Re: Multple Domain Controllers at remote sites
- From: Gabble Ratchet <GabbleRatchet@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 13 Jul 2006 02:10:02 -0700
Went to one of our remote sites yesterday and did some testing. Seems that it
may well be a problem with the client NIC config.
1. Logged on a client and run >SET to confirm correct logon server.
2. Logged off client and dropped network link.
3. Logged on client; no errors and >SET again confirmed correct logon server.
4. Brought network link back up and logged off client.
5. Shutdown local DC and logged on client.
6. >SET confirmed alternative logon server DC.
7. Restarted local DC.
At this point we thought we had a ‘non’ problem. However, we again tried the
tests with another client machine which, although confirmed with the correct
local logon server, would not logon with the network link down!!
To get this client to logon we typed in the domain name into the field ‘DNS
suffix for this connection:’ in the Advanced TCP/IP settings window. Seems
that some of our client machines are configured differently. Should this be
completed in all cases ?? How about the two boxes below (‘Register this
connection’s addresses in DNS’, and ‘use this connection’s DNS suffix in DNS
registration’) ??
Thanks again
Gary
"Frankster" wrote:
You probably already checked this, but, does each of your clients have ALL.
of your DCs listed in the TCP/IP config of their NIC? This would allow any
one client to reach another DC DNS server upon logon. If only the local DC
was listed, and it was down, there'd be a problem.
-Frank
"Gabble Ratchet" <GabbleRatchet@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:FD6C02AA-A231-4730-8791-F7ABABED4AC8@xxxxxxxxxxxxxxxx
Andrei
Yes, the remote site DC's are DNS servers. The DNS zone in the forward
lookup zone is Active Directory Integrated and is set to 'Yes' to allow
dynamic updates. I've noticed in the reverse lookup zones that 'Allow
dynamic
updates' is set to 'only secure updates'. I'm not sure if that's
significant
??
Gary
"Andrei Ungureanu [MVP]" wrote:
Please check if the DCs from the remote sites are DNS servers. Your dns
zone
should be Active Directory Integrated so that it can replicate to all
domain
controllers, and it should support dynamic updates.
--
Regards,
Andrei Ungureanu
www.eventid.net
Test our new EventReader!
http://www.altairtech.ca/eventreader/default2.asp?ref=au
"Gabble Ratchet" <GabbleRatchet@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message
news:CA7DBD1D-BC35-479E-BD30-289F01B01764@xxxxxxxxxxxxxxxx
Andrei
I've run a netdiag.exe on a client machine and noticed this error in
the
log;
Expected registration with PDN (primary DNS domain name):
Hostname: abc.def.ghi.jkl
[WARNING] Cannot find a primaryauthoritative DNS server for the name
'abc.def.ghi.jkl...'. [ERROR_INVALID_NAME]
The name 'abc.def.ghi.jkl...' may not be registered in DNS.
Expected registration with adapter's DNS Domain Name:
Hostname: abc.def.ghi.jkl
Registration with adapters DNS domain name is disabled.
I guess this is significant ?? I've looked in the 'Advanced TCP/IP
settings
window' and confirmed that 'Register this connections address in DNS'
is
checked. Something else not configured ??
Many thanks for your assistance
Gary
"Andrei Ungureanu [MVP]" wrote:
tell me something about your DNS settings... The clients must be able
to
contact a DNS server authoritative for your domain zone so that they
can
find the DC responsible for their site.
Also some event id errors from the DCs and clients may help.
--
Regards,
Andrei Ungureanu
www.eventid.net
Test our new EventReader!
http://www.altairtech.ca/eventreader/default2.asp?ref=au
"Gabble Ratchet" <GabbleRatchet@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message
news:33A886BF-17E0-4E26-BE6E-BC0D0DA69413@xxxxxxxxxxxxxxxx
The DC's were already GC's (i didn't realise). Must be some other
issue
??
Regards
Gary
"Gabble Ratchet" wrote:
Thanks Andrei,
I didn't know that. I'll give it a go!
Gary
"Andrei Ungureanu" wrote:
you've forgot to make those DCs Global Catalogs.
You'll need at least one GC per site for logon to work.
--
Regards,
Andrei Ungureanu
www.eventid.net
Test our new EventReader!
http://www.altairtech.ca/eventreader/default2.asp?ref=au
"Gabble Ratchet" <GabbleRatchet@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote
in
message
news:86E8C3A1-59ED-42EF-82BF-A45A46DA1E42@xxxxxxxxxxxxxxxx
Hello
I have several w2k servers located at various remote sites
within
my
domain
and have installed a domain controller at each location. I
hoped
that
would
allow users located at these sites to still be able to log on
locally
if
the
network link went down. Unfortunately this doesn't seem to
work.
As
soon
as
the network link drops the users at that remote site are unable
to
log on.
Seems to defeat the object of having DC's at these sites.
Have I missed configured something, somewhere ?? Perhaps during
the
DCPROMO
wizard ??
Thanks for the help
Gary
- References:
- Re: Multple Domain Controllers at remote sites
- From: Andrei Ungureanu [MVP]
- Re: Multple Domain Controllers at remote sites
- From: Gabble Ratchet
- Re: Multple Domain Controllers at remote sites
- From: Andrei Ungureanu [MVP]
- Re: Multple Domain Controllers at remote sites
- From: Gabble Ratchet
- Re: Multple Domain Controllers at remote sites
- From: Frankster
- Re: Multple Domain Controllers at remote sites
- Prev by Date: Re: clients losing server connection
- Next by Date: Cant access active directory in Win XP/win 2003 with a Win 2000 PDC
- Previous by thread: Re: Multple Domain Controllers at remote sites
- Next by thread: remote offices over ADSL
- Index(es):
Relevant Pages
|
