Re: "Domain does not exist Or could not be contacted"?
- From: Meinolf Weber [MVP-DS] <meiweb(nospam)@gmx.de>
- Date: Mon, 13 Apr 2009 14:55:51 +0000 (UTC)
Hello marek1712,
Your server is 2008 R2 or WIN7 the beta version from 2008, is this correct?
If the above one is wrong you can copy the netdiag.exe from the installed support tools from 2003 to the 2008 machine. Netdiag does not work with 2008 R2, as far as my tests go now.
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
Up to now I used only built-in group. I've created one now and still
doesn't
work from the default location.
Now - those files Ace asked for:
DCDIAG:
"Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
* Verifying that the local machine serwerAD, is a Directory Server.
Home Server = serwerAD
* Connecting to directory service on server serwerAD.
* Identified AD Forest.
Collecting AD specific global data
* Collecting site info.
Calling
ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=przyklad,DC=pl,
LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
The previous call succeeded
Iterating through the sites
Looking at base site object: CN=NTDS Site
Settings,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=przyk
lad,DC=pl
Getting ISTG and options for the site
* Identifying all servers.
Calling
ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=przyklad,DC=pl,
LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
The previous call succeeded....
The previous call succeeded
Iterating through the list of servers
Getting information for the server CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN
=Configuration,DC=przyklad,DC=pl
objectGuid obtained
InvocationID obtained
dnsHostname obtained
site info obtained
All the info for the server collected
* Identifying all NC cross-refs.
* Found 1 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SERWERAD
Starting test: Connectivity
* Active Directory LDAP Services Check
Determining IP4 connectivity
* Active Directory RPC Services Check
......................... SERWERAD passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SERWERAD
Starting test: Advertising
The DC SERWERAD is advertising itself as a DC and having a
DS.
The DC SERWERAD is advertising as an LDAP server
The DC SERWERAD is advertising as having a writeable
directory
The DC SERWERAD is advertising as a Key Distribution Center
The DC SERWERAD is advertising as a time server
The DS SERWERAD is advertising as a GC.
......................... SERWERAD passed test Advertising
Test omitted by user request: CheckSecurityError
Test omitted by user request: CutoffServers
Starting test: FrsEvent
* The File Replication Service Event log test
......................... SERWERAD passed test FrsEvent
Starting test: DFSREvent
The DFS Replication Event Log.
......................... SERWERAD passed test DFSREvent
Starting test: SysVolCheck
* The File Replication Service SYSVOL ready test
File Replication Service's SYSVOL is ready
......................... SERWERAD passed test SysVolCheck
Starting test: KccEvent
* The KCC Event log test
Found no KCC errors in "Directory Service" Event log in the
last 15
minutes.
......................... SERWERAD passed test KccEvent
Starting test: KnowsOfRoleHolders
Role Schema Owner = CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN
=Configuration,DC=przyklad,DC=pl
Role Domain Owner = CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN
=Configuration,DC=przyklad,DC=pl
Role PDC Owner = CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN
=Configuration,DC=przyklad,DC=pl
Role Rid Owner = CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN
=Configuration,DC=przyklad,DC=pl
Role Infrastructure Update Owner = CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN
=Configuration,DC=przyklad,DC=pl
......................... SERWERAD passed test
KnowsOfRoleHolders
Starting test: MachineAccount
Checking machine account for DC SERWERAD on DC SERWERAD.
* SPN found :LDAP/serwerAD.przyklad.pl/przyklad.pl
* SPN found :LDAP/serwerAD.przyklad.pl
* SPN found :LDAP/SERWERAD
* SPN found :LDAP/serwerAD.przyklad.pl/PRZYKLAD
* SPN found
:LDAP/0d1da1f2-53fe-4b8e-8f99-784c7c227313._msdcs.przyklad.pl
* SPN found
:E3514235-4B06-11D1-AB04-00C04FC2DCD2/0d1da1f2-53fe-4b8e-8f99-784c7c22
7313/przyklad.pl
* SPN found :HOST/serwerAD.przyklad.pl/przyklad.pl
* SPN found :HOST/serwerAD.przyklad.pl
* SPN found :HOST/SERWERAD
* SPN found :HOST/serwerAD.przyklad.pl/PRZYKLAD
* SPN found :GC/serwerAD.przyklad.pl/przyklad.pl
......................... SERWERAD passed test MachineAccount
Starting test: NCSecDesc
* Security Permissions check for all NC's on DC SERWERAD.
