| Author |
Message |
WILDPACKET
Guest
|
 Posted:
Tue Oct 18, 2005 4:50 pm Post subject:
4015 and 4513 [WILDPACKET] |
|
|
installed and additional DC to an exisiting domain.
These events loged in frequently 4015 and 4513.
DNS Server detected that is is not enlisted in the replication scope of
directory partion forestDNSZones.local.com......
Advise please.
Thank you |
|
| Back to top |
|
 |
Ace Fekay [MVP]
Guest
|
| Posted:
Tue Oct 18, 2005 8:13 pm Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
In news:A265E78D-1171-49C3-A45D-95357132719F@microsoft.com,
WILDPACKET <WILDPACKET@discussions.microsoft.com> made this post, which I
then commented about below:
| Quote: | installed and additional DC to an exisiting domain.
These events loged in frequently 4015 and 4513.
DNS Server detected that is is not enlisted in the replication scope
of directory partion forestDNSZones.local.com......
Advise please.
Thank you
|
What replication scope is this specific zone set to? Which button is
selected under the replication scope setting? (Top, middle or bottom?)
What is the replication scope for the zone set to on the other DC set to?
If they are different, then I understand the conflic of settings.
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
If this post is viewed at a non-Microsoft community website, and you were to
respond to it through that community's website, I may not see your reply
unless that website posts replies back to the original Microsoft forum.
Therefore, please direct all replies ONLY to the Microsoft public newsgroup
this thread originated in so all can benefit or ensure the web community
posts it back to the original forum.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services
Microsot Certified Trainer
Infinite Diversities in Infinite Combinations.
================================= |
|
| Back to top |
|
|
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Tue Oct 18, 2005 8:50 pm Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
WILDPACKET <WILDPACKET@discussions.microsoft.com> wrote:
| Quote: | Thank you Kevin for youre response.
The command went well and all tests passed but the issue is not
resolved.
in Advanced view, connect to each DC, expand the System container and
open
the MicrosoftDNS container, delete any objects with the zone name.
I have mydomain.com and this
mydomain.com CNF:137f7001-817d-4a9a-ab2e-3a74567781
these weird numbers.
|
The CNF is a conflict. Did you change the zone to standard primary?
If you did, then delete both of these objects, if you didn't change the zone
to standard primary, then delete these two objects. Force a replication then
check the DNS servers on both and make sure that only the standard primary
zone exists. Then change the zone back to AD integrated.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
WILDPACKET
Guest
|
| Posted:
Tue Oct 18, 2005 8:50 pm Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
Thank you Kevin for youre response.
The command went well and all tests passed but the issue is not resolved.
in Advanced view, connect to each DC, expand the System container and open
| Quote: | the MicrosoftDNS container, delete any objects with the zone name.
I have mydomain.com and this |
mydomain.com CNF:137f7001-817d-4a9a-ab2e-3a74567781
these weird numbers.
The DC I am having issue with is on a remote site linked with a high speed
link.
Advise please.
"Kevin D. Goodknecht Sr. [MVP]" wrote:
| Quote: | WILDPACKET <WILDPACKET@discussions.microsoft.com> wrote:
installed and additional DC to an exisiting domain.
These events loged in frequently 4015 and 4513.
DNS Server detected that is is not enlisted in the replication scope
of directory partion forestDNSZones.local.com......
Point this additional DC to the first DC for DNS and try netdiag /fix and
dcdiag /fix
If it does not fix the problem change the zone to a standard primary zone
(Remove from active directory) then run netdiag /fix on both DCs. Use ADU&C
in Advanced view, connect to each DC, expand the System container and open
the MicrosoftDNS container, delete any objects with the zone name.
If netdiag /test:dns /v runs without errors change the zone back to AD
integrated, set the replication scope to all Domain Controllers in the
domain.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Tue Oct 18, 2005 8:50 pm Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
WILDPACKET <WILDPACKET@discussions.microsoft.com> wrote:
| Quote: | installed and additional DC to an exisiting domain.
