Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Question on Active Directory

Status
Not open for further replies.
Maritime

Maritime

MIS
Jan 11, 2001
172
TT
Hi
I am running two servers in the enviromentment, both running Active Directory services. However when a user account gets locked out, and I use Active Directory to unlock the Account on one Server, I also have to unlock it on the other server. Shouldn't AD automatically refelect the change on both servers? Is this an issue of how long windows takes to replicated the change from one server to another? How do I resolve this?

Thanks in advance.
 
Sort by date Sort by votes
How long are you waiting? Both servers are DCs in the same forest and domain?

Pat Richard, MCSE(2) MCSA:Messaging, CNA(2)
 
Upvote 0 Downvote
Both servers are DCs in the same Domain.
The senario is that a user will call and the account may be locked out on one server and not the other, or I guess depending on how long they take before they call, both servers. However based on what's been happening we have to check both servers each time we have to unlock an account, Or change a user passwords etc.
 
Upvote 0 Downvote
In most cases, changes made in one DC will be replicated to the other DCs immediately. If the DCs in question are in the same site, you should not feel any time lapse. Also, certain changes you make in one DC will be replicated to the other DCs on high priority, like account enable/disable and password changes.

Some times we used to have this kind of problem in our network. In this case we instruct the user to restart the workstation from which he/she tries to logon. This resolves the problem.
 
Upvote 0 Downvote
Both servers are Domain Controllers in one domain e.g server1.local and server2.local

When the Servers were installed, they were configured in the typical first server, second server config. The first server was installed as the PDC and the 2nd as a BDC.
 
Upvote 0 Downvote
Well, there is no such thing as a PDC and BDC in AD. Are there any errors in the event logs showing replication problems?

Pat Richard, MCSE(2) MCSA:Messaging, CNA(2)
 
Upvote 0 Downvote
58sniper, thanks for the feedback. . .I know that the PDC and BDC configuration does not exist in W2K I was just trying to clarify the problem. I am seeing errors with the License Replication service. I am currently trying to correct that now.

Thanks
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

julis2103
  • Locked
  • Question
Active Directory
Replies
0
Views
241
julis2103
julis2103
goombawaho
  • Locked
  • Question
Microsoft Azure Active Directory - Backup Admin Account 1
Replies
2
Views
964
goombawaho
goombawaho
DrB0b
  • Locked
  • Question
Hybrid on prem AD with Azure AD
Replies
2
Views
437
DrB0b
DrB0b
edgar28
  • Locked
  • Question
Question on Network cards - Windows Server 2019
Replies
1
Views
281
DrB0b
DrB0b
James281
  • Locked
  • Question
Enrolment agent (enrol on behalf of) stopped working
Replies
1
Views
342
mikehook
mikehook

Part and Inventory Search

Sponsor

Back
Top