Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net. The EventId.Net for Splunk Add-on assumes that Splunk is collecting information from Windows servers and workstation via the Splunk Universal Forwarder.
Unable to disable disk write cache on c:. Data might be lost during system failures.
|English: This information is only available to subscribers. An example of English, please!|
|Concepts to understand:|
What is NTDS and what are the roles of its components?
According to TD941847, although you can use disk write caching to increase application performance, disk write caching is not recommended for use on a domain controller because it can increase the chance of data corruption and loss.
This is not an error. The system is trying to disable write cache for NTDS (AD database) operations to keep is safer. However, it is not succeeding. Therefore, there is nothing wrong with your drive or the data on it. You just need to find out how to disable write caching (to be on the safe side).
If the hard disk becomes unavailable or otherwise an error or fault stops the system from flushing the cache, this event will occur. Since Windows keeps data in cache before writing it to the physical hard disk (for performance), this data will be lost. If the data is a part of an executable file, then the loss is not relevant. However, if the data is a file like a Word or Excel document, loss of important data may occur. Run a scandisk on the drive mentioned in the event.
|Private comment: Subscribers only. See example of private comment|
|Search: Google - Bing - Microsoft - Yahoo - EventID.Net Queue (0) - More links...|
|Custom search for *****: Google - Bing - Microsoft - Yahoo|
Send comments or solutions
- Notify me when updated