Active Directory Replication Registry Entries

July 2, 2014

Active Directory Replication Registry Entries

Notice: This article was not written by me, but is very useful. Source

The information here is provided as a reference for use in troubleshooting or verifying that the required settings are applied.

It is recommended that you do not directly edit the registry unless there is no other alternative. Modifications to the registry are not validated by the registry editor or by Windows before they are applied, and as a result, incorrect values can be stored. This can result in unrecoverable errors in the system. When possible, use Group Policy or other Windows tools, such as Microsoft Management Console (MMC), to accomplish tasks rather than editing the registry directly. If you must edit the registry, use extreme caution.

The following registry settings cannot be modified by using Group Policy or other Windows tools.

NTDS Parameters Registry Settings

The following registry entries are associated with Active Directory replication.

Replicator notify pause after modify (secs)

Registry path

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Parameters

Version

Windows 2000 Server.

Default value

Windows 2000 Server: 300 seconds.

The value for the delay between an originating update on a domain controller and the first change notification. On domain controllers running Windows Server 2003 or higher, the value for initial change notification delay is stored in the msDSReplicationNotifyFirstDSADelay attribute on the cross-reference object for each directory partition in the Configuration container. The default value in Windows Server 2003 and higher operating systems is decreased to 15 seconds when the forest functional level is Windows Server 2003 or higher.

Replicator notify pause between DSAs (secs)

Registry path

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Parameters

Version

Windows 2000 Server.

Default value

Windows 2000 Server: 30 seconds

The value for the delay before each subsequent change notification. On domain controllers running Windows Server 2003, the value for subsequent notification delay is stored in the msDSReplicationNotifySubsequentDSADelay attribute on the cross-reference object for each directory partition in the Configuration container. The default value in Windows Server 2003 is decreased to 3 seconds when the forest functional level is Windows Server 2003.

RPC Replication Timeout (mins)

Registry path

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

Windows 2000 Server: 45 minutes; Windows Server 2003 and higher server operating systems: 5 minutes.

The number of minutes between initiation of Active Directory replication and the RPC timeout. The domain controller must be restarted before the change takes effect.

Strict replication consistency

Registry path

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008 R2, Windows Server 2003, Windows 2000 Server with SP3.

Default value

Windows 2000 Server with SP3: off (0); Windows Server 2003 and higher server operating systems: on (1)

The value that determines the treatment of replication of outdated objects that exist on reconnected domain controllers that have not replicated in longer than a tombstone lifetime. If the destination domain controller has strict replication consistency enabled, inbound replication of an outdated object is blocked. If the destination domain controller has strict replication disabled, inbound replication of the full object occurs.

Replicator intra site packet size (objects)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

1/1,000,000th the size of RAM, with a minimum of 100 objects and a maximum of 1,000 objects.

The maximum number of objects per packet for RPC replication within a site.

Replicator intra site packet size (bytes)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

1/100th the size of RAM, with a minimum of 1 megabyte (MB) and a maximum of 10 MB.

The maximum size of objects per packet for RPC replication within a site.

Replicator inter site packet size (objects)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008 R2, Windows Server 2003, Windows 2000 Server.

Default value

1/1,000,000th the size of RAM, with a minimum of 100 objects and a maximum of 1,000 objects.

The maximum number of objects per packet for RPC replication between sites.

Replicator inter site packet size (bytes)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

The maximum size of objects per packet for RPC replication between sites.

Default value

1/100th the size of RAM, with a minimum of 1 MB and a maximum of 10 MB.

Replicator async inter site packet size (objects)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008, Windows Server 2008 R2, Windows Server 2003, Windows 2000 Server.

Default value

1/1,000,000th the size of RAM, with a minimum of 100 objects and a maximum of 1,000 objects.

The maximum number of objects per packet for SMTP replication between sites.

Replicator async inter site packet size (bytes)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

1 MB.

The maximum size of objects per packet for SMTP replication between sites.

Replicator compression algorithm

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003.

Default value

For Windows 2000 Server compression, change the value to 2.

Determines the compression algorithm that is used on a site link

Repl topology update delay (secs)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

300 seconds.

Number of seconds to wait between the time Active Directory starts and the KCC performs the first topology check.

To find more information about Repl topology update delay (secs) , see “Registry Reference” in Tools and Settings Collection.

Repl topology update period (secs)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008, Windows Server 2008 R2, Windows Server 2003, Windows 2000 Server.

Default value

900 seconds.

Interval between KCC replication topology checks.

To find more information about Repl topology update period (secs) , see “Registry Reference” in Tools and Settings Collection.

IntersiteFailuresAllowed

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

1.

Number of failed replication attempts prior to excluding nonresponding servers from the intersite topology.

MaxFailureTimeForIntersiteLink (sec)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

7200 seconds (2 hours).

Time in seconds that must elapse prior to excluding nonresponding servers from the intersite topology.

NonCriticalLinkFailuresAllowed

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

1.

Number of failed replication attempts prior to excluding nonresponding servers from the intrasite topology.

MaxFailureTimeForNonCriticalLink (sec)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008, Windows Server 2008 R2, Windows Server 2003, Windows 2000 Server.

Default value

43200 seconds (12 hours).

Time in seconds that must elapse prior to excluding nonresponding servers from the intrasite topology.

CriticalLinkFailuresAllowed

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

0.

Number of failed replication attempts prior to excluding nonresponding servers for immediate neighbor connections within a site.

MaxFailureTimeForCriticalLink (sec)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

7200 seconds (2 hours).

Time in seconds that must elapse prior to excluding nonresponding servers for immediate neighbor connections within a site.

TCP/IP Port

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000 Server.

Default value

135.

TCP port that the directory service uses instead of using dynamic port 135. The domain controller must be restarted before the change takes effect.

Backup Latency Threshold (days)

Registry path

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NTDS\Parameters

Version

Windows Server 2008 R2, Windows Server 2008, Windows Server 2003 with SP 1

Default value

Half the value of the tombstone lifetime of the forest.

When the value is reached, logs event ID 2089 in the Directory Service event log, warning administrators and monitoring applications to make sure that domain controllers are backed up before the tombstone lifetime expires.

Add comment
facebook linkedin twitter email

Leave a Reply

Your email address will not be published.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

*

This site uses Akismet to reduce spam. Learn how your comment data is processed.