Active Directory의 adprep 또는 복제가 안 되는 경우
AD 서버를 상위 버전으로의 윈도우 서버로 마이그레이션할 때 이렇게 오류가 발생하거나,
D:\support\adprep> adprep /forestprep
ADPREP WARNING:
Before running adprep, all Windows Active Directory Domain Controllers in the forest must run Windows Server 2003 or later.
You are about to upgrade the schema for the Active Directory forest named 'testad.com', using the Active Directory domain controller (schema master) 'adsvr1.testad.com'.
This operation cannot be reversed after it completes.
[User Action]
If all domain controllers in the forest run Windows Server 2003 or later and you want to upgrade the schema, confirm by typing 'C' and then press ENTER to continue. Otherwise, type any other key and press ENTER to quit.
C
Adprep failed to verify whether schema master has completed a replication cycle after last reboot.
[Status/Consequence]
The schema is not upgraded.
[User Action]
Check the log file ADPrep.log in the C:\WINDOWS\debug\adprep\logs\20241107232351 directory for possible cause of failure.
Adprep encountered an LDAP error.
Error code: 0xc. Server extended error code: 0x20ae, Server error message: 000020AE: SvcErr: DSID-032104F6, problem 5010 (UNAVAIL_EXTENSION), data 8610
AD 데이터를 동기화하는 경우 이런 오류 등이 발생한다면,
Replicate Now
The following error occurred during the attempt to synchronize naming context CN=Configuration,DC=testad,DC=com from Domain Controller ADSVR2 to Domain Controller ADSVR1:
The directory service cannot replicate with this server because the time since the last replication with this server has exceeded the tombstone lifetime.
This operation will not continue.
D:\support\adprep> REPADMIN /SYNCALL
CALLBACK MESSAGE: The following replication is in progress:
From: d44126fc-e636-4348-be7d-81b0f9394b0a._msdcs.testad.com
To : da661036-e628-4525-96d9-00d934eedc67._msdcs.testad.com
CALLBACK MESSAGE: Error issuing replication: 8418 (0x20e2):
The replication operation failed because of a schema mismatch between the servers involved.
From: d44126fc-e636-4348-be7d-81b0f9394b0a._msdcs.testad.com
To : da661036-e628-4525-96d9-00d934eedc67._msdcs.testad.com
CALLBACK MESSAGE: SyncAll Finished.
SyncAll reported the following errors:
Error issuing replication: 8418 (0x20e2):
The replication operation failed because of a schema mismatch between the servers involved.
From: d44126fc-e636-4348-be7d-81b0f9394b0a._msdcs.testad.com
To : da661036-e628-4525-96d9-00d934eedc67._msdcs.testad.com
다음의 문서를 참조해 해당 문제를 복구하는 것이 가능할 것입니다.
Error "Target Principal Name is incorrect" when manually replicating data between domain controllers - Resolution
; https://learn.microsoft.com/en-us/troubleshoot/windows-server/active-directory/target-principal-name-is-incorrect-when-replicating-data#resolution
Troubleshoot Active Directory replication error 8614
; https://learn.microsoft.com/en-us/troubleshoot/windows-server/active-directory/replication-error-8614#resolution
혹은 저처럼 ^^ 단순하게, 문제가 된 AD 서버를 DC에서 해제(Demote)하고,
정리한 다음, 다시 AD 서버로 승격(Promote)하는 방법도 있습니다. ^^
[이 글에 대해서 여러분들과 의견을 공유하고 싶습니다. 틀리거나 미흡한 부분 또는 의문 사항이 있으시면 언제든 댓글 남겨주십시오.]