I noticed a problem when setting up GPOs that some settings were copied to the local computer's registry, while some didn't. Although they are in the very same GPO. So I checked the EventViewer and noticed this error. Also, I checked the sysvol folders on both Domain Controllers and noticed that the files are not the same at all. The version number on the policies are also not the same.
It's a bit similar to Windows Server 2003 SP2 - JRNL_WRAP_ERROR (Sysvol)
But we have two domain controllers that are set up to replicate each other. So I restarted the replication service on both domain controllers and this EventID: 13568 was added to the event viewer almost immediatly. So where should I start to troubleshoot this?
Edit: After reading this link http://blogs.technet.com/b/instan/archive/2009/07/14/what-happens-in-a-journal-wrap.aspx I see that the approach d2 might be the one I should go for. But how do I know which one of the domain controllers is the "newest" one? Should I just compare files from the sysvol folder? Also, what's the worst thing that could happen if I go for approach d2?
Edit2: I just did the approach D2 about half an hour ago. I stopped the file replication service. Reset the registry setting to D2 and restartet the file replication service. Noticed immediatly that the D2 was reset to 0. Then I went ahead and checked the sysvol folder on the server. There's a folder there now called "NtFrs_PreExisting___See_EventLog", but there's no other content there. In the event viewer, I see a 13565 informing me that the replication is starting. But two minutes after, there's a 13508 error. This alone doesn't have to be a bad thing according to the KB article, but in 4 hours, a 13509 should be present. If 13509 isn't present in that time, these are the other possibilities, according to the description in error 13508:
- FRS can not correctly resolve the DNS name dc2.mydomain.com from this computer.
- FRS is not running on dc2.mydomain.com
The topology information in the Active Directory for this replica has not yet replicated to all the Domain Controllers.
From the problem server, I tried to run ping dc2 and run nslookup and everything checks out just fine from what I can tell. Neither of the domain controllers have Windows Firewall activated. And NTFRSUTL VERSION works just fine on both. Also, Replication Service is active and running on both DCs.