About 6 months ago, I travelled to a remote office where we had issues with machines falling out of the domain, more regularly then at our headquarters. I decided to deploy a RODC at this site, hoping to alleviate the issue. Since this deployment, every machine on that site now generates EventIDs for NETLOGON 5805/5723, but these machines are still in the domain. I can remote to them, I see them as authenticated machines, and they act as if they are joined. This error is only reported on the RODC.
Perhaps I've done something wrong in setting up the RODC, such as the PRP is incorrect or the accounts that joined the machine to the domain are not setup properly for a RODC. On the RODC, I hit properties and went to Password Replication Policy->Advanced, and I do see all the machines in the "Accounts that been authenticated to this Read-only Domain Controller". The "Accounts whose passwords are stored o nthis Read-only domain controller" are only the krbtgt_xxxxx, and the RODC itself. On the PRP tab of the RODC Properties, I see Allowed RODC Password Replication group as the only "allowed" group.
I am not sure what is occurring here, but these are Windows 2008 R2 servers reporting to this Windows 2008 R2 RODC, so the compatbility pack does not apply(I believe). Is there some sort of delegation responsbilities I need to assign to the RODC?
Thanks all,