General discussion

Locked

Replication error among two DC in windows2k3

By don_pham ·
Hi,
PLease help...
We are running two DC and DC1 is holding the FSMO role, and DC2 has an error showing below:

Event Type: Error
Event Source: NTDS Replication
Event Category: Replication
Event I 1645
Date: 6/12/2001
Time: 11:12:15 AM
User: Everyone
Computer: DC2
Description:
The Directory Service received a failure while trying to perform an authenticated RPC call to another Domain Controller. The failure is that the desired Service Principal Name (SPN) is not registered on the target server. The server being contacted is 3cb25b0f-3809-48fb-8571-59f4a2253846._msdcs.mydomain.com. The SPN being used is E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cb25b0f-3809-48fb-8571-59f4a2253846/mydomain.com@mydomain.com.

Please verify that the names of the target server and domain are correct. Please also verify that the SPN is registered on the computer account object for the target server on the KDC servicing the request. If the target server has been recently promoted, it will be necessary for knowledge of this computer's identity to replicate to the KDC before this computer can be authenticated.

My question are:
1- How do i fix the error?
2- if it is a worse case that i need to dcpromo DC2 and what do i need to do b4 the problem gets more hairy? (If so, when i try to run the DCpromo /forceremoval iam prompted to enter domain pwd (I know it) or AD recovery PWD (I don't know)
3- Is there anyway that i can export the DNS, DHCP, WIN on DC1 to a new DC2 without manualy recreate them again?

PLease help... Your respond is greatly appreciated!

This conversation is currently closed to new comments.

3 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by Kuryous1 In reply to Replication error among t ...

Hello. Well, it looks as though you have removed a child domain or changed the SPN of the second DC through DCPROMO. Here is an article by Microsoft that suggests either a hotfix (Servicepack) or a work around to eliminate the old SPN's that are still being registered with the first DC. GoodLuck on your hunt.

http://support.microsoft.com/default.aspx?scid=kb;en-us;308111

Collapse -

by don_pham In reply to

We are running the windows 2003 and the patch or hotfix is applied for windows 2000. We rebuilt the DC

Collapse -

by don_pham In reply to Replication error among t ...

This question was closed by the author

Back to Networks Forum
3 total posts (Page 1 of 1)  

Related Forums