenterIsManagementForest is set only in
    Datacenter deployment; interpret its absense as $false
     [bool]$isManagementForest = ($RoleDatacenterIsManagementForest
    -eq $true);

     if ($RolePrepareAllDomains)
     {
     initialize-DomainPermissions -AllDomains:$true
    -CreateTenantRoot:$createTenantRoot -CreateMsoSyncRoot:$createMsoSyncRoot -IsManagementForest:$isManagementForest;
     }

    elseif ($RoleDomain -ne $null)
     {
     initialize-DomainPermissions -Domain $RoleDomain -CreateTenantRoot:$createTenantRoot
    -CreateMsoSyncRoot:$createMsoSyncRoot -IsManagementForest:$isManagementForest;
     }
     else
     {

    initialize-DomainPermissions -CreateTenantRoot:$createTenantRoot -CreateMsoSyncRoot:$createMsoSyncRoot
    -IsManagementForest:$isManagementForest;
     }
     " was run:
    "Microsoft.Exchange.Management.Tasks.DomainNotReachableException: Domain Europe.xxx.com cannot be reached.
    Please verify the connection to this domain and run PrepareDomain for this domain again. --->
    Microsoft.Exchange.Data.Directory.ADTransientException: A native error 0x5B4 occurred while looking for domain
    controllers in domain Europe.xxx.com: This operation returned because the timeout period expired
     at
    Microsoft.Exchange.Data.Directory.NativeHelpers.FindAllDirectoryServers(String forestFqdn, Boolean requireGCs, String
    siteName)
     at Microsoft.Exchange.Data.Directory.LdapTopologyProvider.FindDirectoryServerForForestOrDomain(String
    domainOrForestFqdn, NetworkCredential credential, Boolean requireGCs)
     at
    Microsoft.Exchange.Data.Directory.LdapTopologyProvider.GetServerFromDomainDN(String distinguishedName,
    NetworkCredential credential)
     at Microsoft.Exchange.Data.Directory.ConnectionPoolManager.GetConnection(ConnectionType
    connectionType, String partitionFqdn, ADObjectId domain, String serverName, Int32 port, NetworkCredential credential)

    at Microsoft.Exchange.Data.Directory.ConnectionPoolManager.GetConnection(ConnectionType connectionType, String
    partitionFqdn, NetworkCredential networkCredential, ADObjectId domain)
     at
    Microsoft.Exchange.Data.Directory.ADDataSession.GetConnection(String preferredServer, Boolean isWriteOperation, String
    optionalBaseDN, ADObjectId& rootId, ADScope scope)
     at
    Microsoft.Exchange.Data.Directory.ADDataSession.InternalFind[TResult](ADObjectId rootId, String optionalBaseDN,
    ADObjectId readId, QueryScope scope, QueryFilter filter, SortBy sortBy, Int32 maxResults, IEnumerable`1 properties,
    Boolean includeDeletedObjects)
     at Microsoft.Exchange.Data.Directory.ADDataSession.InternalRead[TResult](ADObjectId
    entryId, IEnumerable`1 properties)
     at
    Microsoft.Exchange.Data.Directory.SystemConfiguration.ADConfigurationSession.Read[TResult](ADObjectId entryId, String
    callerFilePath, Int32 callerFileLine, String memberName)
     at
    Microsoft.Exchange.Management.Tasks.DomainSetupTaskBase.InternalValidate()
     --- End of inner exception stack trace
    ---".

    The following error was generated when "$error.Clear();
     $createTenantRoot = ($RoleIsDatacenter -or
    $RoleIsPartnerHosted);
     $createMsoSyncRoot = $RoleIsDatacenter;

     #$RoleDatacenterIsManagementForest is set only in
    Datacenter deployment; interpret its absense as $false
     [bool]$isManagementForest = ($RoleDatacenterIsManagementForest
    -eq $true);

     if ($RolePrepareAllDomains)
     {
     initialize-DomainPermissions -AllDomains:$true
    -CreateTenantRoot:$createTenantRoot -CreateMsoSyncRoot:$createMsoSyncRoot -IsManagementForest:$isManagementForest;
     }

    elseif ($RoleDomain -ne $null)
     {
     initialize-DomainPermissions -Domain $RoleDomain -CreateTenantRoot:$createTenantRoot
    -CreateMsoSyncRoot:$createMsoSyncRoot -IsManagementForest:$isManagementForest;
     }
     else
     {

    initialize-DomainPermissions -CreateTenantRoot:$createTenantRoot -CreateMsoSyncRoot:$createMsoSyncRoot
    -IsManagementForest:$isManagementForest;
     }
     " was run: "Microsoft.Exchange.Management.Tasks.OpenPolicyFailedException:
    Got error 0x5 opening group policy on system wax.fareast.xxx.com in domain fareast.
     at
    Microsoft.Exchange.Configuration.Tasks.Task.ThrowError(Exception exception, ErrorCategory errorCategory, Object target,
    String helpUrl)
     at Microsoft.Exchange.Management.Tasks.InitializeDomainPermissions.AddSaclRight(ADDomain dom,
    SecurityIdentifier exsSid, String privilegeName)
     at
    Microsoft.Exchange.Management.Tasks.InitializeDomainPermissions.InternalProcessRecord()
     at
    Microsoft.Exchange.Configuration.Tasks.Task.<ProcessRecord>b__91_1()
     at
    Microsoft.Exchange.Configuration.Tasks.Task.InvokeRetryableFunc(String funcName, Action func, Boolean
    terminatePipelineIfFailed)".


    The Exchange Server setup operation didn't complete. More details can be found in ExchangeSetup.log located in the
    <SystemDrive>:\ExchangeSetupLogs folder.







    • 已编辑 john-lu 2023年3月10日 13:02 更新问题描述
    2023年3月10日 13:00
    |

全部回复

  • Question
    登录进行投票
    0
    登录进行投票

    您好,

    根据报错信息“DomainNotReachableException: Domain Europe.xxx.com cannot be reached”,请问Europe.xxx.com是您组织中的根域还是子域?

    同时,请您检查一下您组织中各个域的DC之间的网络通信是否存在问题。

    此致,

    Meredith

    如果以上回复对您有所帮助,建议您将其“标记为答复”. 如果您对我们的论坛支持有任何的建议,可以通过此邮箱联系我们:tnsf@microsoft.com.



    2023年3月13日 8:55
    |