Re: Random Authentication Requests

Tech-Archive recommends: Speed Up your PC by fixing your registry

---

• From: "Herb Martin" <news@xxxxxxxxxxxxxx>
• Date: Wed, 22 Mar 2006 10:13:43 -0600

---

"Orbital" <sian.clarke@xxxxxxxxxxxxxxxxxxx> wrote in message
news:eOe0tAZTGHA.5172@xxxxxxxxxxxxxxxxxxxxxxx

Hi Guys,

Thanks for your responses. Well, I can rule out for sure any kind of
firewall issue. Should I try and print to any printer attached to that DC
I get errors, although this is likely to be my machine giving me errors, I
haven't bounced it in some time. I also see random domain login prompts
every now and again. I enter my credentials and I'm fine. Additionally,
as you'll see from a posting below, I'm seeing 1373 and 1528 errors in one
of my DC event logs. If I query this DC using any of the replication
tools, they reject my request until I parse it the box my username and
password.

You likely have a DNS problem -- almost all Authentication
and Replication (DC) issues are actually DNS, especially if
the basic networking (IP and firewall) is functional.

DNS for AD
1) Dynamic for the zone supporting AD
2) All internal DNS clients NIC\IP properties must specify SOLELY
that internal, dynamic DNS server (set.)
3) DCs and even DNS servers are DNS clients too -- see #2
4) If you have more than one Domain, every DNS server must
be able to resolve ALL domains (either directly or indirectly)

netdiag /fix

....or maybe:

dcdiag /fix

(Win2003 can do this from Support tools):
nltest /dsregdns /server:DC-ServerNameGoesHere
http://support.microsoft.com/kb/q260371/

Ensure that DNS zones/domains are fully replicated to all DNS
servers for that (internal) zone/domain.

Also useful may be running DCDiag on each DC, sending the
output to a text file, and searching for FAIL, ERROR, WARN.

Single Label domain zone names are a problem Google:
[ "SINGLE LABEL" domain names DNS 2000 | 2003 microsoft: ]


--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]


.

---

• References:
  • Random Authentication Requests
    • From: Orbital
  • Re: Random Authentication Requests
    • From: Herb Martin
  • Re: Random Authentication Requests
    • From: Orbital

• Prev by Date: Re: How to convert ADC to PDC?
• Next by Date: Re: AD replicate to server in Co-Location
• Previous by thread: Re: Random Authentication Requests
• Next by thread: Re: Adding an Additional Domain Controller
• Index(es):
  • Date
  • Thread

---

Relevant Pages RE: DNS/AD/RPC issues (x posted to .dns) ... You are right that an error like this is usually caused by a DNS problem. ... subnet - although replication is not functioning. ... (The DNS server could not bind a Transmission Control ... From DC3SRVR to DC1SRVR ... (microsoft.public.windows.server.active_directory) DNS/AD/RPC issues (x posted to .dns) ... subnet - although replication is not functioning. ... The DNS log is where the real action is: ... (The DNS server could not bind a Transmission Control ... From DC3SRVR to DC1SRVR ... (microsoft.public.windows.server.active_directory) Re: DNS/AD/RPC issues ... subnet - although replication is not functioning. ... domain controller has consistently failed. ... The DNS log is where the real action is: ... (The DNS server could not bind a Transmission Control ... (microsoft.public.windows.server.dns) Re: Can Not Ping By Name ... >>> Make sure there's no firewall packaged with the VPN client. ... >>DNS server is the same physical server as the Exchange, ... > Network problem solving - general advice: ... (microsoft.public.windowsxp.network_web) Re: DNS Server set to forwarder randomly going out to root servers ... We implemented the EDNS0 change to no avail. ... The firewall is actually acting as a caching DNS server. ... (microsoft.public.windows.server.dns)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Win2000  > microsoft.public.win2000.active_directory  > 2006-03