Active Directory LDAP replication errors and Exchange

John Knight 1 Reputation point
2020-08-05T20:36:11.783+00:00

I'm at a complete loss of what to do. I've been battling an unstable domain, which is affecting my company's Exchange Server. The first issue started last Friday when a coworker could not connect. Since then I've been through a number of tech websites and how-to's only to end up with no fix.

One forest with two domains. First domain has three DCs, and where Exchange resides. The second domain was setup in 2016 after a merger. At the time it was easier to attach it to the existing forest.

The PDC in the first domain appears to be the culprit. It's running 2003, and was in the process of being migrated to one of the 2012 R2 DCs.

I can ping and run nslookup without error between all the DCs. I cannot get them to replicate. Last successful replication was on July 3. I cannot transfer or seize the FSMO to the 2012 R2 DC from the PDC.

I've run dcdiag, netdom (query fsmo, and resetpwd), and repadmin commands. Everything appears to point back to LDAP issue(s), or the target principal name is incorrect, or that RPC is not running on any of the DCs.

I can supply reports for anyone willing to help.

Thank you.

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,149 questions
Exchange Server Management
Exchange Server Management
Exchange Server: A family of Microsoft client/server messaging and collaboration software.Management: The act or process of organizing, handling, directing or controlling something.
7,466 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Hannah Xiong 6,256 Reputation points
    2020-08-06T03:00:46.427+00:00

    Hello,

    Thank you so much for posting here.

    According to our description, we have 2 domains in one forest. First domain has 3 DCs. There are some issues with the 3 DCs now. Before going further, we would like to configure out all the detailed error messages and then check how to solve the issues.

    Please run the below commands:

    1. We should check if all DCs work fine by running Dcdiag /v on every DC.
    2. And check if AD replication is working properly by running repadmin /showrepl and repadmin /replsum on every DC.
    3. Run repadmin /showrepl * /csv >C:\showrepl.csv on one of the DCs.

    Please kindly check the reports and tell us the specific error messages. For any question, please feel free to contact us.

    Best regards,
    Hannah Xiong