These events loged in frequently 4015 and 4513.
DNS Server detected that is is not enlisted in the replication scope
of directory partion forestDNSZones.local.com......
|
Point this additional DC to the first DC for DNS and try netdiag /fix and
dcdiag /fix
If it does not fix the problem change the zone to a standard primary zone
(Remove from active directory) then run netdiag /fix on both DCs. Use ADU&C
in Advanced view, connect to each DC, expand the System container and open
the MicrosoftDNS container, delete any objects with the zone name.
If netdiag /test:dns /v runs without errors change the zone back to AD
integrated, set the replication scope to all Domain Controllers in the
domain.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
Wild Packet
Guest
|
| Posted:
Wed Oct 19, 2005 12:50 am Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
In our envoirenement all the DCs are AD Integrated. We have 21 sites
connected with high speed links and each sites has a DCs with AD Intgerated
DNS.
This is a new DC I installed when I installed the AD and opened the DNS this
mydomain.com zone was already in there, therefore I am bit skeptic what if
I change the mydomain.com zone to Primary and it messes up the original DNS
server(s)?
Adsvise please.
"Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> wrote in message
news:uGFGlEC1FHA.1032@TK2MSFTNGP12.phx.gbl...
| Quote: | WILDPACKET <WILDPACKET@discussions.microsoft.com> wrote:
Thank you Kevin for youre response.
The command went well and all tests passed but the issue is not
resolved.
in Advanced view, connect to each DC, expand the System container and
open
the MicrosoftDNS container, delete any objects with the zone name.
I have mydomain.com and this
mydomain.com CNF:137f7001-817d-4a9a-ab2e-3a74567781
these weird numbers.
The CNF is a conflict. Did you change the zone to standard primary?
If you did, then delete both of these objects, if you didn't change the
zone
to standard primary, then delete these two objects. Force a replication
then
check the DNS servers on both and make sure that only the standard primary
zone exists. Then change the zone back to AD integrated.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
Kevin D. Goodknecht Sr. [
Guest
|
| Posted:
Wed Oct 19, 2005 12:50 am Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
Wild Packet <mailtomohsin@hotmail.com> wrote:
| Quote: | In our envoirenement all the DCs are AD Integrated. We have 21 sites
connected with high speed links and each sites has a DCs with AD
Intgerated DNS.
This is a new DC I installed when I installed the AD and opened the
DNS this mydomain.com zone was already in there, therefore I am bit
skeptic what if I change the mydomain.com zone to Primary and it
messes up the original DNS server(s)?
|
Your original DNS server are already messed up, that's why you have a
conflicting zone in AD. Probably by having the zone using different
replications scopes on different DCs. All DC must use the same replication
scope for a zone. The easiest way to fix this is to remove the zone from AD
and clear it out of AD on all DCs.
That's why you need to reinstall the zone to AD, this is the only way you
can do it and not lose existing zone data. You must point all DCs to the one
you change to standard primary, this removes the zone from AD, but backs it
up as a standard primary zone. Then remove the AD zone from all other DCs
and delete the zone from ADU&C, after AD is clean of all the zone data, you
put the zone back in AD by changing the primary back to AD integrated and
let it replicate through AD. It is best to not try to create it manually on
any other DCs.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
=================================== |
|
| Back to top |
|
|
Ace Fekay [MVP]
Guest
|
| Posted:
Wed Oct 19, 2005 8:51 am Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
In news:OQxihBE1FHA.3300@TK2MSFTNGP15.phx.gbl,
Kevin D. Goodknecht Sr. [MVP] <admin@nospam.WFTX.US> made this post, which I
then commented about below:
| Quote: | Your original DNS server are already messed up, that's why you have a
conflicting zone in AD. Probably by having the zone using different
replications scopes on different DCs. All DC must use the same
replication scope for a zone. The easiest way to fix this is to
remove the zone from AD and clear it out of AD on all DCs.
