Re: "Domain does not exist Or could not be contacted"?
- From: marek1712 <marek1712@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 13 Apr 2009 02:26:02 -0700
Up to now I used only built-in group. I've created one now and still doesn't
work from the default location.
Now - those files Ace asked for:
DCDIAG:
"Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
* Verifying that the local machine serwerAD, is a Directory Server.
Home Server = serwerAD
* Connecting to directory service on server serwerAD.
* Identified AD Forest.
Collecting AD specific global data
* Collecting site info.
Calling
ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=przyklad,DC=pl,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
The previous call succeeded
Iterating through the sites
Looking at base site object: CN=NTDS Site
Settings,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyklad,DC=pl
Getting ISTG and options for the site
* Identifying all servers.
Calling
ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=przyklad,DC=pl,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
The previous call succeeded....
The previous call succeeded
Iterating through the list of servers
Getting information for the server CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyklad,DC=pl
objectGuid obtained
InvocationID obtained
dnsHostname obtained
site info obtained
All the info for the server collected
* Identifying all NC cross-refs.
* Found 1 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SERWERAD
Starting test: Connectivity
* Active Directory LDAP Services Check
Determining IP4 connectivity
* Active Directory RPC Services Check
......................... SERWERAD passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SERWERAD
Starting test: Advertising
The DC SERWERAD is advertising itself as a DC and having a DS.
The DC SERWERAD is advertising as an LDAP server
The DC SERWERAD is advertising as having a writeable directory
The DC SERWERAD is advertising as a Key Distribution Center
The DC SERWERAD is advertising as a time server
The DS SERWERAD is advertising as a GC.
......................... SERWERAD passed test Advertising
Test omitted by user request: CheckSecurityError
Test omitted by user request: CutoffServers
Starting test: FrsEvent
* The File Replication Service Event log test
......................... SERWERAD passed test FrsEvent
Starting test: DFSREvent
The DFS Replication Event Log.
......................... SERWERAD passed test DFSREvent
Starting test: SysVolCheck
* The File Replication Service SYSVOL ready test
File Replication Service's SYSVOL is ready
......................... SERWERAD passed test SysVolCheck
Starting test: KccEvent
* The KCC Event log test
Found no KCC errors in "Directory Service" Event log in the last 15
minutes.
......................... SERWERAD passed test KccEvent
Starting test: KnowsOfRoleHolders
Role Schema Owner = CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyklad,DC=pl
Role Domain Owner = CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyklad,DC=pl
Role PDC Owner = CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyklad,DC=pl
Role Rid Owner = CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyklad,DC=pl
Role Infrastructure Update Owner = CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyklad,DC=pl
......................... SERWERAD passed test KnowsOfRoleHolders
Starting test: MachineAccount
Checking machine account for DC SERWERAD on DC SERWERAD.
* SPN found :LDAP/serwerAD.przyklad.pl/przyklad.pl
* SPN found :LDAP/serwerAD.przyklad.pl
* SPN found :LDAP/SERWERAD
* SPN found :LDAP/serwerAD.przyklad.pl/PRZYKLAD
* SPN found
:LDAP/0d1da1f2-53fe-4b8e-8f99-784c7c227313._msdcs.przyklad.pl
* SPN found
:E3514235-4B06-11D1-AB04-00C04FC2DCD2/0d1da1f2-53fe-4b8e-8f99-784c7c227313/przyklad.pl
* SPN found :HOST/serwerAD.przyklad.pl/przyklad.pl
* SPN found :HOST/serwerAD.przyklad.pl
* SPN found :HOST/SERWERAD
* SPN found :HOST/serwerAD.przyklad.pl/PRZYKLAD
* SPN found :GC/serwerAD.przyklad.pl/przyklad.pl
......................... SERWERAD passed test MachineAccount
Starting test: NCSecDesc
* Security Permissions check for all NC's on DC SERWERAD.
* Security Permissions Check for
DC=ForestDnsZones,DC=przyklad,DC=pl
(NDNC,Version 3)
* Security Permissions Check for
DC=DomainDnsZones,DC=przyklad,DC=pl
(NDNC,Version 3)
* Security Permissions Check for
CN=Schema,CN=Configuration,DC=przyklad,DC=pl
(Schema,Version 3)
* Security Permissions Check for
CN=Configuration,DC=przyklad,DC=pl
(Configuration,Version 3)
* Security Permissions Check for
DC=przyklad,DC=pl
(Domain,Version 3)
......................... SERWERAD passed test NCSecDesc
Starting test: NetLogons
* Network Logons Privileges Check
Verified share \\SERWERAD\netlogon
Verified share \\SERWERAD\sysvol
......................... SERWERAD passed test NetLogons
Starting test: ObjectsReplicated
SERWERAD is in domain DC=przyklad,DC=pl
Checking for CN=SERWERAD,OU=Domain Controllers,DC=przyklad,DC=pl in
domain DC=przyklad,DC=pl on 1 servers
Object is up-to-date on all servers.
Checking for CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyklad,DC=pl
in domain CN=Configuration,DC=przyklad,DC=pl on 1 servers
Object is up-to-date on all servers.
......................... SERWERAD passed test ObjectsReplicated
Test omitted by user request: OutboundSecureChannels
Starting test: Replications
* Replications Check
* Replication Latency Check
DC=ForestDnsZones,DC=przyklad,DC=pl
Latency information for 2 entries in the vector were ignored.
