原始出處:http://yxzhao.com/2013/event-id-2042-it-has-been-too-long-since-this-machine-replicated/
場景提要:如果一臺域控制器長時間沒有與其他夥伴進行復制,當你在Active Directory Sites and Services裏手動觸發複製時,會報錯,同時在Directory Services事件日誌中會記錄Event ID 爲2042的錯誤日誌,大致內容如下:
Event Type:Error
Event Source:NTDS Replication
Event Category:Replication
Event ID:2042
Date:3/22/2005
Time:7:28:49 AM
User:NT AUTHORITY\ANONYMOUS LOGON
Computer:DC3
Description:
It has been too long since this machine last replicated with the
named source machine. The time between replications with this source
has exceeded the tombstone lifetime. Replication has been stopped
with this source.
The reason that replication is not allowed to continue is that
the two machine’s views of deleted objects may now be different.
The source machine may still have copies of objects that have
been deleted (and garbage collected) on this machine. If they
were allowed to replicate, the source machine might return
objects which have already been deleted.
Time of last successful replication:
2005-01-21 07:16:03
Invocation ID of source:
0397f6c8-f6b8-0397-0100-000000000000
Name of source:
4a8717eb-8e58-456c-995a-c92e4add7e8e._msdcs.contoso.com
Tombstone lifetime (days):
60The replication operation has failed.
User Action:
Determine which of the two machines was disconnected from the
forest and is now out of date. You have three options:1. Demote or reinstall the machine(s) that were disconnected.
2. Use the “repadmin /removelingeringobjects” tool to remove
inconsistent deleted objects and then resume replication.
3. Resume replication. Inconsistent deleted objects may be introduced.
You can continue replication by using the following registry key.
Once the systems replicate once, it is recommended that you remove
the key to reinstate the protection.
Registry Key:
HKLM\System\CurrentControlSet\Services\NTDS\Parameters\Allow Replication With Divergent and Corrupt Partner
使用repadmin /showrepl也會報錯8614:
Source: Default-First-Site-Name\DC1
******* 1502 CONSECUTIVE FAILURES since 2005-01-21 07:16:00
Last error: 8614 (0x21a6):
The Active Directory cannot replicate with this server
because the time since the last replication with this server has
exceeded the tombstone lifetime.
這個問題的原因是,域控制器超過墓碑生命週期未與其他夥伴域控進行復制,inbound replication會自動停止。
因爲這麼長時間未複製,可能會有不正常的、不一致的對象,兩邊的差異會很大,爲避免出現問題,目標域控會停止複製。
解決方法是,在需要被覆蓋複製的一方,修改註冊表,允許超過墓碑生命週期的複製發生,然後從權威的域控中複製數據。具體註冊表鍵值如下:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Parameters
DWORD Value:Allow Replication With Divergent and Corrupt Partner
將其值改爲1後,重啓複製服務,在手動觸發複製即可。
當確認所有數據已經複製過來,再將以上註冊表鍵值改回0值。