That's why you need to reinstall the zone to AD, this is the only way
you can do it and not lose existing zone data. You must point all DCs
to the one you change to standard primary, this removes the zone from
AD, but backs it up as a standard primary zone. Then remove the AD
zone from all other DCs and delete the zone from ADU&C, after AD is
clean of all the zone data, you put the zone back in AD by changing
the primary back to AD integrated and let it replicate through AD. It
is best to not try to create it manually on any other DCs.
|
Funny, I thought I replied to this post with a similar answer, and a few
other posts too, but don't see them. Hmm...
Ace |
|
| Back to top |
|
|
WILDPACKET
Guest
|
| Posted:
Wed Oct 19, 2005 12:50 pm Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
Thank you for your replies.
The replication for this zone is set for the third option "To all DCs in the
AD domain mydomain.com" on all DCs."
I am going to contact the mothership (Microsoft) and see if they can address
this matter for me btu will give some more thoughts to fix it before I call
them.
Any more ideas guys?
I appreciate your input.
"Ace Fekay [MVP]" wrote:
| Quote: | In news:A265E78D-1171-49C3-A45D-95357132719F@microsoft.com,
WILDPACKET <WILDPACKET@discussions.microsoft.com> made this post, which I
then commented about below:
installed and additional DC to an exisiting domain.
These events loged in frequently 4015 and 4513.
DNS Server detected that is is not enlisted in the replication scope
of directory partion forestDNSZones.local.com......
Advise please.
Thank you
What replication scope is this specific zone set to? Which button is
selected under the replication scope setting? (Top, middle or bottom?)
What is the replication scope for the zone set to on the other DC set to?
If they are different, then I understand the conflic of settings.
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
If this post is viewed at a non-Microsoft community website, and you were to
respond to it through that community's website, I may not see your reply
unless that website posts replies back to the original Microsoft forum.
Therefore, please direct all replies ONLY to the Microsoft public newsgroup
this thread originated in so all can benefit or ensure the web community
posts it back to the original forum.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services
Microsot Certified Trainer
Infinite Diversities in Infinite Combinations.
=================================
|
|
|
| Back to top |
|
|
WILDPACKET
Guest
|
| Posted:
Wed Oct 19, 2005 4:51 pm Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
Sorry forgot to mention there is another zone in there called local.com too.
my msitake.
"Ace Fekay [MVP]" wrote:
| Quote: | In news:11F54411-E124-451B-A214-B721315E4D05@microsoft.com,
WILDPACKET <WILDPACKET@discussions.microsoft.com> made this post, which I
then commented about below:
And the all the DCs in our Domain are set for AD Integrated
replication for this zone in question.
All the DCs are set to the bottom button?
We need specifics. Just saying "AD Integrated zone" with the new Windows
2003 feature set is too general.
If a zone on one DC is set to the middle button, and the other is set to the
bottom button, then that would be a HUGE problem.
Ace
|
|
|
| Back to top |
|
|
WILDPACKET
Guest
|
| Posted:
Wed Oct 19, 2005 4:51 pm Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
Kevin:
That weird "CNF" settings which I mentioned earlier were actually a site was
configured twice under the Active Directory Sites and Service. I removed the
additional site and that issue seems to be have fixed.
Our DNS seems to be working fine.
Even the DNS server in question I can ping it my name and IP from any where
on my LAN and can also run a NSLOOKUP no issues at all.
"Kevin D. Goodknecht Sr. [MVP]" wrote:
| Quote: | Wild Packet <mailtomohsin@hotmail.com> wrote:
In our envoirenement all the DCs are AD Integrated. We have 21 sites
connected with high speed links and each sites has a DCs with AD
Intgerated DNS.
This is a new DC I installed when I installed the AD and opened the
DNS this mydomain.com zone was already in there, therefore I am bit
skeptic what if I change the mydomain.com zone to Primary and it
messes up the original DNS server(s)?
