add a dc on wan

  • Thread starter Thread starter Edson
  • Start date Start date
E

Edson

Hi..
I`m trying start a new dc on our branch, in midle of
process appears a msg that says credentials of network
proided have access to add replica.

my account is member of domain admins, enterpresi admins
and so on..
we are using wan over vpn!
 
can you provide the part of dcpromo.log file located in
%systemroot%\system32\debug that shows this error ?

--

Regards
Matjaz Ladava, MCSA, MCSE, MCT, MVP
Microsoft MVP Windows Server - Active Directory
(e-mail address removed), (e-mail address removed)
 
segue

02/25 14:03:59 [INFO] Promotion request for replica
domain controller
02/25 14:03:59 [INFO] DnsDomainName weg.net
02/25 14:03:59 [INFO] ReplicaPartner (NULL)
02/25 14:03:59 [INFO] SiteName (NULL)
02/25 14:03:59 [INFO] DsDatabasePath d:\NTDS,
DsLogPath l:\NTDS
02/25 14:03:59 [INFO] SystemVolumeRootPath d:\SYSVOL
02/25 14:03:59 [INFO] Account weg.net\maurot
02/25 14:03:59 [INFO] Options 196
02/25 14:03:59 [INFO] Validate supplied paths
02/25 14:03:59 [INFO] Validating path d:\NTDS.
02/25 14:03:59 [INFO] Path is a directory
02/25 14:03:59 [INFO] Path is on a fixed disk drive.
02/25 14:03:59 [INFO] Validating path l:\NTDS.
02/25 14:03:59 [INFO] Path is a directory
02/25 14:03:59 [INFO] Path is on a fixed disk drive.
02/25 14:03:59 [INFO] Validating path d:\SYSVOL.
02/25 14:03:59 [INFO] Path is on a fixed disk drive.
02/25 14:03:59 [INFO] Path is on an NTFS volume
02/25 14:03:59 [INFO] Start the worker task
02/25 14:03:59 [INFO] Request for promotion returning 0
02/25 14:03:59 [INFO] Searching for a domain controller
for the domain weg.net that contains the account USATL001$

02/25 14:04:00 [INFO] Located domain controller
brjgs191.weg.net for domain weg.net

02/25 14:04:00 [INFO] Using site US-ATLANTA for server
\\brjgs191.weg.net

02/25 14:04:00 [INFO] Forcing time sync
02/25 14:04:00 [INFO] Forcing a time synch with
\\brjgs191.weg.net

02/25 14:05:04 [INFO] Setting machine account to be DC
02/25 14:05:04 [INFO] Configuring the server account

02/25 14:05:04 [INFO] Searching for the machine account
for USATL001$ on \\brjgs191.weg.net...
02/25 14:05:04 [INFO] Configuring the server account

02/25 14:06:11 [INFO] NtdsSetReplicaMachineAccount
returned 0
02/25 14:06:11 [INFO] Previous location of account
USATL001$ to CN=USATL001,CN=Computers,DC=weg,DC=net
02/25 14:06:11 [INFO] Stopping service NETLOGON

02/25 14:06:11 [INFO] Stopping service NETLOGON

02/25 14:07:11 [INFO] Configuring service NETLOGON to 1
returned 0
02/25 14:07:11 [INFO] Deleting current sysvol path
d:\SYSVOL
02/25 14:07:13 [INFO] Copying initial Directory Service
database file C:\WINNT\system32\ntds.dit to
d:\NTDS\ntds.dit

