积极答复者
安装exchange2003时遇到的问题
问题
-
公司最近安装exchange2003,在做dc检测的时候遇到DC和BDC无法同步的问题,请大家帮我看看怎么解决,如果不理会这个问题而继续安装exchange2003,会不会有什么影响?谢谢
下面是dcdiag的log
Domain Controller DiagnosisPerforming initial setup:
* Verifying that the local machine mainnt, is a DC.
* Connecting to directory service on server mainnt.
* Collecting site info.
* Identifying all servers.
* Identifying all NC cross-refs.
* Found 3 DC(s). Testing 1 of them.
Done gathering initial info.Doing initial required tests
Testing server: Default-First-Site-Name\MAINNT
Starting test: Connectivity
* Active Directory LDAP Services Check
* Active Directory RPC Services Check
......................... MAINNT passed test ConnectivityDoing primary tests
Testing server: Default-First-Site-Name\MAINNT
Starting test: Replications
* Replications Check
[Replications Check,MAINNT] A recent replication attempt failed:
From IT to MAINNT
Naming Context: DC=ForestDnsZones,DC=nrb,DC=com,DC=cn
The replication generated an error (1256):
远程系统不可用。有关网络疑难解答,请参阅 Windows 帮助。
The failure occurred at 2009-10-22 11:48:40.
The last success occurred at 2009-03-19 11:02:28.
5215 failures have occurred since the last success.
[IT] DsBindWithSpnEx() failed with error 1753,
终结点映射器中没有更多的终结点可用。.
Printing RPC Extended Error Info:
Error Record 1, ProcessID is 8860 (DcDiag)
System Time is: 10/22/2009 4:27:52:953
Generating component is 2 (RPC runtime)
Status is 1753: 终结点映射器中没有更多的终结点可用。Detection location is 501
NumberOfParameters is 4
Unicode string: ncacn_ip_tcp
Unicode string: ade45ec2-9081-4748-b969-b6de826aa679._msdcs.nrb.com.cn
Long val: -481213899
Pointer val: 731168
[Replications Check,MAINNT] A recent replication attempt failed:
From IT to MAINNT
Naming Context: DC=DomainDnsZones,DC=nrb,DC=com,DC=cn
The replication generated an error (1256):
远程系统不可用。有关网络疑难解答,请参阅 Windows 帮助。
The failure occurred at 2009-10-22 11:48:40.
The last success occurred at 2009-03-19 11:02:28.
5215 failures have occurred since the last success.
[Replications Check,MAINNT] A recent replication attempt failed:
From IT to MAINNT
Naming Context: CN=Schema,CN=Configuration,DC=nrb,DC=com,DC=cn
The replication generated an error (1753):
终结点映射器中没有更多的终结点可用。
The failure occurred at 2009-10-22 11:48:40.
The last success occurred at 2009-03-19 10:56:13.
5215 failures have occurred since the last success.
The directory on IT is in the process.
of starting up or shutting down, and is not available.
Verify machine is not hung during boot.
[Replications Check,MAINNT] A recent replication attempt failed:
From IT to MAINNT
Naming Context: CN=Configuration,DC=nrb,DC=com,DC=cn
The replication generated an error (1753):
终结点映射器中没有更多的终结点可用。
The failure occurred at 2009-10-22 11:48:40.
The last success occurred at 2009-03-20 16:33:55.
5186 failures have occurred since the last success.
The directory on IT is in the process.
of starting up or shutting down, and is not available.
Verify machine is not hung during boot.
[Replications Check,MAINNT] A recent replication attempt failed:
From IT to MAINNT
Naming Context: DC=nrb,DC=com,DC=cn
The replication generated an error (1753):
终结点映射器中没有更多的终结点可用。
The failure occurred at 2009-10-22 11:48:40.
The last success occurred at 2009-03-20 16:34:47.
5186 failures have occurred since the last success.
The directory on IT is in the process.
of starting up or shutting down, and is not available.
Verify machine is not hung during boot.
* Replication Latency Check
REPLICATION-RECEIVED LATENCY WARNING
MAINNT: Current time is 2009-10-22 12:27:52.
DC=ForestDnsZones,DC=nrb,DC=com,DC=cn
Last replication recieved from IT at 2009-03-19 11:02:28.
WARNING: This latency is over the Tombstone Lifetime of 180 days!
DC=DomainDnsZones,DC=nrb,DC=com,DC=cn
Last replication recieved from IT at 2009-03-19 11:02:28.
WARNING: This latency is over the Tombstone Lifetime of 180 days!
CN=Schema,CN=Configuration,DC=nrb,DC=com,DC=cn
Last replication recieved from IT at 2009-03-19 10:56:13.
WARNING: This latency is over the Tombstone Lifetime of 180 days!
