Active Directory Managmenet Pack possible errors

  • Article

If you import the Microsoft Active Directory Management Pack I often see that the following warnings are occur.

  • AD Replication Monitoring : encountered a runtime error. Failed to obtain the InfrastructureMaster using a well known GUID.
  • AD Replication Monitoring : encountered a runtime error. Failed to write the adminDescription attribute of XXX The error returned was: 'The object already exists.

1.) Failed to obtain the InfrastructureMaster using a well known GUID

image

This error can happened when a Domain Controller will be demoted.

The problem is that the AD Attribute “fSMORoleOwner” for the infrastructureMaster is set to an Old DC.

The Microsoft way is to use the script MSLink

 -------fixfsmo.vbs------------------
const ADS_NAME_INITTYPE_GC = 3
const ADS_NAME_TYPE_1779 = 1
const ADS_NAME_TYPE_CANONICAL = 2

set inArgs = WScript.Arguments

if (inArgs.Count = 1) then
    ' Assume the command line argument is the NDNC (in DN form) to use.
    NdncDN = inArgs(0)
Else
    Wscript.StdOut.Write "usage: cscript fixfsmo.vbs NdncDN"
End if

if (NdncDN <> "") then

    ' Convert the DN form of the NDNC into DNS dotted form.
    Set objTranslator = CreateObject("NameTranslate")
    objTranslator.Init ADS_NAME_INITTYPE_GC, ""
    objTranslator.Set ADS_NAME_TYPE_1779, NdncDN
    strDomainDNS = objTranslator.Get(ADS_NAME_TYPE_CANONICAL)
    strDomainDNS = Left(strDomainDNS, len(strDomainDNS)-1)
     
    Wscript.Echo "DNS name: " & strDomainDNS

    ' Find a domain controller that hosts this NDNC and that is online.
    set objRootDSE = GetObject("LDAP://" & strDomainDNS & "/RootDSE")
    strDnsHostName = objRootDSE.Get("dnsHostName")
    strDsServiceName = objRootDSE.Get("dsServiceName")
    Wscript.Echo "Using DC " & strDnsHostName

    ' Get the current infrastructure fsmo.
    strInfraDN = "CN=Infrastructure," & NdncDN
    set objInfra = GetObject("LDAP://" & strInfraDN)
    Wscript.Echo "infra fsmo is " & objInfra.fsmoroleowner

    ' If the current fsmo holder is deleted, set the fsmo holder to this domain controller.

    if (InStr(objInfra.fsmoroleowner, "\0ADEL:") > 0) then

        ' Set the fsmo holder to this domain controller.
        objInfra.Put "fSMORoleOwner",  strDsServiceName
        objInfra.SetInfo

        ' Read the fsmo holder back.
        set objInfra = GetObject("LDAP://" & strInfraDN)
        Wscript.Echo "infra fsmo changed to:" & objInfra.fsmoroleowner

    End if

End if

  

 Copy this VB Script into a file and execute this with the following parameter.

  
  • cscript fixfsmo.vbs DC=DomainDnsZones,DC=contoso,DC=com
  • cscript fixfsmo.vbs DC=ForestDnsZones,DC=contoso,DC=com
  

  

2.) Failed to write the adminDescription attribute of XXX The error returned was: 'The object already exists.

image

This error happend when the Default Action Account for the Domain Controller is running under local system. You have to define an Action Account which have Domain Admin privileges or write Access to the Organisation Unit “OpsMgrLatencyMonitors” and bind it to all Domain Controller at the Default Action Account Profile.