* Security Permissions Check for
DC=ForestDnsZones,DC=przyklad,DC=pl
(NDNC,Version 3)
* Security Permissions Check for
DC=DomainDnsZones,DC=przyklad,DC=pl
(NDNC,Version 3)
* Security Permissions Check for
CN=Schema,CN=Configuration,DC=przyklad,DC=pl
(Schema,Version 3)
* Security Permissions Check for
CN=Configuration,DC=przyklad,DC=pl
(Configuration,Version 3)
* Security Permissions Check for
DC=przyklad,DC=pl
(Domain,Version 3)
......................... SERWERAD passed test NCSecDesc
Starting test: NetLogons
* Network Logons Privileges Check
Verified share \\SERWERAD\netlogon
Verified share \\SERWERAD\sysvol
......................... SERWERAD passed test NetLogons
Starting test: ObjectsReplicated
SERWERAD is in domain DC=przyklad,DC=pl
Checking for CN=SERWERAD,OU=Domain
Controllers,DC=przyklad,DC=pl in
domain DC=przyklad,DC=pl on 1 servers
Object is up-to-date on all servers.
Checking for CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN
=Configuration,DC=przyklad,DC=pl
in domain CN=Configuration,DC=przyklad,DC=pl on 1 servers
Object is up-to-date on all servers.
......................... SERWERAD passed test
ObjectsReplicated
Test omitted by user request: OutboundSecureChannels
Starting test: Replications
* Replications Check
* Replication Latency Check
DC=ForestDnsZones,DC=przyklad,DC=pl
Latency information for 2 entries in the vector were
ignored.
2 were retired Invocations. 0 were either:
read-only
replicas and are not verifiably latent, or dc's no longer replicating
this
nc. 0 had no latency information (Win2K DC).
DC=DomainDnsZones,DC=przyklad,DC=pl
Latency information for 2 entries in the vector were
ignored.
2 were retired Invocations. 0 were either:
read-only
replicas and are not verifiably latent, or dc's no longer replicating
this
nc. 0 had no latency information (Win2K DC).
CN=Schema,CN=Configuration,DC=przyklad,DC=pl
Latency information for 2 entries in the vector were
ignored.
2 were retired Invocations. 0 were either:
read-only
replicas and are not verifiably latent, or dc's no longer replicating
this
nc. 0 had no latency information (Win2K DC).
CN=Configuration,DC=przyklad,DC=pl
Latency information for 2 entries in the vector were
ignored.
2 were retired Invocations. 0 were either:
read-only
replicas and are not verifiably latent, or dc's no longer replicating
this
nc. 0 had no latency information (Win2K DC).
DC=przyklad,DC=pl
Latency information for 2 entries in the vector were
ignored.
2 were retired Invocations. 0 were either:
read-only
replicas and are not verifiably latent, or dc's no longer replicating
this
nc. 0 had no latency information (Win2K DC).
......................... SERWERAD passed test Replications
Starting test: RidManager
* Available RID Pool for the Domain is 2600 to 1073741823
* serwerAD.przyklad.pl is the RID Master
* DsBind with RID Master was successful
* rIDAllocationPool is 2100 to 2599
* rIDPreviousAllocationPool is 2100 to 2599
* rIDNextRID: 2102
......................... SERWERAD passed test RidManager
Starting test: Services
* Checking Service: EventSystem
* Checking Service: RpcSs
* Checking Service: NTDS
* Checking Service: DnsCache
* Checking Service: DFSR
* Checking Service: IsmServ
* Checking Service: kdc
* Checking Service: SamSs
* Checking Service: LanmanServer
* Checking Service: LanmanWorkstation
* Checking Service: w32time
* Checking Service: NETLOGON
......................... SERWERAD passed test Services
Starting test: SystemLog
* The System Event log test
Found no errors in "System" Event log in the last 60 minutes.
