Event ID - 1084

Event Id1084
SourceMicrosoft-Windows-ActiveDirectory_DomainService
DescriptionPreferred bridgehead servers have been selected to support intersite replication with the following site using the following transport. However, none of these preferred bridgehead servers can replicate the following directory partition. Site:%1 Transport:%2 Directory partition:%3 User Action Using Active Directory Sites and Services, do the following: - Configure a domain controller that can support replication of this directory partition as a preferred bridgehead server for this transport. You can do this by modifying the corresponding server. - Verify that the corresponding Server objects have a network address for this transport. For example, domain controllers that replicate using the SMTP transport must have a mailAddress attribute. This attribute is normally configured automatically after the SMTP service is installed. Until this is rectified, the Knowledge Consistency Checker (KCC) will consider all domain controllers in this site as possible bridgehead domain controllers for this directory partition.
Event InformationAccording to Microsoft :
Cause :
This event is logged when this Preferred bridgehead servers have been selected to support intersite replication with the site using the transport.
Resolution :
Correct the failure to update the AD database
To address this issue:
Ensure that there is free disk space on the volume that hosts the AD database
If the volume that hosts the AD database is low on free disk space, it is imperative to either create additional disk space on that volume or move the Active Directory database to a different volume. If not sure where the Active Directory database and log files are stored,can use the ntdsutil command to determine their location.
To perform these procedures,must have membership in Domain Admins or must have been delegated the appropriate authority.
Note : Before you stop the NTDS service, consider temporarily disabling the password protected screen saver, if it is enabled.If the password protected screen saver starts while the NTDS service is stopped,will have to restart the computer to log in.
To determine the location of the Active Directory database and log files:
  1. On the domain controller that is reporting the issue, open a command prompt as an administrator. To open a command prompt as an administrator, click Start. In Start Search, type Command Prompt. At the top of the Start menu, right-click Command Prompt, and then click Run as administrator.If the User Account Control dialog box appears, confirm that the action it displays is what want, and then click Continue.
  2. Stop the Active Directory database process: type net stop ntds, and then press ENTER.
  3. To stop dependent services, type y, and then press ENTER.
  4. At the command prompt, type ntdsutil, and then press ENTER. The ntdsutil: prompt appears.
  5. Type activate instance ntds, and then press ENTER.
  6. Type list instances, and then press ENTER. The installation folder and log folder path appear along with other configuration details.
  7. Type quit, and then press ENTER. The command prompt appears.
  8. Start the Active Directory database process: type net start ntds, and then press ENTER.
Check the available disk space on the volume that hosts the Active Directory database.
Note : If the Active Directory log files are on a different volume than the database, use the procedure in this section to check the free space on the volume that contains the log files.
If it is not possible to move enough files to create adequate free space on the volume, consider moving the Active Directory database to a different volume by using the ntdsutil command.
Move the Active Directory database.
Note : Can use a similar set of commands to move the logs to a different location, except that the command to move the log files is move logs instead of move db.
Ensure that access to the database, transaction files and log files is not blocked
Ensure that the antivirus software on the domain controller that is reporting the error is configured not to scan the location of the Active Directory database, transaction files and log files.Check antivirus software vendor's directions for configuring exclusions.
Install it according to the directions at the download location.
  1. Open Process Monitor. If the User Account Control dialog box appears, confirm that the action it displays is what want, and then click Continue.
  2. On the Filter menu, click the Filter menu option.
  3. In the Process Monitor Filter dialog box, configure the selection boxes under Display entries matching these to read Path begins with path then include, where path is the actual file system path to the folder in which the AD DS database is stored.
  4. Click Add.If the AD log files are stored in a different folder, use the same procedure to include that folder's file system path.
  5. Click OK.
The only process that typically appears in the Process Name column as accessing the Active Directory database and its log files is Lsass.exe.If see another process name listed,can right-click it and then click Search Online to try to determine what the process is and how to control it.If recognize the process as part of an application, see the application vendor documentation or support to determine how to configure the process so that it does not access the Active Directory database and log files.
Check the integrity of the Active Directory database
To verify that the Active Directory database is not corrupted,can use the Semantic database analysis option in the Ntdsutil tool.
To perform this procedure,must have membership in Domain Admins or must have been delegated the appropriate authority.
To check the integrity of the Active Directory database:
  1. Open a command prompt as an administrator.
  2. Stop the Active Directory database process: type net stop ntds, and then press ENTER.
  3. To stop dependent services, type y, and then press ENTER.
  4. Type ntdsutil, and then press ENTER.
  5. Type activate instance ntds, and then press ENTER.
  6. Type semantic database analysis, and then press ENTER.
  7. Type go, and then press ENTER. If the semantic database analysis reports errors, type go fixup, and then press ENTER.
  8. Type quit, and then press ENTER twice. The command prompt appears.
  9. Type net start ntds, and then press ENTER.
Compact the Active Directory database
Compacting the Active Directory database reduces the file size of the database by removing empty data structures. Compacting the database may also resolve some data inconsistencies.
Note : To compact the Active Directory database,must have enough free disk space to approximately double the size of the existing database.If do not have that much room on the existing partition on which AD DS is stored, compact the database to another volume where enough space is available.
To perform these procedures,must have membership in Domain Admins or must have been delegated the appropriate authority.
To compact the Active Directory database:
  1. Open a command prompt as an administrator. To open a command prompt as an administrator, click Start. In Start Search, type Command Prompt. At the top of the Start menu, right-click Command Prompt, and then click Run as administrator. If the User Account Control dialog box appears, confirm that the action it displays is what want, and then click Continue.
  2. At the command prompt, type net stop ntds, and then press ENTER.
  3. At the command prompt, type ntdsutil, and then press ENTER.
  4. At the command prompt, type Activate Instance NTDS, and then press ENTER.
  5. At the command prompt, type files, and then press ENTER.
  6. At the command prompt, type compact to folderLocation, and then press ENTER. For folderLocation, substitute a folder location to which want to create the compacted database.
  7. When the compaction is complete, the command output gives directions about how to copy the compacted database over the existing database.To exit Ntdsutil, type quit, and then press ENTER twice.
  8. If have enough disk space,can save a copy of the existing database (Ntds.dit).
  9. Next, move the compacted database to the location of the previous database.
  10. Delete the log files, as indicated after the compaction routine completes.
  11. Type net start ntds, and then press ENTER. This command clears the Safe Mode boot option, which causes the domain controller to start in normal mode.
Note : If you disabled the password protected screen saver, can enable it when the NTDS service is running.
Reference LinksEvent ID 1084 from Source Microsoft-Windows-ActiveDirectory_DomainService

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.