A DFS Replication object in Active Directory Domain Services (AD DS) has an attribute that isn’t valid. This issue can be caused by AD DS replication latencies if certain parts of the configuration information in AD DS have not yet replicated to the specified domain controller.
This issue usually occurs on servers running Windows Server 2003 R2 without the hotfix included with Microsoft Knowledge Base Article 953527.
If the server is running Windows Server 2003 R2, see Microsoft Knowledge Base Article 953527 for a hotfix that should resolve this issue, or upgrade the server to Windows Server 2008 or Windows Server 2008 R2.
DFS Replication will retry this operation, which usually resolves automatically after configuration changes replicate through AD DS. To poll immediately for configuration changes, open a command prompt window and then type the following command once for each member of the replication group, where <domain> is the domain the server is located in and <server> is the server name:
Dfsrdiag PollAD /Member:<domain>\<server>
If this problem persists, verify that AD DS replication is working and that the service is able to reach a domain controller. If the problem persists for 8 hours, the DFS Replication service will disable the connection and log DFS Replication Event 5016.
If AD DS replication is working properly and the issue is still present, contact Microsoft Customer Service and Support (http://support.microsoft.com).
Look for the presence of DFSR event 6014 in Event Viewer.
Fernando Lugão Veltem edited Revision 13. Comment: added toc and tags
Jason Gerend MSFT edited Revision 4. Comment: Added Causes section; made formatting updates.
JasonGerend_MSFT edited Revision 1. Comment: Changed the title to more closely match what users would search for.
JasonGerend_MSFT edited Original. Comment: Cleaned up formatting.