02/25 14:07:15 [INFO] Installing the Directory Service

02/25 14:07:15 [INFO] Calling NtdsInstall for weg.net
02/25 14:07:15 [INFO] Starting the Directory Service
installation
02/25 14:07:15 [INFO] Validating user supplied options
02/25 14:07:15 [INFO] Determining local site to enter
02/25 14:07:15 [INFO] Examining existing Enterprise
Directory Service
02/25 14:08:42 [INFO] Starting a replication cycle
between brjgs191.weg.net and brjgs110.weg.net, the RID
FSMO, so that the new replica will be able to create
security principals.
02/25 14:10:50 [INFO] Configuring the local server to
host the Directory Service
02/25 14:10:54 [INFO] Creating the ntdsa object for this
server on brjgs191.weg.net.
02/25 14:13:00 [INFO] Error - The Directory Service
failed to create the server object for CN=NTDS
Settings,CN=USATL001,CN=Servers,CN=US-
ATLANTA,CN=Sites,CN=Configuration,DC=weg,DC=net on server
brjgs191.weg.net. Please ensure
the network credentials provided have sufficient access
to add a replica. (1908)
02/25 14:13:01 [INFO] NtdsInstall for weg.net returned
1908
02/25 14:13:01 [INFO] DsRolepInstallDs returned 1908
02/25 14:13:01 [ERROR] Failed to install to Directory
Service (1908)
02/25 14:13:09 [INFO] Starting service NETLOGON

02/25 14:13:09 [INFO] Configuring service NETLOGON to 2
returned 0
02/25 14:13:09 [INFO] Searching for the machine account
for USATL001$ on \\brjgs191.weg.net...
02/25 14:13:09 [INFO] Configuring the server account

02/25 14:14:13 [INFO] NtdsSetReplicaMachineAccount
returned 0
02/25 14:14:13 [INFO] Attempted to move account USATL001$
to CN=USATL001,CN=Computers,DC=weg,DC=net
02/25 14:14:13 [INFO] The attempted domain controller
operation has completed

02/25 14:14:13 [INFO] DsRolepSetOperationDone returned 0
02/25 15:03:01 [INFO] Promotion request for replica
domain controller
02/25 15:03:01 [INFO] DnsDomainName weg.net
02/25 15:03:01 [INFO] ReplicaPartner (NULL)
02/25 15:03:01 [INFO] SiteName (NULL)
02/25 15:03:01 [INFO] DsDatabasePath D:\NTDS,
DsLogPath L:\NTDS
02/25 15:03:01 [INFO] SystemVolumeRootPath D:\SYSVOL
02/25 15:03:01 [INFO] Account weg.net\edsonh
02/25 15:03:01 [INFO] Options 196
02/25 15:03:01 [INFO] Validate supplied paths
02/25 15:03:01 [INFO] Validating path D:\NTDS.
02/25 15:03:01 [INFO] Path is a directory
02/25 15:03:01 [INFO] Path is on a fixed disk drive.
02/25 15:03:01 [INFO] Validating path L:\NTDS.
02/25 15:03:01 [INFO] Path is a directory
02/25 15:03:01 [INFO] Path is on a fixed disk drive.
02/25 15:03:01 [INFO] Validating path D:\SYSVOL.
02/25 15:03:01 [INFO] Path is on a fixed disk drive.
02/25 15:03:01 [INFO] Path is on an NTFS volume
02/25 15:03:01 [INFO] Start the worker task
02/25 15:03:01 [INFO] Request for promotion returning 0
02/25 15:03:01 [INFO] Searching for a domain controller
for the domain weg.net that contains the account USATL001$

02/25 15:03:01 [INFO] Located domain controller
brjgs191.weg.net for domain weg.net

02/25 15:03:01 [INFO] Using site US-ATLANTA for server
\\brjgs191.weg.net

02/25 15:03:01 [INFO] Forcing time sync
02/25 15:03:01 [INFO] Forcing a time synch with
\\brjgs191.weg.net

02/25 15:04:06 [INFO] Setting machine account to be DC
02/25 15:04:06 [INFO] Configuring the server account

02/25 15:04:06 [INFO] Searching for the machine account
for USATL001$ on \\brjgs191.weg.net...
02/25 15:04:06 [INFO] Configuring the server account

02/25 15:05:10 [INFO] NtdsSetReplicaMachineAccount
returned 0
02/25 15:05:10 [INFO] Previous location of account
USATL001$ to CN=USATL001,CN=Computers,DC=weg,DC=net
02/25 15:05:10 [INFO] Stopping service NETLOGON

02/25 15:05:10 [INFO] Stopping service NETLOGON

02/25 15:06:10 [INFO] Configuring service NETLOGON to 1
returned 0
02/25 15:06:10 [INFO] Deleting current sysvol path
D:\SYSVOL
02/25 15:06:13 [INFO] Copying initial Directory Service
database file C:\WINNT\system32\ntds.dit to
D:\NTDS\ntds.dit

