Microsoft Exchange could not access the Active Directory directory service
Topic Last Modified: 2007-11-16
The Microsoft Exchange Server 2007 Management Pack for Operations Manager monitors the Windows Application log on computers that are running Exchange Server 2007 and generates this alert when the event or events specified in the following Details table are logged.
To learn more about this event, do one or more of the following:
Review the description of the event that includes the variables specific to your environment. From the Operator Console, select this alert, and then click the Properties tab.
Review all events that have been logged that meet the criteria of this Operations Manager alert. From the Operator Console, click the Events tab, and then double-click the event in the list for which you want to review the event description.
Details
Product Name |
Exchange |
Product Version |
8.0 (Exchange Server 2007) |
Event ID |
1006 |
Event Source |
MSExchange Extensibility |
Alert Type |
Warning |
MOM Rule Path |
Microsoft Exchange Server/Exchange 2007/Common Components/Hub Transport and Edge Transport/Agents/Common |
MOM Rule Name |
Microsoft Exchange could not access the Active Directory directory service. |
Explanation
This Warning event indicates that Exchange could not contact the Active Directory directory server to reload its recipient cache or update recipient group membership information. Exchange uses the recipient cache to minimize the affect that potential dictionary attacks could have on Internet-facing transport servers. Exchange uses the recipient group membership information to evaluate rules on Hub Transport servers.
If Exchange cannot contact Active Directory, Exchange will continue to run with the most recent data it cached from Active Directory. It will try to contact Active Directory again after four hours.
If this event is logged on a Hub Transport server, you may notice the following symptoms:
Recently created recipients will be unable to receive e-mail from outside the Exchange organization until the recipient cache is reloaded.
Recent changes to group membership will not be picked up by server-side rules until the Active Directory is reloaded.
User Action
If this Warning event is not logged frequently, no user action is required. However, if this event is logged multiple times a week, it probably indicates a network issue or Active Directory server capacity issue. To resolve this event, try one or more of the following:
Troubleshoot network connectivity issues. Use the Ping or PathPing command-line tools to test basic connectivity. Use Ping to isolate network hardware problems and incompatible configurations. Use PathPing to detect packet loss over multiple-hop trips. For more information, see Microsoft Knowledge Base article 325487, How to troubleshoot network connectivity problems.
Upgrade the hardware on the Active Directory server to support additional capacity.
For More Information
To search the Microsoft Knowledge Base articles based on criteria that generated this alert, visit the Search the Support Knowledge Base (KB) Web site.
To review Exchange 2007 event message articles that may not be represented by Exchange 2007 MOM alerts, see the Events and Errors Message Center.
If you are not already doing so, consider running the tools that Microsoft Exchange offers to help administrators analyze and troubleshoot their Exchange environment. These tools can help you make sure that your configuration is in line with Microsoft best practices. They can also help you identify and resolve performance issues, improve mail flow, and better manage disaster recovery scenarios. Go to the Toolbox node of the Exchange Management Console to run these tools now. For more information about these tools, see Toolbox in the Exchange Server 2007 Help.