I am getting replication issue for my new promoted DC

Jnarthan Govindasamy 5 Reputation points
2024-11-29T01:33:58.37+00:00

SYSVOL and NETLOGON Shares Missing on New DC

I want to migrate from window server 2012 R2 to Window Server 2022 but when promote it's not syncing the policies and netlogon which is missing. I tried creating the both files and tried authoritative and non-authoritative sync and it's not working too.

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,848 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,478 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,764 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,282 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Hania Lian 19,751 Reputation points Microsoft Vendor
    2024-11-29T02:05:19.5333333+00:00

    Hello,

    Please try the following steps:

    Check the FSMO roles:

    Ensure that all FSMO roles have been transferred correctly and that the new DC has assumed the role of PDC Emulator, as this role is responsible for handling password changes, account lockouts, etc.

    Verify DNS settings:

    Verify that the new DC's DNS settings are correct, including pointing to the correct DNS servers and having the correct reverse lookup zones.

    Ensure that the new DC can resolve to other domain controllers via DNS.

    Check the replication status:

    Use the repadmin /replsummary command to check the replication status of AD DS.

    If any problems are found, use repadmin /syncall to force an immediate synchronization.

    Check the FRS/DFSR service:

    Make sure the DFSR service is running and check its event log for error messages.

    Check SYSVOL and NETLOGON share permissions:

    Ensure that the SYSVOL and NETLOGON directories on the new DC have the correct NTFS permissions.

    Check that both directories have been properly configured for sharing.

    Check firewall settings:

    Ensure that there are no firewall rules blocking necessary port communications such as RPC, LDAP, etc., which are critical for proper communication between domain controllers.

    Check event logs:

    Check the system logs and security logs on the new DC for reports of problems related to SYSVOL or NETLOGON.

    Best Regards,

    Hania Lian

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.