CN=Configuration,DC=nrb,DC=com,DC=cn
Last replication recieved from IT at 2009-03-20 16:33:58.
WARNING: This latency is over the Tombstone Lifetime of 180 days!
DC=nrb,DC=com,DC=cn
Last replication recieved from IT at 2009-03-20 16:34:48.
WARNING: This latency is over the Tombstone Lifetime of 180 days!
* Replication Site Latency Check
......................... MAINNT passed test Replications
Test omitted by user request: Topology
Test omitted by user request: CutoffServers
Starting test: NCSecDesc
* Security Permissions Check for
DC=ForestDnsZones,DC=nrb,DC=com,DC=cn
(NDNC,Version 2)
* Security Permissions Check for
DC=DomainDnsZones,DC=nrb,DC=com,DC=cn
(NDNC,Version 2)
* Security Permissions Check for
CN=Schema,CN=Configuration,DC=nrb,DC=com,DC=cn
(Schema,Version 2)
* Security Permissions Check for
CN=Configuration,DC=nrb,DC=com,DC=cn
(Configuration,Version 2)
* Security Permissions Check for
DC=nrb,DC=com,DC=cn
(Domain,Version 2)
......................... MAINNT passed test NCSecDesc
Starting test: NetLogons
* Network Logons Privileges Check
......................... MAINNT passed test NetLogons
Starting test: Advertising
The DC MAINNT is advertising itself as a DC and having a DS.
The DC MAINNT is advertising as an LDAP server
The DC MAINNT is advertising as having a writeable directory
The DC MAINNT is advertising as a Key Distribution Center
The DC MAINNT is advertising as a time server
The DS MAINNT is advertising as a GC.
......................... MAINNT passed test Advertising
Starting test: KnowsOfRoleHolders
Role Schema Owner = CN=NTDS Settings,CN=MAINNT,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nrb,DC=com,DC=cn
Role Domain Owner = CN=NTDS Settings,CN=MAINNT,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nrb,DC=com,DC=cn
Role PDC Owner = CN=NTDS Settings,CN=MAINNT,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nrb,DC=com,DC=cn
Role Rid Owner = CN=NTDS Settings,CN=MAINNT,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nrb,DC=com,DC=cn
Role Infrastructure Update Owner = CN=NTDS Settings,CN=MAINNT,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nrb,DC=com,DC=cn
......................... MAINNT passed test KnowsOfRoleHolders
Starting test: RidManager
* Available RID Pool for the Domain is 3107 to 1073741823
* mainnt.nrb.com.cn is the RID Master
* DsBind with RID Master was successful
* rIDAllocationPool is 2607 to 3106
* rIDPreviousAllocationPool is 2607 to 3106
* rIDNextRID: 2618
......................... MAINNT passed test RidManager
Starting test: MachineAccount
* SPN found :LDAP/mainnt.nrb.com.cn/nrb.com.cn
* SPN found :LDAP/mainnt.nrb.com.cn
* SPN found :LDAP/MAINNT
* SPN found :LDAP/mainnt.nrb.com.cn/NRB
* SPN found :LDAP/4919fe8e-6c25-4d0e-93e1-6ba8c7235c27._msdcs.nrb.com.cn
* SPN found :E3514235-4B06-11D1-AB04-00C04FC2DCD2/4919fe8e-6c25-4d0e-93e1-6ba8c7235c27/nrb.com.cn
* SPN found :HOST/mainnt.nrb.com.cn/nrb.com.cn
* SPN found :HOST/mainnt.nrb.com.cn
* SPN found :HOST/MAINNT
* SPN found :HOST/mainnt.nrb.com.cn/NRB
* SPN found :GC/mainnt.nrb.com.cn/nrb.com.cn
......................... MAINNT passed test MachineAccount
Starting test: Services
* Checking Service: Dnscache
* Checking Service: NtFrs
* Checking Service: IsmServ
* Checking Service: kdc
* Checking Service: SamSs
* Checking Service: LanmanServer
* Checking Service: LanmanWorkstation
* Checking Service: RpcSs
* Checking Service: w32time
* Checking Service: NETLOGON
......................... MAINNT passed test Services
Test omitted by user request: OutboundSecureChannels
Starting test: ObjectsReplicated
MAINNT is in domain DC=nrb,DC=com,DC=cn
Checking for CN=MAINNT,OU=Domain Controllers,DC=nrb,DC=com,DC=cn in domain DC=nrb,DC=com,DC=cn on 1 servers
Object is up-to-date on all servers.
Checking for CN=NTDS Settings,CN=MAINNT,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nrb,DC=com,DC=cn in domain CN=Configuration,DC=nrb,DC=com,DC=cn on 1 servers
Object is up-to-date on all servers.