Your original DNS server are already messed up, that's why you have a
conflicting zone in AD. Probably by having the zone using different
replications scopes on different DCs. All DC must use the same replication
scope for a zone. The easiest way to fix this is to remove the zone from AD
and clear it out of AD on all DCs.
That's why you need to reinstall the zone to AD, this is the only way you
can do it and not lose existing zone data. You must point all DCs to the one
you change to standard primary, this removes the zone from AD, but backs it
up as a standard primary zone. Then remove the AD zone from all other DCs
and delete the zone from ADU&C, after AD is clean of all the zone data, you
put the zone back in AD by changing the primary back to AD integrated and
let it replicate through AD. It is best to not try to create it manually on
any other DCs.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
|
| Back to top |
|
|
WILDPACKET
Guest
|
| Posted:
Wed Oct 19, 2005 4:51 pm Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
And the all the DCs in our Domain are set for AD Integrated replication for
this zone in question.
"Ace Fekay [MVP]" wrote:
| Quote: | In news:A265E78D-1171-49C3-A45D-95357132719F@microsoft.com,
WILDPACKET <WILDPACKET@discussions.microsoft.com> made this post, which I
then commented about below:
installed and additional DC to an exisiting domain.
These events loged in frequently 4015 and 4513.
DNS Server detected that is is not enlisted in the replication scope
of directory partion forestDNSZones.local.com......
Advise please.
Thank you
What replication scope is this specific zone set to? Which button is
selected under the replication scope setting? (Top, middle or bottom?)
What is the replication scope for the zone set to on the other DC set to?
If they are different, then I understand the conflic of settings.
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
If this post is viewed at a non-Microsoft community website, and you were to
respond to it through that community's website, I may not see your reply
unless that website posts replies back to the original Microsoft forum.
Therefore, please direct all replies ONLY to the Microsoft public newsgroup
this thread originated in so all can benefit or ensure the web community
posts it back to the original forum.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services
Microsot Certified Trainer
Infinite Diversities in Infinite Combinations.
=================================
|
|
|
| Back to top |
|
|
WILDPACKET
Guest
|
| Posted:
Wed Oct 19, 2005 4:51 pm Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
All set to bottom button.
"Ace Fekay [MVP]" wrote:
| Quote: | In news:11F54411-E124-451B-A214-B721315E4D05@microsoft.com,
WILDPACKET <WILDPACKET@discussions.microsoft.com> made this post, which I
then commented about below:
And the all the DCs in our Domain are set for AD Integrated
replication for this zone in question.
All the DCs are set to the bottom button?
We need specifics. Just saying "AD Integrated zone" with the new Windows
2003 feature set is too general.
If a zone on one DC is set to the middle button, and the other is set to the
bottom button, then that would be a HUGE problem.
Ace
|
|
|
| Back to top |
|
|
Ace Fekay [MVP]
Guest
|
| Posted:
Wed Oct 19, 2005 4:51 pm Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
In news:11F54411-E124-451B-A214-B721315E4D05@microsoft.com,
WILDPACKET <WILDPACKET@discussions.microsoft.com> made this post, which I
then commented about below:
| Quote: | And the all the DCs in our Domain are set for AD Integrated
replication for this zone in question.
|
All the DCs are set to the bottom button?
We need specifics. Just saying "AD Integrated zone" with the new Windows
2003 feature set is too general.
If a zone on one DC is set to the middle button, and the other is set to the
bottom button, then that would be a HUGE problem.
Ace |
|
| Back to top |
|
|
Ace Fekay [MVP]
Guest
|
| Posted:
Thu Oct 20, 2005 12:51 am Post subject:
Re: 4015 and 4513 [WILDPACKET] |
|
|
In news:C69BE848-FB04-44BB-99CD-F249DA5F7CD3@microsoft.com,
WILDPACKET <WILDPACKET@discussions.microsoft.com> made this post, which I
then commented about below:
| Quote: | Sorry forgot to mention there is another zone in there called
local.com too.
my msitake.
|
What is the local.com zone on all DCs set to? |
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in