R
rwcmick
i received the following message on my schema master (also a gc
server) when running adprep /forestprep. i have three dc's all
windows 2000 sp4 with all critical patches and no problems in the
event log. the login account used was schema/enterprise.
Adprep was unable to modify the security descriptor on object
CN=Sites,CN=Configuration,DC=xxx,DC=org.
[Status/Consequence]
ADPREP was unable to merge the existing security descriptor with the
new access control entry (ACE).
[User Action]
Check the log file Adprep.log in the system root
System32\Debug\Adprep\Logs directory for more information.
Adprep encountered a Win32 error.
...
Adprep set the value of registry key
System\CurrentControlSet\Services\NTDS\Parameters\Schema Update
Allowed to 0
Adprep was unable to update forest-wide information.
[Status/Consequence]
Adprep requires access to existing forest-wide information from the
schema master in order to complete this operation.
[User Action]
Check the log file, Adprep.log, in the
C:\WINNT\system32\debug\adprep\logs\20031029085817 directory for more
information.
server) when running adprep /forestprep. i have three dc's all
windows 2000 sp4 with all critical patches and no problems in the
event log. the login account used was schema/enterprise.
Adprep was unable to modify the security descriptor on object
CN=Sites,CN=Configuration,DC=xxx,DC=org.
[Status/Consequence]
ADPREP was unable to merge the existing security descriptor with the
new access control entry (ACE).
[User Action]
Check the log file Adprep.log in the system root
System32\Debug\Adprep\Logs directory for more information.
Adprep encountered a Win32 error.
...
Adprep set the value of registry key
System\CurrentControlSet\Services\NTDS\Parameters\Schema Update
Allowed to 0
Adprep was unable to update forest-wide information.
[Status/Consequence]
Adprep requires access to existing forest-wide information from the
schema master in order to complete this operation.
[User Action]
Check the log file, Adprep.log, in the
C:\WINNT\system32\debug\adprep\logs\20031029085817 directory for more
information.