......................... SERWERAD passed test SystemLog
Test omitted by user request: Topology
Test omitted by user request: VerifyEnterpriseReferences
Starting test: VerifyReferences
The system object reference (serverReference)
CN=SERWERAD,OU=Domain Controllers,DC=przyklad,DC=pl and
backlink on
CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configur
ation,DC=przyklad,DC=pl
are correct.
The system object reference (serverReferenceBL)
CN=SERWERAD,CN=Topology,CN=Domain System
Volume,CN=DFSR-GlobalSettings,CN=System,DC=przyklad,DC=pl
and backlink on
CN=NTDS
Settings,CN=SERWERAD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN
=Configuration,DC=przyklad,DC=pl
are correct.
......................... SERWERAD passed test
VerifyReferences
Test omitted by user request: VerifyReplicas
Test omitted by user request: DNS
Test omitted by user request: DNS
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test
CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test
CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test
CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test
CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test
CrossRefValidation
Running partition tests on : przyklad
Starting test: CheckSDRefDom
......................... przyklad passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... przyklad passed test
CrossRefValidation
Running enterprise tests on : przyklad.pl
Test omitted by user request: DNS
Test omitted by user request: DNS
Starting test: LocatorCheck
GC Name: \\serwerAD.przyklad.pl
Locator Flags: 0xe00013fd
PDC Name: \\serwerAD.przyklad.pl
Locator Flags: 0xe00013fd
Time Server Name: \\serwerAD.przyklad.pl
Locator Flags: 0xe00013fd
Preferred Time Server Name: \\serwerAD.przyklad.pl
Locator Flags: 0xe00013fd
KDC Name: \\serwerAD.przyklad.pl
Locator Flags: 0xe00013fd
......................... przyklad.pl passed test
LocatorCheck
Starting test: Intersite
Skipping site Default-First-Site-Name, this site is outside
the scope
provided by the command line arguments provided.
......................... przyklad.pl passed test Intersite"
I've checked all the records in the DNS and there are no problematic
entries.
I don't have netdiag (I've installed Win2k3 Resource Kit, but it isn't
there
also, as (I think) it's a native tool for Windows 2003 and older).
As for net start... there may be language problem. I'm using English
version
of Windows with Polish MUI package. I've changed my lang. back to
English,
but all the service names are in Polish. If you really need it - I can
translate it to English but it will take a few moments.
Event Viewer: aside from some random applications (3rd party, not
related to the AD) crash logs, there's nothing special. Only this:
http://www.eventid.net/display.asp?eventid=6006&eventno=8895&source=Wi
nlogon&phase=1
Best regards,
Marek
"Meinolf Weber [MVP-DS]" wrote:
Hello marek1712,
Nice to hear that something changed, but still you should be able to
add domain groups also. Did you try with a self created group instead
of using domain users?
Also as Ace requested earlier an ouptut from the different commands
would be fine.
Best regards
Meinolf Weber
.
- Follow-Ups:
- Re: "Domain does not exist Or could not be contacted"?
- From: marek1712
- Re: "Domain does not exist Or could not be contacted"?
- References:
- Re: "Domain does not exist Or could not be contacted"?
- From: marek1712
- Re: "Domain does not exist Or could not be contacted"?
- Prev by Date: Re: SPAM
- Next by Date: Can't start CA after move
- Previous by thread: Re: "Domain does not exist Or could not be contacted"?
- Next by thread: Re: "Domain does not exist Or could not be contacted"?
- Index(es):
Relevant Pages
|
