Re: One server can't read GPO/bind to domain

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

---

• From: Jim <nospam@xxxxxxxx>
• Date: Wed, 07 Nov 2007 16:06:29 -0600

---

IPCONFIG /ALL for three DCs and the server below. Thanks

DC1 and DC2 on LAN. DC1 under VMWARE on the server in question. DC3 at remote site.

Errors when logging on to the server are:
"Windows cannot bind to DOMAIN.COM domain. (Server Down). Group Policy processing aborted."

"Windows cannot query for the list of Group Policy objects. Check the event log for possible messages previously logged by the policy engine that describes the reason for this."

Error from Exchange in log:
"Process mmc.exe (PID=2816). Exchange Active Directory Provider could not find an available domain controller in domain domain.com. This event may be caused by network connectivity issues or configured incorrectly DNS server. This event may also occur if you have not configured correctly your multiple Active Directory sites."

DC1 IPCONFIG:
Windows IP Configuration

Host Name . . . . . . . . . . . . : DC1
Primary Dns Suffix . . . . . . . : domain.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.com

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VMware Accelerated AMD PCNet Adapter
Physical Address. . . . . . . . . : 00-0C-29-B8-C3-30
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.33.17
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.33.2
DNS Servers . . . . . . . . . . . : 192.168.33.15

DC2 IPCONFIG:
Windows IP Configuration

Host Name . . . . . . . . . . . . : DC2
Primary Dns Suffix . . . . . . . : domain.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.com

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
Physical Address. . . . . . . . . : 00-1A-A0-33-CB-0A
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.33.15
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.33.2
DNS Servers . . . . . . . . . . . : 192.168.33.17

DC3 IPCONFIG:
Windows IP Configuration

Host Name . . . . . . . . . . . . : DC3
Primary Dns Suffix . . . . . . . : domain.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.com

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
Physical Address. . . . . . . . . : 00-1A-A0-38-DF-28
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.34.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.34.1
DNS Servers . . . . . . . . . . . : 192.168.34.2

SERVER IPCONFIG:
Windows IP Configuration

Host Name . . . . . . . . . . . . : problemserver
Primary Dns Suffix . . . . . . . : domain.com
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.com

Ethernet adapter VMware Network Adapter VMnet8:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VMware Virtual Ethernet Adapter for VMnet8
Physical Address. . . . . . . . . : 00-50-56-C0-00-08
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.205.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :

Ethernet adapter VMware Network Adapter VMnet1:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VMware Virtual Ethernet Adapter for VMnet1
Physical Address. . . . . . . . . : 00-50-56-C0-00-01
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.67.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client)
Physical Address. . . . . . . . . : 00-19-B9-BB-54-9D
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.33.14
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.33.2
DNS Servers . . . . . . . . . . . : 192.168.33.17
192.168.33.15


Meinolf Weber wrote:

Hello Jim,

Please post the complete error messages and also an ipconfig /all from the DC/DNS servers and the Exchange server.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.dts-l.org/goodpost.htm

Hi,

I have a Windows 2003 R2 x64 server that has a very slow login and
shows events 1006, 10030 in the application log. It has a static IP
configured with two DNS servers (Windows 2003 DCs) on the same LAN. It
is in use as a file server. It seems to have developed this problem
since Exchange 2007 was installed on it.

When I ping domain.com from the server I get a reply from one of the
DCs. When I ping an outside address I get the correct IP address but
no reply. I cannot browse Web sites, but all other LAN computers can.
Firewall on server is disabled.

NETDIAG passes DNS test but says [WARNING] Cannot find a primary
authoritative DNS server for the name 'server.domain.com'.
[ERROR_TIMEOUT]. Only other error is [WARNING] Failed to query SPN
registration on DC.

DCDIAG /S:DC1 returns "DsBindWithSpnEx() failed with error 1727, The
remote procedure call failed and did not execute.." but everything
else passes.

Anyone suggest what might be going on???

TIA

.

---

• Follow-Ups:
  • Re: One server can't read GPO/bind to domain
    • From: Austin Osuide

• References:
  • One server can't read GPO/bind to domain
    • From: Jim
  • Re: One server can't read GPO/bind to domain
    • From: Meinolf Weber

• Prev by Date: Re: Configuration site in NLTEST
• Next by Date: Re: LDAP proxy, forwarding or redirect
• Previous by thread: Re: One server can't read GPO/bind to domain
• Next by thread: Re: One server can't read GPO/bind to domain
• Index(es):
  • Date
  • Thread

---

Relevant Pages SecurityFocus Microsoft Newsletter #154 ... MICROSOFT VULNERABILITY SUMMARY ... ISS RealSecure Server Sensor SSL Denial Of Service Vulnerabi... ... Roger Wilco Remote Server Side Buffer Overrun Vulnerability ... available for Microsoft Windows operating systems. ... (Focus-Microsoft) Re: Cant Get DC List W32tm /monitor ... Windows IP Configuration ... Connection-specific DNS Suffix. ... 'The server process could not be started because the configured identity ... (microsoft.public.windows.server.general) Re: Blank screen after logging into RWW ... Microsoft Windows Small Business Server 2003 Best Practices Analyzer ... Connection-specific DNS Suffix. ... (microsoft.public.windows.server.sbs) SecurityFocus Microsoft Newsletter #49 ... Subject: SecurityFocus Microsoft Newsletter #49 ... Microsoft Windows NNTP Denial of Service Vulnerability ... Microsoft IIS SSI Buffer Overrun Privelege Elevation Vulnerability ... Microsoft ISA Server H.323 Memory Leak Denial of Service... ... (Focus-Microsoft) Re: DNS Correct? ... Maybe your server nic is working to hard? ... How can I monitor network traffic thoughout the day, ... Windows IP Configuration ... Connection-specific DNS Suffix. ... (microsoft.public.backoffice.smallbiz)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.active_directory  > 2007-11