I have a very strange situation/issue. We've been having some oddities with replication and mostly demotions of domain controllers. The error messages lead us to do some digging and here is what I found. When I run the following:
ldifde -f Infra_DomainDNSZones.ldf -d "CN=Infrastructure,DC=DomainDnsZones,DC=ttiinc,DC=com" -l fSMORoleOwner
I see a stale entry from an old retired server:
fSMORoleOwner:
CN=NTDS Settings\0ADEL:99784713-b9eb-4d06-8189-f63b56405981,CN=ADS003\0ADEL:
038ac0fe-4406-46fd-b444-8d665c49a5a8,CN=Servers,CN=Corp,CN=Sites,CN=Confi
guration,DC=domain,DC=com
However, when I view the entry in ADSIEdit, the entry is correct (i.e. shows the right DC):
CN=NTDS Settings,CN=ADS001,CN=Servers,CN=CorpTX,CN=Sites,CN=Configuration,DC=domain,DC=com
How do I reconcile this? I've seen the script posted here (https://support.microsoft.com/en-us/kb/949257) which all the forums suggest running; however they all presume the entry visible in ADSIEdit is corrupt - which is ours is correct. The bad entry is only visible when running from the command line (ldifde or dsquery).
Thank you in advance!
Karl