Hi All.
I am having trouble with replication in my forest and I am struggling to get this resolved. The forest is made up of 1 parent with 4 child domains, site.domain.local. We recently changed data centres and ISP and all went well until one of our sites started to have RF interference on their ADSL line causing the connection in the MPLS network for this site to be very unreliable. Since then users at any site are unable to connect to resources at other sites, the ADSL line may be a red hearing with this issue as people not at this site are affected too. Here is what I have done so far.
Looking at the DC of the Parent domains event logs I see Error 4010 for the following servers;
cd9e1ed9-57d5-4f93-93a1-d8b020a1b6c7._msdcs.s****group.local – 192.168.10.1
99e38c17-ef19-4843-823c-a3cb7bf5422e._msdcs.s****group.local – 192.168.10.2
4872ca68-0d26-4687-95ce-62da8a19ad8d._msdcs.s****group.local – 192.168.11.1
32f8d64e-91f7-48a1-a40e-bbf3a310d503._msdcs.s****group.local – 192.168.200.10
0fca4013-54f7-484b-8f7e-7f0116824d4e._msdcs.s****group.local – 192.168.200.5
I have checked these GUIDs in DNS and they are there under._msdcs.s****group.local and are correct in Sites and Services. I wanted to check in ADSIedit but not 100% sure where to look but when I navigated to DC=S********p,DC=Local,CN=System,CN=FileReplication Service,CN=Domain System Volume(SYSVOL share) there was an old server that has long been retired using DCpromo and even checked while doing a metadata clearup using ntdsutil. I did see to entries in ADSIEdit under DC=S********p,DC=Local,CN=Domain Controllers and looking at the properties of the 2 servers found here, the objectGUID seemed incorrect, am I looking at the correct location and detail?
The next thing I did was to renam Netlogon.dnb and Netlogon.dns to .OLD then ran;
Net stop DNS
Net stop Netlogon
Ipconfig /flushdns
Net Start Netlogon
Net start DNS
Ipconfig /registerdns
Repadmin /syncall /AeDq
Result is as follows;
Syncing all NC's held on KRONOS.
Syncing partition: DC=ForestDnsZones,DC=s****group,DC=local
SyncAll reported the following errors:
Error contacting server 4872ca68-0d26-4687-95ce-62da8a19ad8d._msdcs.s****group.local (network error): -2146892976 (0x80090350):
The system detected a possible attempt to compromise security. Please ensure that you can contact the server that authenticated you.
Syncing partition: DC=DomainDnsZones,DC=s****group,DC=local
SyncAll terminated with no errors.
Syncing partition: CN=Schema,CN=Configuration,DC=s****group,DC=local
SyncAll reported the following errors:
Error contacting server 4872ca68-0d26-4687-95ce-62da8a19ad8d._msdcs.s****group.local (network error): -2146892976 (0x80090350):
The system detected a possible attempt to compromise security. Please ensure that you can contact the server that authenticated you.
Syncing partition: CN=Configuration,DC=s****group,DC=local
SyncAll reported the following errors:
Error contacting server 4872ca68-0d26-4687-95ce-62da8a19ad8d._msdcs.s****group.local (network error): -2146892976 (0x80090350):
The system detected a possible attempt to compromise security. Please ensure that you can contact the server that authenticated you.
Syncing partition: DC=s****group,DC=local
SyncAll reported the following errors:
Error contacting server 4872ca68-0d26-4687-95ce-62da8a19ad8d._msdcs.s****group.local (network error): -2146892976 (0x80090350):
The system detected a possible attempt to compromise security. Please ensure that you can contact the server that authenticated you.
Syncing partition: DC=TechGate,DC=s****group,DC=local
SyncAll reported the following errors:
Error contacting server 4872ca68-0d26-4687-95ce-62da8a19ad8d._msdcs.s****group.local (network error): -2146892976 (0x80090350):
The system detected a possible attempt to compromise security. Please ensure that you can contact the server that authenticated you.
Syncing partition: DC=Southampton1,DC=s****group,DC=local
SyncAll reported the following errors:
Error contacting server 4872ca68-0d26-4687-95ce-62da8a19ad8d._msdcs.s****group.local (network error): -2146892976 (0x80090350):
The system detected a possible attempt to compromise security. Please ensure that you can contact the server that authenticated you.
Syncing partition: DC=tonbridge,DC=s****group,DC=local
SyncAll reported the following errors:
Error contacting server 4872ca68-0d26-4687-95ce-62da8a19ad8d._msdcs.s****group.local (network error): -2146892976 (0x80090350):
The system detected a possible attempt to compromise security. Please ensure that you can contact the server that authenticated you.
Syncing partition: DC=braintree,DC=s****group,DC=local
SyncAll reported the following errors:
Error contacting server 4872ca68-0d26-4687-95ce-62da8a19ad8d._msdcs.s****group.local (network error): -2146892976 (0x80090350):
The system detected a possible attempt to compromise security. Please ensure that you can contact the server that authenticated you.
I have checked and there is no firewall between any sites and the firewall on the 2008 R2 servers is disabled through GP (other servers are 2003 with no firewall). Whats my next best step?