Symptoms: Sysvol and Netlogon shares may be missing;
nltest /server:<DC-NAME> /dsgetdc:<DOMAIN> /gc /force shows that RODC is active DC
Check for errors: DCDIAG /TEST:DNS and DCDIAG /CheckSecurityError
If replication between DC and RODC is broken and repadmin /syncall does not help - you can manually set DC replica as authoritative.
Open Regedit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NtFrs\Parameters\Backup/Restore\Process at Startup
Set BurFlags hex value to D4 - This registry value marks the FRS replica as authoritative.
Restart the File Replication Service
Source: KB316790
Nav komentāru:
Ierakstīt komentāru