Microsoft KB Archive/322669

= HOW TO: Manage the Application Directory Partition and Replicas in Windows Server 2003 =

PSS ID Number: 322669

Article Last Modified on 12/18/2003

-

The information in this article applies to:


 * Microsoft Windows Server 2003, Enterprise Edition
 * Microsoft Windows Server 2003, Standard Edition
 * Microsoft Windows Small Business Server 2003, Premium Edition
 * Microsoft Windows Small Business Server 2003, Standard Edition

-



This article was previously published under Q322669



IN THIS TASK

 * SUMMARY
 * How to Create or Delete an Application Directory Partition
 * How to Add or Remove an Application Directory Partition Replica
 * How to Display Application Directory Partition Information
 * How to Set an Application Directory Partition Reference Domain



SUMMARY
This article describes how to use Ntdsutil.exe to manage the application directory partition. An application directory partition is a directory partition that is replicated only to specific domain controllers. A domain controller that participates in the replication of a particular application directory partition is said to host a replica of that partition. Only domain controllers that are running a member of the Windows Server family can host a replica of an application directory partition.

Programs and services can use application directory partitions to store program-specific data. Application directory partitions can contain any type of object, except security principals. Telephony application programming interface (TAPI) is an example of a service that stores its program-specific data in an application directory partition.

back to the top

How to Create or Delete an Application Directory Partition
The following placeholders are used in the procedure that is described in this section:   : The DNS name of the domain controller on which you want to create or delete the application directory partition.  : The distinguished name of the application directory partition that you want to create or delete. For example, the distinguished name of the application directory partition test.microsoft.com is dc=test, dc=Microsoft, dc=com.  : The DNS name of the domain controller on which you want to create or delete the application directory partition. You can also type NULL to create the application directory partition on the domain controller to which you are currently connected.  Click Start, and then click Run. In the Open box, type ntdsutil . At the ntdsutil command prompt, type domain management . At the domain management command prompt, type connection .</li> At the connection command prompt, type connect to server .</li> At the connection command prompt, type quit.</li> At the domain management command prompt, perform one of the following tasks: <ul> To create an application directory partition, type the following command:

create nc

</li> To delete an application directory partition, type the following command:

delete nc

</li></ul> </li></ol>

WARNING: If you remove the last replica of an application directory partition, you may permanently lose all of the data that is contained in the partition. You must decide when it is safe to delete the last copy of a particular partition.

NOTE: The value for the  parameter of the create nc command must either be the DNS name of a domain controller or a NULL variable. If you are creating the application directory partition on the domain controller to which you are currently connected, use the NULL variable.</li></ul>

back to the top

How to Add or Remove an Application Directory Partition Replica
An application directory partition replica is an instance of the application directory partition on another domain controller.

The following placeholders are used in the procedure that is described in this section:
 * : The distinguished name for the application directory partition of which you want to add or remove a replica. For example, the distinguished name of the application directory partition test.microsoft.com is dc=test, dc=microsoft, dc=com.
 * : The DNS name of the domain controller on which you want to add or remove the replica of the application directory partition.

<ol> Click Start, and then click Run.</li> In the Open box, type ntdsutil .</li> At the ntdsutil command prompt, type domain management .</li> At the domain management command prompt, type connection .</li> At the connection command prompt, type connect to server .</li> At the connection command prompt, type quit.</li> At the domain management command prompt, perform one of the following tasks: <ul> To add an application directory partition replica, type the following command:

add nc replica

</li> To remove an application directory partition replica, type the following command:

remove nc replica

</li></ul>

WARNING: If you remove the last replica of an application directory partition, you may permanently lose all of the data that is contained in the partition.

NOTE: You can use the NULL value for the  parameter of the add nc replica and remove nc replica commands if you are adding or removing the application directory partition replica on the domain controller to which you are currently connected.</li></ol>

back to the top

How to Display Application Directory Partition Information

 * 1) Click Start, and then click Run.
 * 2) In the Open box, type ntdsutil.
 * 3) At the ntdsutil command prompt, type domain management.
 * 4) At the domain management command prompt, type connection.
 * 5) At the connection command prompt, type connect to server  (where   is the DNS name of the domain controller for which you want to display application directory partition information).
 * 6) At the connection command prompt, type quit.
 * 7) At the domain management command prompt, type list.

back to the top

How to Set an Application Directory Partition Reference Domain
The security descriptor reference domain defines a domain name for the default security descriptor for objects in the application directory partition. By default, the security descriptor reference domain is the parent domain of the application directory partition. If the application directory partition is a child of another application directory partition, the default security descriptor reference domain is the security descriptor reference domain of the parent application directory partition. If the application directory partition has no parent, the forest root domain becomes the default security descriptor reference domain. You can use Ntdsutil to change the default security descriptor reference domain.

The following placeholders are used in the procedure that is described in this section:
 * : The DNS name of the domain controller in the domain that you want to be the security reference domain for this application directory partition.
 * : The distinguished name for the application directory partition for which you want to set the reference domain. For example, the distinguished name of the application directory partition test.microsoft.com is dc=test, dc=microsoft, dc=com.

<ol> Click Start, and then click Run.</li> <li>In the Open box, type ntdsutil .</li> <li>At the ntdsutil command prompt, type domain management .</li> <li>At the domain management command prompt, type connection .</li> <li>At the connection command prompt, type connect to server .</li> <li>At the connection command, type quit.</li> <li>At the domain management command, type the following command:

set nc reference domain

</li></ol>

back to the top

Keywords: kbActiveDirectory kbActiveDirectory kbHOWTOmaster KB322669

Technology: kbSBServ2003Pre kbSBServ2003Search kbSBServ2003St kbSBServSearch kbWinServ2003Ent kbWinServ2003EntSearch kbWinServ2003Search kbWinServ2003St

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© 2004 Microsoft Corporation. All rights reserved.