Active Directory Server won’t replicate if one of the server was offline for a long time

Problem:

When one of the active directory server was offline for a long time and brought it back online, the replication won’t work due to two servers having different active directory information.

When you try to run replication, you receive an error message such as.

Dialog title text: Replicate Now
Dialog message text: The following error occurred during the attempt to synchronize naming context <%active directory partition name%> from domain controller <source DC> to domain controller <destination DC>:

Insufficient attributes were given to create an object. This object may not exist because it may have been deleted and already garbage collected. 

The operation will not continue

When you run dcdiag, you receive an error 8606

Starting test: Replications
[Replications Check, <Destination DC>] A recent replication attempt failed:
From <source DC> to <destination DC>
Naming Context: <directory partition DN path>
The replication generated an error (8606): 
Insufficient attributes were given to create an object. This object may not exist because it may have been deleted and already garbage collected
The failure occurred at <date> <time>
The last success occurred at <date> <time>

Solution:

First, run repadmin /options. If the replication is disabled, it will show you if the inbound or outbound replication is diabled.

Run the following command.

repadmin /options +DISABLE_OUTBOUND_REPL
repadmin /options -DISABLE_OUTBOUND_REPL
repadmin /options +DISABLE_INBOUND_REPL
repadmin /options -DISABLE_INBOUND_REPL

This will clear up any replication that is diabled.

Then, we want to enable loose replication consistency.

  1. Locate and click the following registry key:
    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters
  2. Click Add Value on the Edit menu.
  3. Add the following value:
    Value Name: Strict Replication Consistency
    Data type: REG_DWORD
    Value data: If the value is 1, change it to 0.

Try running manual replication and see if the replication works. You will need to enable the loose replication consistency on both replication partner. (Otherwise, the replication will work one way only.) After the manual replicaiton is successful, you may disable the loose replication consistency back.

Advertisements

2 thoughts on “Active Directory Server won’t replicate if one of the server was offline for a long time

  1. I couldn’t remember where to enable strict replication in the GUI after reverting the domain pool from a VM snapshot, but this did the trick! Thank you –

  2. The great command is :
    repadmin /options [NameDC] +DISABLE_OUTBOUND_REPL
    repadmin /options [NameDC] -DISABLE_OUTBOUND_REPL

    It works ! Thank you !

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s