02/25 15:06:15 [INFO] Installing the Directory Service

02/25 15:06:15 [INFO] Calling NtdsInstall for weg.net
02/25 15:06:15 [INFO] Starting the Directory Service
installation
02/25 15:06:15 [INFO] Validating user supplied options
02/25 15:06:15 [INFO] Determining local site to enter
02/25 15:06:15 [INFO] Examining existing Enterprise
Directory Service
02/25 15:07:22 [INFO] Starting a replication cycle
between brjgs191.weg.net and brjgs110.weg.net, the RID
FSMO, so that the new replica will be able to create
security principals.
02/25 15:09:29 [INFO] Configuring the local server to
host the Directory Service
02/25 15:09:33 [INFO] Creating the ntdsa object for this
server on brjgs191.weg.net.
02/25 15:11:40 [INFO] Error - The Directory Service
failed to create the server object for CN=NTDS
Settings,CN=USATL001,CN=Servers,CN=US-
ATLANTA,CN=Sites,CN=Configuration,DC=weg,DC=net on server
brjgs191.weg.net. Please ensure
the network credentials provided have sufficient access
to add a replica. (1908)
02/25 15:11:40 [INFO] NtdsInstall for weg.net returned
1908
02/25 15:11:40 [INFO] DsRolepInstallDs returned 1908
02/25 15:11:40 [ERROR] Failed to install to Directory
Service (1908)
02/25 15:11:48 [INFO] Starting service NETLOGON

02/25 15:11:48 [INFO] Configuring service NETLOGON to 2
returned 0
02/25 15:11:48 [INFO] Searching for the machine account
for USATL001$ on \\brjgs191.weg.net...
02/25 15:11:48 [INFO] Configuring the server account

02/25 15:12:53 [INFO] NtdsSetReplicaMachineAccount
returned 0
02/25 15:12:53 [INFO] Attempted to move account USATL001$
to CN=USATL001,CN=Computers,DC=weg,DC=net
02/25 15:12:53 [INFO] The attempted domain controller
operation has completed

02/25 15:12:53 [INFO] DsRolepSetOperationDone returned 0
02/25 16:51:18 [INFO] Promotion request for replica
domain controller
02/25 16:51:18 [INFO] DnsDomainName weg.net
02/25 16:51:18 [INFO] ReplicaPartner (NULL)
02/25 16:51:18 [INFO] SiteName (NULL)
02/25 16:51:18 [INFO] DsDatabasePath d:\NTDS,
DsLogPath l:\NTDS
02/25 16:51:18 [INFO] SystemVolumeRootPath d:\SYSVOL
02/25 16:51:18 [INFO] Account weg.net\maurot
02/25 16:51:18 [INFO] Options 196
02/25 16:51:18 [INFO] Validate supplied paths
02/25 16:51:18 [INFO] Validating path d:\NTDS.
02/25 16:51:18 [INFO] Path is a directory
02/25 16:51:18 [INFO] Path is on a fixed disk drive.
02/25 16:51:18 [INFO] Validating path l:\NTDS.
02/25 16:51:18 [INFO] Path is a directory
02/25 16:51:18 [INFO] Path is on a fixed disk drive.
02/25 16:51:18 [INFO] Validating path d:\SYSVOL.
02/25 16:51:18 [INFO] Path is on a fixed disk drive.
02/25 16:51:18 [INFO] Path is on an NTFS volume
02/25 16:51:18 [INFO] Start the worker task
02/25 16:51:18 [INFO] Request for promotion returning 0
02/25 16:51:18 [INFO] Searching for a domain controller
for the domain weg.net that contains the account USATL001$

02/25 16:51:19 [INFO] Located domain controller
brjgs191.weg.net for domain weg.net

02/25 16:51:19 [INFO] Using site US-ATLANTA for server
\\brjgs191.weg.net

02/25 16:51:19 [INFO] Forcing time sync
02/25 16:51:19 [INFO] Forcing a time synch with
\\brjgs191.weg.net

02/25 16:51:41 [INFO] Canceling current operation...
02/25 16:51:41 [INFO] Waiting for the role change
operation to complete
 
Back
Top