......................... MAINNT passed test ObjectsReplicated
Starting test: frssysvol
* The File Replication Service SYSVOL ready test
File Replication Service's SYSVOL is ready
......................... MAINNT passed test frssysvol
Starting test: frsevent
* The File Replication Service Event log test
......................... MAINNT passed test frsevent
Starting test: kccevent
* The KCC Event log test
Found no KCC errors in Directory Service Event log in the last 15 minutes.
......................... MAINNT passed test kccevent
Starting test: systemlog
* The System Event log test
An Error Event occured. EventID: 0x0000165B
Time Generated: 10/22/2009 12:05:49
Event String: The session setup from computer 'RSB-CLJ' failedbecause the security database does not contain a
trust account 'RSB-CLJ$' referenced by the
specified computer.
USER ACTION
If this is the first occurrence of this event for
the specified computer and account, this may be a
transient issue that doesn't require any action
at this time. Otherwise, the following steps may
be taken to resolve this problem:
If 'RSB-CLJ$' is a legitimate machine account for
the computer 'RSB-CLJ', then 'RSB-CLJ' should be
rejoined to the domain.
If 'RSB-CLJ$' is a legitimate interdomain trust
account, then the trust should be recreated.
Otherwise, assuming that 'RSB-CLJ$' is not a
legitimate account, the following action should
be taken on 'RSB-CLJ':
If 'RSB-CLJ' is a Domain Controller, then the
trust associated with 'RSB-CLJ$' should be
deleted.
If 'RSB-CLJ' is not a Domain Controller, it
should be disjoined from the domain.
An Error Event occured. EventID: 0x000016AD
Time Generated: 10/22/2009 12:17:23
Event String: The session setup from the computer RSB-CLJfailed to authenticate. The following error
occurred:
%%5
......................... MAINNT failed test systemlog
Test omitted by user request: VerifyReplicas
Starting test: VerifyReferences
The system object reference (serverReference)CN=MAINNT,OU=Domain Controllers,DC=nrb,DC=com,DC=cn and backlink on
CN=MAINNT,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nrb,DC=com,DC=cn
are correct.
The system object reference (frsComputerReferenceBL)CN=AAAA,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=nrb,DC=com,DC=cn
and backlink on CN=MAINNT,OU=Domain Controllers,DC=nrb,DC=com,DC=cn
are correct.
The system object reference (serverReferenceBL)CN=AAAA,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=nrb,DC=com,DC=cn
and backlink on
CN=NTDS Settings,CN=MAINNT,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nrb,DC=com,DC=cn
are correct.
......................... MAINNT passed test VerifyReferences
Test omitted by user request: VerifyEnterpriseReferences
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : nrb
Starting test: CrossRefValidation
......................... nrb passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... nrb passed test CheckSDRefDom
Running enterprise tests on : nrb.com.cn
Starting test: Intersite
Skipping site Default-First-Site-Name, this site is outside the scopeprovided by the command line arguments provided.
......................... nrb.com.cn passed test Intersite
Starting test: FsmoCheck
GC Name: \\mainnt.nrb.com.cn
Locator Flags: 0xe00003fd
PDC Name: \\mainnt.nrb.com.cn
Locator Flags: 0xe00003fd
Time Server Name: \\mainnt.nrb.com.cn
Locator Flags: 0xe00003fd
Preferred Time Server Name: \\mainnt.nrb.com.cn
Locator Flags: 0xe00003fd
KDC Name: \\mainnt.nrb.com.cn
Locator Flags: 0xe00003fd
......................... nrb.com.cn passed test FsmoCheck
jeff
答案
-
应当在运行完 Exchange Server 部署工具之后再运行 Exchange 安装程序。Exchange 安装程序首先会验证该工具已运行完毕,并且组织处于正常运行状态,然后您才能安装第一台 Exchange Server 2003 服务器。
所以,强烈建议您先排除AD的故障后再安装exchange.
关于AD的故障排除,建议您到server的论坛上去寻求帮助。
http://social.microsoft.com/Forums/zh-CN/windowsserversystemzhchs/threads
您只需说明您AD的问题,无需说安装Exchange.
Frank Wang
全部回复
-
应当在运行完 Exchange Server 部署工具之后再运行 Exchange 安装程序。Exchange 安装程序首先会验证该工具已运行完毕,并且组织处于正常运行状态,然后您才能安装第一台 Exchange Server 2003 服务器。
所以,强烈建议您先排除AD的故障后再安装exchange.
关于AD的故障排除,建议您到server的论坛上去寻求帮助。
http://social.microsoft.com/Forums/zh-CN/windowsserversystemzhchs/threads
您只需说明您AD的问题,无需说安装Exchange.
Frank Wang
