Re: No DC in Active Directory

---

• From: Harj <cisqokid@xxxxxxxxx>
• Date: Wed, 01 Aug 2007 14:24:14 -0000

---

On Aug 1, 1:06 am, Preston <Pres...@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:

I have 3 servers of which the newest is an Exchange Server 2007 running on
Windows 2003 x64 Server. The other two are Windows 2003 Server 2003 w/SP1.
I just installed the Exchange Server. Prior to that, things seemed to be ok.
However, the first server (Srvr1) now shows no DCs in the Active Directory
when I go to AD users and computers. Also, no computers show up in that
display either. On Srvr2 which is in a different city connected via a
SonicWall VPN, both servers, DCs and computers show up in the AD users and
computers display. When I restart Srvr1, I get the following message: Net
Service Configuration. The specified service does not exist as an installed
service. The even log has two items of interest. They are below. Any help
is appreciated.

Event Type: Warning
Event Source: NtFrs
Event Category: None
Event ID: 13509
Date: 7/30/2007
Time: 3:00:21 PM
User: N/A
Computer: NSRSRVR1
Description:
The File Replication Service has enabled replication from NSRSRVR2 to
NSRSRVR1 for c:\windows\sysvol\domain after repeated retries.

and

Event Type: Error
Event Source: NTDS Replication
Event Category: DS RPC Client
Event ID: 2087
Date: 7/29/2007
Time: 7:58:23 PM
User: NT AUTHORITY\ANONYMOUS LOGON
Computer: NSRSRVR1
Description:
Active Directory could not resolve the following DNS host name of the source
domain controller to an IP address. This error prevents additions, deletions
and changes in Active Directory from replicating between one or more domain
controllers in the forest. Security groups, group policy, users and computers
and their passwords will be inconsistent between domain controllers until
this error is resolved, potentially affecting logon authentication and access
to network resources.

Source domain controller:
nsrsrvr2
Failing DNS host name:
569aeef5-961f-4b7c-b524-b908d6402b77._msdcs.nsrnet.local

NOTE: By default, only up to 10 DNS failures are shown for any given 12 hour
period, even if more than 10 failures occur. To log all individual failure
events, set the following diagnostics registry value to 1:

Registry Path:
HKLM\System\CurrentControlSet\Services\NTDS\Diagnostics\22 DS RPC Client

User Action:

1) If the source domain controller is no longer functioning or its
operating system has been reinstalled with a different computer name or
NTDSDSA object GUID, remove the source domain controller's metadata with
ntdsutil.exe, using the steps outlined in MSKB article 216498.

2) Confirm that the source domain controller is running Active directory
and is accessible on the network by typing "net view \\<source DC name>" or
"ping <source DC name>".

3) Verify that the source domain controller is using a valid DNS server for
DNS services, and that the source domain controller's host record and CNAME
record are correctly registered, using the DNS Enhanced version of DCDIAG.EXE
available onhttp://www.microsoft.com/dns

dcdiag /test:dns

4) Verify that that this destination domain controller is using a valid DNS
server for DNS services, by running the DNS Enhanced version of DCDIAG.EXE
command on the console of the destination domain controller, as follows:

dcdiag /test:dns

5) For further analysis of DNS error failures see KB 824449:
http://support.microsoft.com/?kbid=824449

Additional Data
Error value:
11004 The requested name is valid, but no data of the requested type was
found.

Hi,

Where are the three DC's pointed to for DNS?
Event 13509 is no biggie as it states it has finally enabled
replication. We would just want to find out why it takes time between
the 13508 and the 13509.

Three DC's I would point all of them to the PDC for primary and
themselfs for secondary. Flush and reregister dns and restart the net
logon service on all of them.
Verify they are all Global Catalog servers also

Good Luck

Harj Singh
Power Your Active Directory Investment
www.specopssoft.com

.

---

• Follow-Ups:
  • Re: No DC in Active Directory
    • From: Preston

• References:
  • No DC in Active Directory
    • From: Preston

• Prev by Date: RE: Odd FSMO role seize problem
• Next by Date: RE: Odd FSMO role seize problem
• Previous by thread: No DC in Active Directory
• Next by thread: Re: No DC in Active Directory
• Index(es):
  • Date
  • Thread

---

Relevant Pages No DC in Active Directory ... I just installed the Exchange Server. ... Active Directory could not resolve the following DNS host name of the source ... domain controller to an IP address. ... If the source domain controller is no longer functioning or its ... (microsoft.public.windows.server.active_directory) Re: Event 2088 and Event 1960 ... Promote server to DC ... Change back the new server DNS pointing to itself ... computer name of the source domain controller. ... (microsoft.public.windows.server.active_directory) SBS2008 migration problems ... When I tried to log in as Administrator to the server it would ... "Active Directory Domain Services could not use DNS to resolve the IP ... address of the source domain controller listed below. ... (microsoft.public.windows.server.sbs) Issues migrating SBS 2003 domain to Server 2008 Standard ... We are stuck migrating our SBS 2003 domain to Server 2008. ... Fatal Error:DsGetDcName (SRV-EXCH) call failed, ... Verify your Domain Name Sysytem (DNS) is ... network connectivity to a domain controller. ... (microsoft.public.windows.server.sbs) Re: Issues migrating SBS 2003 domain to Server 2008 Standard ... Since you have migrated to standard server 2008 you would be better served posting in a Standard server NG. ... Event String: ... Verify your Domain Name Sysytem (DNS) is ... network connectivity to a domain controller. ... (microsoft.public.windows.server.sbs)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)