4015 and 4513 [WILDPACKET]

Discussion in 'DNS Server' started by WILDPACKET, Oct 18, 2005.

  1. WILDPACKET

    WILDPACKET Guest

    installed and additional DC to an exisiting domain.

    These events loged in frequently 4015 and 4513.

    DNS Server detected that is is not enlisted in the replication scope of
    directory partion forestDNSZones.local.com......

    Advise please.

    Thank you
     
    WILDPACKET, Oct 18, 2005
    #1
    1. Advertisements

  2. In
    What replication scope is this specific zone set to? Which button is
    selected under the replication scope setting? (Top, middle or bottom?)

    What is the replication scope for the zone set to on the other DC set to?

    If they are different, then I understand the conflic of settings.

    --
    Ace

    This posting is provided "AS-IS" with no warranties or guarantees and
    confers no rights.

    If this post is viewed at a non-Microsoft community website, and you were to
    respond to it through that community's website, I may not see your reply
    unless that website posts replies back to the original Microsoft forum.
    Therefore, please direct all replies ONLY to the Microsoft public newsgroup
    this thread originated in so all can benefit or ensure the web community
    posts it back to the original forum.

    Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
    Microsoft Windows MVP - Windows Server - Directory Services
    Microsot Certified Trainer
    Infinite Diversities in Infinite Combinations.
    =================================
     
    Ace Fekay [MVP], Oct 18, 2005
    #2
    1. Advertisements

  3. Point this additional DC to the first DC for DNS and try netdiag /fix and
    dcdiag /fix

    If it does not fix the problem change the zone to a standard primary zone
    (Remove from active directory) then run netdiag /fix on both DCs. Use ADU&C
    in Advanced view, connect to each DC, expand the System container and open
    the MicrosoftDNS container, delete any objects with the zone name.
    If netdiag /test:dns /v runs without errors change the zone back to AD
    integrated, set the replication scope to all Domain Controllers in the
    domain.

    --
    Best regards,
    Kevin D. Goodknecht Sr. [MVP]
    Hope This Helps
    ===================================
    When responding to posts, please "Reply to Group"
    via your newsreader so that others may learn and
    benefit from your issue, to respond directly to
    me remove the nospam. from my email address.
    ===================================
    http://www.lonestaramerica.com/
    http://support.wftx.us/
    https://secure.lsaol.com/
    ===================================
    Use Outlook Express?... Get OE_Quotefix:
    It will strip signature out and more
    http://home.in.tum.de/~jain/software/oe-quotefix/
    ===================================
    Keep a back up of your OE settings and folders
    with OEBackup:
    http://www.oehelp.com/OEBackup/Default.aspx
    ===================================
     
    Kevin D. Goodknecht Sr. [MVP], Oct 18, 2005
    #3
  4. WILDPACKET

    WILDPACKET Guest

    Thank you Kevin for youre response.

    The command went well and all tests passed but the issue is not resolved.

    in Advanced view, connect to each DC, expand the System container and open
    I have mydomain.com and this

    mydomain.com CNF:137f7001-817d-4a9a-ab2e-3a74567781
    these weird numbers.

    The DC I am having issue with is on a remote site linked with a high speed
    link.

    Advise please.
     
    WILDPACKET, Oct 18, 2005
    #4
  5. The CNF is a conflict. Did you change the zone to standard primary?

    If you did, then delete both of these objects, if you didn't change the zone
    to standard primary, then delete these two objects. Force a replication then
    check the DNS servers on both and make sure that only the standard primary
    zone exists. Then change the zone back to AD integrated.


    --
    Best regards,
    Kevin D. Goodknecht Sr. [MVP]
    Hope This Helps
    ===================================
    When responding to posts, please "Reply to Group"
    via your newsreader so that others may learn and
    benefit from your issue, to respond directly to
    me remove the nospam. from my email address.
    ===================================
    http://www.lonestaramerica.com/
    http://support.wftx.us/
    https://secure.lsaol.com/
    ===================================
    Use Outlook Express?... Get OE_Quotefix:
    It will strip signature out and more
    http://home.in.tum.de/~jain/software/oe-quotefix/
    ===================================
    Keep a back up of your OE settings and folders
    with OEBackup:
    http://www.oehelp.com/OEBackup/Default.aspx
    ===================================
     
    Kevin D. Goodknecht Sr. [MVP], Oct 18, 2005
    #5
  6. WILDPACKET

    Wild Packet Guest

    In our envoirenement all the DCs are AD Integrated. We have 21 sites
    connected with high speed links and each sites has a DCs with AD Intgerated
    DNS.

