I'm having some ntfrs replication problems between DC's in a child domain. There are 3 DC's, and two are having problems, logging the following error in the event log;
Following is the summary of warnings and errors encountered by File Replication Service while polling the Domain Controller server1.mydomain.co.uk for FRS replica set configuration information.
The nTFRSSubscriber object cn=domain system volume (sysvol share),cn=ntfrs subscriptions,cn=server1,ou=domain controllers,dc=mydomain,dc=co,dc=uk has a invalid value for the attribute frsMemberReference.
I've established this problem has been there for a couple of months, but the File Replication Service has been running, just not working! I've dug deep on this one, and I think I just need one more pointer to resolve this.
If I run 'ntfrsutl sets server1', I get told there are no replica sets. On the third (working) DC, I get all the replica sets listed. If I look at ADSIEdit for the CN=File Replication Service,CN=System,DC=mydomain,DC=co,DC=uk container, and inspect the server objects within, I can see that the following entries are present and correct;
frsComputerReference
serverReference
What's missing on the problem DC's is the following;
fRSMemberReferenceBL
Here's an example of the output from a DC that isn't working;
Dn: CN=SERVER1,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=mydomain,DC=co,DC=uk
cn: SERVER1;
distinguishedName: CN=SERVER1,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=mydomain,DC=co,DC=uk;
dSCorePropagationData (5): 29/10/2012 16:15:05 GMT Standard Time; 26/10/2012 14:16:03 GMT Standard Time; 26/10/2012 14:16:03 GMT Standard Time; 26/10/2012 12:05:41 GMT Standard Time; 0x1 = ( NEW_SD ), 0x1 = ( NEW_SD ), 0x1 = ( NEW_SD ), 0x1 = ( NEW_SD );
frsComputerReference: CN=SERVER1,OU=Domain Controllers,DC=mydomain,DC=co,DC=uk;
instanceType: 0x4 = ( WRITE );
name: SERVER1;
objectCategory: CN=NTFRS-Member,CN=Schema,CN=Configuration,DC=mydomain,DC=co,DC=uk;
objectClass (2): top; nTFRSMember;
objectGUID: fba46480-bea2-4a1f-9a00-a6f0c510a0f3;
serverReference: CN=NTDS Settings,CN=SERVER1,CN=Servers,CN=COMM,CN=Sites,CN=Configuration,DC=mydomain,DC=co,DC=uk;
showInAdvancedViewOnly: TRUE;
uSNChanged: 30477517;
uSNCreated: 16402;
whenChanged: 21/11/2012 16:54:26 GMT Standard Time;
whenCreated: 08/10/2003 19:36:41 GMT Standard Time;
But, fRSMemberReferenceBL is a system value that cannot be modified in either ADSIEdit or LDP, and I need to get this value back in. I've followed KB312862 to try and resolve this, but it doesn't seem to actually put this key back in, unless I'm doing something wrong, or need to do something else.
At the moment, because of this, we're not getting any GP replication, and we're in the middle of a Lync deployment!