AD Replication and Authentication Problems - pls help

[NoNameHere]

I am having unusual replication problems with my 3 server AD network.
Could you please take a look at my summary and drop me an email or
post a reply here if you have any thoughts on how to fix this?

http://crackerhead.idlegames.com/healthcare/problem.htm

 

[Guest]

Some thoughts -

No need to worry about WINS, AD doesn't use it. WINS/NetBIOS name resolution issues will never break AD replication

The fact that connection by IP works but by name fails usually indicates Kerberos is failing (when you connect by IP that forces NTLM authentication to be used).

And if Kerberos is failing you may be suffering from fragmentation of Kerberos packets. There is a KB on that, query on MaxPacketSize and use 1465 for the value when you set it.

The 12292 is telling you there are conflicting objects. And the DN shows them to be in the Users container, so check all three DCs for this, and delete the one that is in conflict