Re: Netdiag erros- 'WINS' names is missing and You don't have a single interface with the <00>
From: Steven Halsey [MSFT] (Stevhal_at_Online.Microsoft.com)
Date: 06/15/04
- Next message: anonymous_at_discussions.microsoft.com: "Re: Global Address List in Exchange 2003"
- Previous message: Lanwench [MVP - Exchange]: "Re: capture a copy of all emails sent and received"
- In reply to: Ned Hart: "Re: Netdiag erros- 'WINS' names is missing and You don't have a single interface with the <00>"
- Next in thread: Ned Hart: "Re: Netdiag erros- 'WINS' names is missing and You don't have a single interface with the <00>"
- Reply: Ned Hart: "Re: Netdiag erros- 'WINS' names is missing and You don't have a single interface with the <00>"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 15 Jun 2004 11:30:37 -0700
Of the errors you listed below the one I would be most worried about is the
Kerberos entry. Exchange is very dependent on Kerberos authentication and
other interfaces to the Domain Controllers.
Let me list some common misconfigurations that you can check, some of these
you may have already done:
1) DNS is set to allow Dynamic Update
2) DNS contains host records for Exchange 2003 server, and all Domain
Controllers in the Domain
3) You can ping the Mail server from your domain controllers by both simple
netbios name (mail) and FQDN (mail.ezhk.com)
4) You can ping the Domain Controllers from your mail server by both simple
and FQDN
5) If you do a search using Active Directory Users and Computers against
the "Entire Directory" for a server with the same name as your mail server
you only get 1 computer returned. Sometimes there can be an old record of
the mail server in the domain or another domain that interfers with kerberos
6) If you look at your DNS you see entries under the domain labelled
"_mcdcs","_sites", "_tcp", "_udp" in addition to the Host records
7) What version of OS is the Mail Server and what version OS are the DCs.
8) You are running the netdiag test that matches your Mail Servers version.
A netdiag version from Windows 2000 will fail kerberos tests if run on a
Windows 2003 server, and vice versa.
9) There are no event warning or errors in the Domain Controller
application, system, or directory event logs. Especially ones that seem to
mention the mail server or the mail servers IP address.
10) Make sure the time on the Domain Controller and Exchange server are in
sync. Can do a "Net Time /set \\<DomainController>" on the Exchange server
11) At any time do you think you had another computer with the same name on
the network? Possible WINS mismatch, or also there are some records
(servicePrincipalName) Windows Active Directory could be holding causing
the Kerberos failures. If you think there is I can give instructions on how
to search for these.
12) You have only the internal DNS set on the Server IPsettings DNS. You
should set your internal DNS to contain only your Zones (MyDomain.Com) and
then set the server to forward all other searches to the external Address.
You should make sure all your computers in general reference only your
internal DNS, and let the forward resolve internet addresses and SMTP
mailings.
-- Steven Halsey Stevhal@online.microsoft.com Microsoft Exchange Please do not send email directly to this alias. This alias is for newsgroup purposes only. This posting is provided "AS IS" with no warranties, and confers no rights.
- Next message: anonymous_at_discussions.microsoft.com: "Re: Global Address List in Exchange 2003"
- Previous message: Lanwench [MVP - Exchange]: "Re: capture a copy of all emails sent and received"
- In reply to: Ned Hart: "Re: Netdiag erros- 'WINS' names is missing and You don't have a single interface with the <00>"
- Next in thread: Ned Hart: "Re: Netdiag erros- 'WINS' names is missing and You don't have a single interface with the <00>"
- Reply: Ned Hart: "Re: Netdiag erros- 'WINS' names is missing and You don't have a single interface with the <00>"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
