How to check if domain controllers are in sync with each other?
Step 1 - Check the replication health
Run the following command :
The “/replsummary” operation quickly summarizes replication state and relative health of a forest.
Step 2 - Check the inbound replication requests that are queued.
This command lists elements that are remaining in the replication queue. It displays inbound replication requests that the Domain Controller needs to issue in order to become consistent with its source replication partners.
Step 3 - Check the replication status
This command displays the replication status when the specified domain controller last attempted to implement an inbound replication of Active Directory partitions. It helps in figuring out the replication topology and replication failure.
Step 4 - Synchronize replication between replication partners
It ensures synchronization between replication partners
Step 5 - Force the KCC to recalculate the topology
This command forces the KCC (Knowledge Consistency Checker) on targeted domain controller(s) to immediately recalculate its inbound replication topology. It checks and creates the connections between the Domain Controllers. By default KCC runs in the background every 15 minutes to check if a new connection has been established between DCs.
Step 6 - Force replication
This command forces the replication of the specified directory partition to the destination domain controller from the source DC.
Use ADAudit Plus to monitor AD replication status and gain insights into:
- Replication traffic between DCs
- When replication fails, along with the reason for failure
- When replication begins and ends
- Which AD object attributes are replicated
- And more
- Related Products
- ADManager Plus Active Directory Management & Reporting
- ADAudit Plus Real-time Active Directory Auditing and UBA
- EventLog Analyzer Real-time Log Analysis & Reporting
- ADSelfService Plus Self-Service Password Management
- AD360 Integrated Identity & Access Management
- Log360 (On-Premise | Cloud) Comprehensive SIEM and UEBA
- AD Free Tools Active Directory FREE Tools