Visit Stack Exchange The issue is that when we connect remotely to the secondary domain controller, it still accepts the old password, and not the new one.It also has an outdated version of AD users and and old version of the DNS server, it is like it has stopped updating itself from the primary domain controller.
If this event occurred during the migration of SYSVOL from File Replication service (FRS) to DFS Replication, changes will not replicate out until this issue is resolved.
This can cause the SYSVOL folder on this server to become out of sync with other domain controllers.
The Current FSMO Role on the Windows Server 2012 R2 Domain Controller, which we will change later after deploying the Windows Server 2016 Domain Controller.
Preparation: – Configured the Network Settings of SVR2016-02 point to DC02 as its DNS and make sure the dc02 can be pinged. Deploying a Window Sever 2016 Domain Controller to an existing Windows Server 2012 R2 Domain Install Active Directory Domain Services Role Promote Windows Server 2016 to a Domain Controller. So in the Deployment Configuration page select the Add a domain controller to an existing domain radio button and specify the existing domain. Click on Next and go through the Wizard (normally leave the defaults) Once all the prerequisite checks passed successfully, go ahead and click on the Install button.
The DFS Replication service initialized SYSVOL at local path C:\Windows\SYSVOL\domain and is waiting to perform initial replication.
The replicated folder will remain in the initial synchronization state until it has replicated with its partner DC01.mydomain.local.
If the server was in the process of being promoted to a domain controller, the domain controller will not advertise and function as a domain controller until this issue is resolved.
This can occur if the specified partner is also in the initial synchronization state, or if sharing violations are encountered on this server or the sync partner.
Here is my favorite resource: solved REMOVING the time sync option in the secondary DC Hyper-V integration services options.
Now the secondary DC is syncing with the primary DC.
It may not be correct since Ref ID field in time packets differs across NTP implementations and may not be using IP addresses. MYDOMAIN w32tm /query /status /verbose Leap Indicator: 0(no warning) Stratum: 2 (secondary reference - syncd by (S)NTP) Precision: -6 (15.625ms per tick) Root Delay: 0.0000000s Root Dispersion: 0.0100000s Reference Id: 0x564D5450 (source IP: .80) Last Successful Sync Time: 28/08/2014 Source: VM IC Time Synchronization Provider Poll Interval: 6 (64s) Phase Offset: 0.0051939s Clock Rate: 0.0156215s State Machine: 2 (Sync) Time Source Flags: 3 (Authenticated Hardware ) Server Role: 64 (Time Service) Last Sync Error: 0 (The command completed successfully.) Time since Last Good Sync Time: 3.3291425s from your secondary DC.