域组策略未通过站点到站点 VPN 更新

我有 2 个网站：

192.168.10.0/24 -主要的站点，这里就是 DC 所在的地方。

192.168.20.0/24 -偏僻的网站，通过连接站点到站点VPN。

主站点上一切运行正常，GPO 正在向成员更新。

在远程站点，我可以使用域用户登录，可以通过 IP 地址和主机名 ping DC 服务器，可以通过 %logonserver% 访问 DC，并且可以打开 SYSVOL 和 NETLOGON 文件夹。

问题是我无法更新 GPO。如果我尝试运行 gpupdate /force，我会得到以下信息：

Updating policy...

Computer policy could not be updated successfully. The following errors were encountered:

The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:
a) Name Resolution failure on the current domain controller.
b) Active Directory Replication Latency (an account created on another domain controller has not replicated to the current domain controller).
User Policy could not be updated successfully. The following errors were encountered:

The processing of Group Policy failed. Windows could not resolve the user name. This could be caused by one of more of the following:
a) Name Resolution failure on the current domain controller.
b) Active Directory Replication Latency (an account created on another domain controller has not replicated to the current domain controller).

To diagnose the failure, review the event log or run GPRESULT /H GPReport.html from the command line to access information about Group Policy results.

运行 GPRESULT /H GPReport.html 我得到了这个：

INFO: The user "DOMAIN\user" does not have RSoP data.

在事件查看器中我有错误代码7017和7320。

GpLogView 返回此内容：

GPLogView.exe -a 965ecff1-4502-4f7a-9d82-1c0fb1d92734
Processing events...
2020-04-28 12:27:10.440 4005 Starting manual processing of policy for user DOMAIN\user.
                             Activity id: {965ecff1-4502-4f7a-9d82-1c0fb1d92734}
2020-04-28 12:27:10.443 5340 The Group Policy processing mode is Background.
2020-04-28 12:27:10.444 5320 Attempting to retrieve the account information.
2020-04-28 12:27:10.444 4017 Making system call to get account information.

2020-04-28 12:27:11.070 7017 The system call to get account information completed.

                             The call failed after 641 milliseconds.
2020-04-28 12:27:11.070 5320 Retrying to retrieve account information.
2020-04-28 12:27:11.570 4017 Making system call to get account information.

2020-04-28 12:27:12.210 7017 The system call to get account information completed.

                             The call failed after 625 milliseconds.
2020-04-28 12:27:12.210 5320 Retrying to retrieve account information.
2020-04-28 12:27:12.711 4017 Making system call to get account information.

2020-04-28 12:27:13.420 7017 The system call to get account information completed.

                             The call failed after 704 milliseconds.
2020-04-28 12:27:13.420 5320 Retrying to retrieve account information.
2020-04-28 12:27:13.921 4017 Making system call to get account information.

2020-04-28 12:27:14.468 7017 The system call to get account information completed.

                             The call failed after 546 milliseconds.
2020-04-28 12:27:14.468 7320 Error: Retrieved account information. Error code 0x80090322.
2020-04-28 12:27:14.470 1053 The processing of Group Policy failed. Windows could not resolve the user name. This could be caused by one of more of the following:
                             a) Name Resolution failure on the current domain controller.
                             b) Active Directory Replication Latency (an account created on another domain controller has not replicated to the current domain controller).
2020-04-28 12:27:14.473 8005 Completed manual processing of policy for user DOMAIN\user in 4 seconds.
Processed 17 records.

据我所知，所有必需的端口都已打开。

关于我下一步该排除什么故障，有什么建议吗？