Re: Cannot find domain controller

Bingo!
As I said earlier, It's a generic event that's thrown when negotiated auth fails.
You potentially could have a host of causally related factors at play here. Understanding what the error means allows you, in addition to other events generated at the time to work through a logical differential diagnosis process and removes guess work.

Regards,

Austin

"Ace Fekay [MVP]" <PleaseAskMe@xxxxxxxxxxxxxx> wrote in message news:e0ETAzzKIHA.3848@xxxxxxxxxxxxxxxxxxxxxxx
In news:OBp0j.18091$bK4.9262@xxxxxxxxxxxxxxxxxxxxx,
Austin Osuide <austin@xxxxxxxxxxx> typed:
To quote Yakob's posting of the of the 7th at 09:07:

<quote>

C:\Documents and Settings\gtg.PROGRESSIVE>
reverse DNS is created
AD DNS progressive.local

When try to open Outlook warnings in System log: source LsaSrv Event
ID 40960 and 40961 category: SPNEGO (Negotiator) ,repeatdly and
source Kerberos Event ID 10 category none appears once.
When user logs on in the Application log source Userenv, event id
1054.
Hope we can find the answer.

</quote>

So, you see? Not a reverse lookup registration issue apparently.
The reflex action of attributing all cases of 40960/40961 errors to
PTR registrations is wrong. Also, if you understand how DNS works and
why you use PTR records, you'll see you can live without them.
Sometimes. Yes, some diagnostic tools will barf but it hardly ever
results in loss of functionality if you don't have them set. As I
mentioned earlier, the initial DNS rfcs' don't even mention PTR
records and in the MS KB we reviewed earlier, a second option is to
turn off the registration to reduce unnecessary network traffic.
Just trying to share my view of the problem and solution.

Regards,

Austin

Ahh, not trying to pick the post, but he said he has a reverse zone, however didn't mention if a PTR existed. Of course we'll assume one exists and this brings us back to square one.

There is one other thing that I've seen this associated with. It's something in the security policy of the local DC that could be causing it. Interestingly enough, we saw on XP desktops getting 40960 and 1058 errors. A PTR exists for it too. A restart fixes it. There is a KB fix that addresses it. I'm not saying it is related or not, but an interesting issue. I have to dig up my notes on this one. I'll post back.

Ace


.

Relevant Pages

  • Re: Server Usage Reports - Resolving IP Addresses
    ... the windows 2000 PTR may be created for manually ... Right-click the network connection that you want to configure, ... and then click the DNS tab. ... |> You may check if there are PTR records for those IP addresses in the ...
    (microsoft.public.windows.server.sbs)
  • Re: Need help with reverse DNS
    ... Some times an ISP will let you control the PTR records if you have a block ... > Subject: RE: Need help with reverse DNS ... > that my server is not being used by me or anyone else for mass ...
    (RedHat)
  • Re: Cannot find domain controller
    ... But again, last time I saw this errors, the solution was to create a Reverse ... I under if the Reverse Zone that the poster created was allowing Dynamic ... AD DNS progressive.local ... use PTR records, you'll see you can live without them. ...
    (microsoft.public.windows.server.active_directory)
  • Re: reverse DNS resolution...
    ... We've had the 10.x network working great at the office ... your DNS needs to be authoritative for both forward and reverse. ... IN PTR user1.vpn. ...
    (freebsd-questions)
  • Re: Cannot find domain controller
    ... AD DNS progressive.local ... Not a reverse lookup registration issue apparently. ... use PTR records, you'll see you can live without them. ... Create a Reverse Lookup Zone. ...
    (microsoft.public.windows.server.active_directory)
Loading