    This is a new DC I installed when I installed the AD and opened the DNS this
    mydomain.com zone was already in there, therefore I am bit skeptic what if
    I change the mydomain.com zone to Primary and it messes up the original DNS
    server(s)?

    Adsvise please.
     
    Wild Packet, Oct 19, 2005
    #6
  7. Your original DNS server are already messed up, that's why you have a
    conflicting zone in AD. Probably by having the zone using different
    replications scopes on different DCs. All DC must use the same replication
    scope for a zone. The easiest way to fix this is to remove the zone from AD
    and clear it out of AD on all DCs.

    That's why you need to reinstall the zone to AD, this is the only way you
    can do it and not lose existing zone data. You must point all DCs to the one
    you change to standard primary, this removes the zone from AD, but backs it
    up as a standard primary zone. Then remove the AD zone from all other DCs
    and delete the zone from ADU&C, after AD is clean of all the zone data, you
    put the zone back in AD by changing the primary back to AD integrated and
    let it replicate through AD. It is best to not try to create it manually on
    any other DCs.


    --
    Best regards,
    Kevin D. Goodknecht Sr. [MVP]
    Hope This Helps
    ===================================
    When responding to posts, please "Reply to Group"
    via your newsreader so that others may learn and
    benefit from your issue, to respond directly to
    me remove the nospam. from my email address.
    ===================================
    http://www.lonestaramerica.com/
    http://support.wftx.us/
    https://secure.lsaol.com/
    ===================================
    Use Outlook Express?... Get OE_Quotefix:
    It will strip signature out and more
    http://home.in.tum.de/~jain/software/oe-quotefix/
    ===================================
    Keep a back up of your OE settings and folders
    with OEBackup:
    http://www.oehelp.com/OEBackup/Default.aspx
    ===================================
     
    Kevin D. Goodknecht Sr. [MVP], Oct 19, 2005
    #7
  8. In
    Funny, I thought I replied to this post with a similar answer, and a few
    other posts too, but don't see them. Hmm...

    Ace
     
    Ace Fekay [MVP], Oct 19, 2005
    #8
  9. WILDPACKET

    WILDPACKET Guest

    Thank you for your replies.

    The replication for this zone is set for the third option "To all DCs in the
    AD domain mydomain.com" on all DCs."

    I am going to contact the mothership (Microsoft) and see if they can address
    this matter for me btu will give some more thoughts to fix it before I call
    them.

    Any more ideas guys?

    I appreciate your input.
     
    WILDPACKET, Oct 19, 2005
    #9
  10. WILDPACKET

    WILDPACKET Guest

    Kevin:

    That weird "CNF" settings which I mentioned earlier were actually a site was
    configured twice under the Active Directory Sites and Service. I removed the
    additional site and that issue seems to be have fixed.

    Our DNS seems to be working fine.

    Even the DNS server in question I can ping it my name and IP from any where
     
    WILDPACKET, Oct 19, 2005
    #10
  11. WILDPACKET

    WILDPACKET Guest

    And the all the DCs in our Domain are set for AD Integrated replication for
    this zone in question.
     
    WILDPACKET, Oct 19, 2005
    #11
  12. In
    All the DCs are set to the bottom button?

    We need specifics. Just saying "AD Integrated zone" with the new Windows
    2003 feature set is too general.

    If a zone on one DC is set to the middle button, and the other is set to the
    bottom button, then that would be a HUGE problem.

    Ace
     
    Ace Fekay [MVP], Oct 19, 2005
    #12
  13. WILDPACKET

    WILDPACKET Guest

    All set to bottom button.



     
    WILDPACKET, Oct 19, 2005
    #13
  14. WILDPACKET

    WILDPACKET Guest

    Sorry forgot to mention there is another zone in there called local.com too.

    my msitake.
     
    WILDPACKET, Oct 19, 2005
    #14
  15. In
    What is the local.com zone on all DCs set to?
     
    Ace Fekay [MVP], Oct 19, 2005
    #15
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.