2 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
DC=DomainDnsZones,DC=przyklad,DC=pl
Latency information for 2 entries in the vector were ignored.
2 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
CN=Schema,CN=Configuration,DC=przyklad,DC=pl
Latency information for 2 entries in the vector were ignored.
2 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
CN=Configuration,DC=przyklad,DC=pl
Latency information for 2 entries in the vector were ignored.
2 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
DC=przyklad,DC=pl
Latency information for 2 entries in the vector were ignored.
2 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
......................... SERWERAD passed test Replications
Starting test: RidManager
* Available RID Pool for the Domain is 2600 to 1073741823
* serwerAD.przyklad.pl is the RID Master
* DsBind with RID Master was successful
* rIDAllocationPool is 2100 to 2599
* rIDPreviousAllocationPool is 2100 to 2599
* rIDNextRID: 2102
......................... SERWERAD passed test RidManager
Starting test: Services
* Checking Service: EventSystem
* Checking Service: RpcSs
* Checking Service: NTDS
* Checking Service: DnsCache
* Checking Service: DFSR
* Checking Service: IsmServ
* Checking Service: kdc
* Checking Service: SamSs
* Checking Service: LanmanServer
* Checking Service: LanmanWorkstation
* Checking Service: w32time
* Checking Service: NETLOGON
......................... SERWERAD passed test Services
Starting test: SystemLog
* The System Event log test
Found no errors in "System" Event log in the last 60 minutes.
......................... SERWERAD passed test SystemLog
Test omitted by user request: Topology
Test omitted by user request: VerifyEnterpriseReferences
Starting test: VerifyReferences
The system object reference (serverReference)
CN=SERWERAD,OU=Domain Controllers,DC=przyklad,DC=pl and backlink on
CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyklad,DC=pl
are correct.
The system object reference (serverReferenceBL)
CN=SERWERAD,CN=Topology,CN=Domain System
Volume,CN=DFSR-GlobalSettings,CN=System,DC=przyklad,DC=pl
and backlink on
CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyklad,DC=pl
are correct.
......................... SERWERAD passed test VerifyReferences
Test omitted by user request: VerifyReplicas
Test omitted by user request: DNS
Test omitted by user request: DNS
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test
CrossRefValidation
Running partition tests on : przyklad
Starting test: CheckSDRefDom
......................... przyklad passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... przyklad passed test CrossRefValidation
Running enterprise tests on : przyklad.pl
Test omitted by user request: DNS
Test omitted by user request: DNS
Starting test: LocatorCheck
GC Name: \\serwerAD.przyklad.pl
Locator Flags: 0xe00013fd
PDC Name: \\serwerAD.przyklad.pl
Locator Flags: 0xe00013fd
Time Server Name: \\serwerAD.przyklad.pl
Locator Flags: 0xe00013fd
Preferred Time Server Name: \\serwerAD.przyklad.pl
Locator Flags: 0xe00013fd
KDC Name: \\serwerAD.przyklad.pl
Locator Flags: 0xe00013fd
......................... przyklad.pl passed test LocatorCheck
Starting test: Intersite
Skipping site Default-First-Site-Name, this site is outside the scope
provided by the command line arguments provided.
......................... przyklad.pl passed test Intersite"
I've checked all the records in the DNS and there are no problematic entries.
I don't have netdiag (I've installed Win2k3 Resource Kit, but it isn't there
also, as (I think) it's a native tool for Windows 2003 and older).
As for net start... there may be language problem. I'm using English version
of Windows with Polish MUI package. I've changed my lang. back to English,
but all the service names are in Polish. If you really need it - I can
translate it to English but it will take a few moments.
Event Viewer: aside from some random applications (3rd party, not related to
the AD) crash logs, there's nothing special. Only this:
http://www.eventid.net/display.asp?eventid=6006&eventno=8895&source=Winlogon&phase=1
Best regards,
Marek
"Meinolf Weber [MVP-DS]" wrote:
Hello marek1712,.
Nice to hear that something changed, but still you should be able to add
domain groups also. Did you try with a self created group instead of using
domain users?
Also as Ace requested earlier an ouptut from the different commands would
be fine.
Best regards
Meinolf Weber
- Follow-Ups:
- Re: "Domain does not exist Or could not be contacted"?
- From: Meinolf Weber [MVP-DS]
- Re: "Domain does not exist Or could not be contacted"?
- References:
- "Domain does not exist Or could not be contacted"?
- From: marek1712
- Re: "Domain does not exist Or could not be contacted"?
- From: Ace Fekay [Microsoft Certified Trainer]
- Re: "Domain does not exist Or could not be contacted"?
- From: marek1712
- Re: "Domain does not exist Or could not be contacted"?
- From: Ace Fekay [Microsoft Certified Trainer]
- Re: "Domain does not exist Or could not be contacted"?
- From: marek1712
- Re: "Domain does not exist Or could not be contacted"?
- From: Ace Fekay [Microsoft Certified Trainer]
- Re: "Domain does not exist Or could not be contacted"?
- From: marek1712
- Re: "Domain does not exist Or could not be contacted"?
- From: Meinolf Weber [MVP-DS]
- "Domain does not exist Or could not be contacted"?
- Prev by Date: Re: "Domain does not exist Or could not be contacted"?
- Next by Date: Re: Strange A.D object
- Previous by thread: Re: "Domain does not exist Or could not be contacted"?
- Next by thread: Re: "Domain does not exist Or could not be contacted"?
- Index(es):
Relevant Pages
|
