Forum
Bildirimler
Hepsini Temizle
Windows Server
4
Yazılar
2
Üyeler
0
Reactions
719
Görüntüleme
Konu başlatıcı
merhaba arkadaslar site birine Read ony domain kurdum fakat loglara bu hatalar gelmeye başladı hatalar ordaki makinaların ismini verip acces denied diyor nedemek bu arkadaslar ben kurulum sırasında oranın kullanıcıların grubunu vermistim yani o sitede calısanlara bir grup olusturup o grubun bilgileri replice olsun dedim ama makina replicasyon olamadı diye hata veriyor örnek bir hatada şudu
This directory service failed to retrieve the changes requested for the following directory partition. As a result, it was unable to send change requests to the directory service at the following network address.
Directory partition:
CN=GAMZEXP,OU=Bilgisayar,OU=mikro izmir,OU=Mikro Uzak Ofisler,DC=mye,DC=com,DC=tr
Network address:
3a5534a0-75c2-4974-8847-696ccc54a617._msdcs.mye.com.tr
Extended request code:
7
Additional Data
Error value:
8453 Replication access was denied.
Gönderildi : 14/01/2009 16:40
Merhaba,
Hataları event idler ile http://www.eventid.net/ 'ten kontrol edebilirsiniz.
Aldığınız eventların bilgilerini yollar mısınız?
İyi çalışmalar.
Gönderildi : 14/01/2009 16:51
Konu başlatıcı
The Knowledge Consistency Checker (KCC) has detected problems with the following directory partition. Directory partition: CN=Configuration,DC=mye,DC=com,DC=tr There is insufficient site connectivity information for the KCC to create a spanning tree replication topology. Or, one or more directory servers with this directory partition are unable to replicate the directory partition information. This is probably due to inaccessible directory servers. User Action Perform one of the following actions: - Publish sufficient site connectivity information so that the KCC can determine a route by which this directory partition can reach this site. This is the preferred option. - Add a Connection object to a directory service that contains the directory partition in this site from a directory service that contains the same directory partition in another site. If neither of the tasks correct this condition, see previous events logged by the KCC that identify the inaccessible directory servers. ---------------
The security of this directory server can be significantly enhanced by configuring the server to reject SASL (Negotiate, Kerberos, NTLM, or Digest) LDAP binds that do not request signing (integrity verification) and LDAP simple binds that are performed on a cleartext (non-SSL/TLS-encrypted) connection. Even if no clients are using such binds, configuring the server to reject them will improve the security of this server.
Some clients may currently be relying on unsigned SASL binds or LDAP simple binds over a non-SSL/TLS connection, and will stop working if this configuration change is made. To assist in identifying these clients, if such binds occur this directory server will log a summary event once every 24 hours indicating how many such binds occurred. You are encouraged to configure those clients to not use such binds. Once no such events are observed for an extended period, it is recommended that you configure the server to reject such binds.
For more details and information on how to make this configuration change to the server, please see http://go.microsoft.com/fwlink/?LinkID=87923.
You can enable additional logging to log an event each time a client makes such a bind, including information on which client made the bind. To do so, please raise the setting for the "LDAP Interface Events" event logging category to level 2 or higher.
The Knowledge Consistency Checker (KCC) was unable to form a complete spanning tree network topology. As a result, the following list of sites cannot be reached from the local site.
Sites:
CN=Istanbul,CN=Sites,CN=Configuration,DC=mye,DC=com,DC=tr
CN=teknokent,CN=Sites,CN=Configuration,DC=mye,DC=com,DC=tr
----------------------------------------------------------
en önemli olanıda budur
This directory service failed to retrieve the changes requested for the following directory partition. As a result, it was unable to send change requests to the directory service at the following network address.
Directory partition:
CN=SAKIR-PC,OU=Bilgisayar,OU=mikro izmir,OU=Mikro Uzak Ofisler,DC=mye,DC=com,DC=tr
Network address:
3a5534a0-75c2-4974-8847-696ccc54a617._msdcs.mye.com.tr
Extended request code:
7
Additional Data
Error value:
8453 Replication access was denied.
Gönderildi : 14/01/2009 17:08
Konu başlatıcı
This directory service failed to retrieve the changes requested for the following directory partition. As a result, it was unable to send change requests to the directory service at the following network address. Directory partition: CN=IZMIRSRV,OU=Bilgisayar,OU=mikro izmir,OU=Mikro Uzak Ofisler,DC=mye,DC=com,DC=tr Network address: 3a5534a0-75c2-4974-8847-696ccc54a617._msdcs.mye.com.tr Extended request code: 7 Additional Data Error value: 8453 Replication access was denied.
Gönderildi : 14/01/2009 17:13
