Share via

Problem running repadmin /syncall

Anonymous
2024-02-23T20:11:04+00:00

I have run into an issue running repadmin /syncall. When I try to open run a repadmin /syncall with the built in administrator account I get this back:

C:\Users\Administrator>repadmin /syncall

CALLBACK MESSAGE: Error contacting server dd8e5d0f-9e14-4796-bc82-7d2777b0dd3a._msdcs.<OUR DOMAIN> (network error): 5 (0x5): 

Access is denied.

SyncAll exited with fatal Win32 error: 8440 (0x20f8): 

The naming context specified for this replication operation is invalid.

When I run the same command with a different user that is an administrator, I get this back:

C:\Users\Administrator.<OUR DOMAIN>repadmin /syncall

CALLBACK MESSAGE: The following replication is in progress: 

From: dd8e5d0f-9e14-4796-bc82-7d2777b0dd3a.\_msdcs.&lt;OUR DOMAIN&gt; 

To  : 762f5c88-ffaa-4aa2-b6e2-933aa2995b7a.\_msdcs.&lt;OUR DOMAIN&gt;

CALLBACK MESSAGE: Error issuing replication: 8453 (0x2105): 

Replication access was denied. 

From: dd8e5d0f-9e14-4796-bc82-7d2777b0dd3a.\_msdcs.&lt;OUR DOMAIN&gt; 

To  : 762f5c88-ffaa-4aa2-b6e2-933aa2995b7a.\_msdcs.&lt;OUR DOMAIN&gt;

CALLBACK MESSAGE: SyncAll Finished.

SyncAll reported the following errors:

Error issuing replication: 8453 (0x2105): 

Replication access was denied. 

From: dd8e5d0f-9e14-4796-bc82-7d2777b0dd3a.\_msdcs.&lt;OUR DOMAIN&gt;

To  : 762f5c88-ffaa-4aa2-b6e2-933aa2995b7a.\_msdcs.&lt;OUR DOMAIN&gt;

However, I can run repadmin /replicate, repadmin /kcc and repadmin /showrepl just fine

This is all stemming from me discovering that I cannot edit GPOs from Group Policy Management with the built in administrator account, however I can do this just fine on our other domain controller. I'm also able to edit GPOs from GPM with other accounts on the affected server. I have a feeling that this is a permissions issue, but am not sure where to look.

Windows for business Windows Server Directory services Other

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question. To protect privacy, user profiles for migrated questions are anonymized.

0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2024-02-26T07:02:17+00:00

    Hello Matt Springer1,

    Thank you for posting on the Microsoft Community Forum.

    The main cause of error 8453 could be:The target domain controller does not have the required permissions to replicate the named context/partition. Or the administrator who manually initiated the replication does not have permission to do so. Here's the article about error 8453: Active Directory replication error 8453 - Windows Server | Microsoft Learn

    In addition, I also found a post from a user who is in a very similar situation to yours, and he has solved the problem, and here is the link to his post:Replication Error : SyncAll exited with fatal Win32 error. | Microsoft Learn

    I hope you the information above is helpful.

    If you have any questions or concerns, please do not hesitate to let us know.

    Best Regards,
    Daisy Zhou

    0 comments
  2. Anonymous
    2024-08-09T03:43:33+00:00

    it said 8440 and the tech replied with "well 8453 error could be this? what is error 8440? stay on topic?

    1 person found this answer helpful.
    0 comments