N/APosted on - 10/26/2012
I am having trouble on my MIIS in a test forest. I don’t have these problems when I had started with just a root and child domain. But when I added 5 more child domains, “’failed-search’, ‘Replication access was denied’, "Error code 8453” errors were returned every time a “Full import (Stage only)” profile against the forest is executed.
I need to add these additional child domains as to have a test area which simulates a production forest. This could be just some permission settings that I had missed but still I’m puzzled since in all of the domains, the MIIS service account is still in the domain “Administrators” group.
I am having trouble on MIIS in test forest with child domain
It seems that your domain zones. the parent domain and the child domain, are replicated to all Domain controllers in the Domain.
Open DNS on one of the DCs in the forest root domain .Expa.
Right click the domain name, choose New Delegation.
Type in the child domain name such as child1 and not the FQDN.
Now type in two of the DNS servers IP addresses for the Nameservers of the child domain.
Click through until done.
Make sure the child domain DCs and all machines in the child domain are only using the DC/DNS servers in that child domain, no other domains.