Re: how do i move primary DC from one machine to another

At first I though this was a DNS issue, then I read down through the dcdiag
and thought, "maybe not". Then I saw the last two lines.
Test omitted by user request: DNS
Test omitted by user request: DNS

Check DNS. Point it back to the first DNS server. I think DNS has some
problems.

--
--------
Hope It Helps!

dw

_______________________________
Don Wilwol
Distributed Application Technologies.
dwilwol(DELETE)@datbusiness.com
http://spaces.msn.com/members/wilwol/
www.datbusieness.com
www.skyphere.com

"Ron" <jfkfjdsarewureow@xxxxxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:%23hahsuuaGHA.4340@xxxxxxxxxxxxxxxxxxxxxxx
Here is DCDIAG /v result (I ran this command on the new DC that's supposed
to replace the old one):

---------------------------------------------------
Domain Controller Diagnosis

Performing initial setup:
* Verifying that the local machine WIN2003DC, is a DC.
* Connecting to directory service on server WIN2003DC.
* Collecting site info.
* Identifying all servers.
* Identifying all NC cross-refs.
* Found 2 DC(s). Testing 1 of them.
Done gathering initial info.

Doing initial required tests

Testing server: Default-First-Site-Name\WIN2003DC
Starting test: Connectivity
* Active Directory LDAP Services Check
* Active Directory RPC Services Check
......................... WIN2003DC passed test Connectivity

Doing primary tests

Testing server: Default-First-Site-Name\WIN2003DC
Starting test: Replications
* Replications Check
* Replication Latency Check
CN=Schema,CN=Configuration,DC=testdomain,DC=com
Latency information for 1 entries in the vector were
ignored.
1 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
CN=Configuration,DC=testdomain,DC=com
Latency information for 1 entries in the vector were
ignored.
1 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
DC=testdomain,DC=com
Latency information for 1 entries in the vector were
ignored.
1 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
* Replication Site Latency Check
......................... WIN2003DC passed test Replications
Test omitted by user request: Topology
Test omitted by user request: CutoffServers
Starting test: NCSecDesc
* Security Permissions check for all NC's on DC WIN2003DC.
* Security Permissions Check for
DC=DomainDnsZones,DC=testdomain,DC=com
(NDNC,Version 2)
* Security Permissions Check for
DC=ForestDnsZones,DC=testdomain,DC=com
(NDNC,Version 2)
* Security Permissions Check for
CN=Schema,CN=Configuration,DC=testdomain,DC=com
(Schema,Version 2)
* Security Permissions Check for
CN=Configuration,DC=testdomain,DC=com
(Configuration,Version 2)
* Security Permissions Check for
DC=testdomain,DC=com
(Domain,Version 2)
......................... WIN2003DC passed test NCSecDesc
Starting test: NetLogons
* Network Logons Privileges Check
Verified share \\WIN2003DC\netlogon
Verified share \\WIN2003DC\sysvol
......................... WIN2003DC passed test NetLogons
Starting test: Advertising
The DC WIN2003DC is advertising itself as a DC and having a DS.
The DC WIN2003DC is advertising as an LDAP server
The DC WIN2003DC is advertising as having a writeable directory
The DC WIN2003DC is advertising as a Key Distribution Center
The DC WIN2003DC is advertising as a time server
The DS WIN2003DC is advertising as a GC.
......................... WIN2003DC passed test Advertising
Starting test: KnowsOfRoleHolders
Role Schema Owner = CN=NTDS
Settings,CN=WIN2003DC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Conf
iguration,DC=testdomain,DC=com
Role Domain Owner = CN=NTDS
Settings,CN=WIN2003DC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Conf
iguration,DC=testdomain,DC=com
Role PDC Owner = CN=NTDS
Settings,CN=WIN2003DC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Conf
iguration,DC=testdomain,DC=com
Role Rid Owner = CN=NTDS
Settings,CN=WIN2003DC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Conf
iguration,DC=testdomain,DC=com
Role Infrastructure Update Owner = CN=NTDS
Settings,CN=WIN2003DC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Conf
iguration,DC=testdomain,DC=com
......................... WIN2003DC passed test KnowsOfRoleHolders
Starting test: RidManager
* Available RID Pool for the Domain is 2998 to 1073741823
* WIN2003DC.testdomain.com is the RID Master
* DsBind with RID Master was successful
* rIDAllocationPool is 2498 to 2997
* rIDPreviousAllocationPool is 2498 to 2997
* rIDNextRID: 2498
......................... WIN2003DC passed test RidManager
Starting test: MachineAccount
Checking machine account for DC WIN2003DC on DC WIN2003DC.
* SPN found :LDAP/WIN2003DC.testdomain.com/testdomain.com
* SPN found :LDAP/WIN2003DC.testdomain.com
* SPN found :LDAP/WIN2003DC
* SPN found :LDAP/WIN2003DC.testdomain.com/NTDOMAIN
* SPN found
:LDAP/72743634-863b-4d06-97b2-1c0d8d7096f7._msdcs.testdomain.com
* SPN found
:E3514235-4B06-11D1-AB04-00C04FC2DCD2/72743634-863b-4d06-97b2-1c0d8d7096f7/t
estdomain.com
* SPN found :HOST/WIN2003DC.testdomain.com/testdomain.com
* SPN found :HOST/WIN2003DC.testdomain.com
* SPN found :HOST/WIN2003DC
* SPN found :HOST/WIN2003DC.testdomain.com/NTDOMAIN
* SPN found :GC/WIN2003DC.testdomain.com/testdomain.com
......................... WIN2003DC passed test MachineAccount
Starting test: Services
* Checking Service: Dnscache
* Checking Service: NtFrs
* Checking Service: IsmServ
* Checking Service: kdc
* Checking Service: SamSs
* Checking Service: LanmanServer
* Checking Service: LanmanWorkstation
* Checking Service: RpcSs
* Checking Service: w32time
* Checking Service: NETLOGON
......................... WIN2003DC passed test Services
Test omitted by user request: OutboundSecureChannels
Starting test: ObjectsReplicated
WIN2003DC is in domain DC=testdomain,DC=com
Checking for CN=WIN2003DC,OU=Domain
Controllers,DC=testdomain,DC=com in domain DC=testdomain,DC=com on 1
servers
Object is up-to-date on all servers.
Checking for CN=NTDS
Settings,CN=WIN2003DC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Conf
iguration,DC=testdomain,DC=com in domain
CN=Configuration,DC=testdomain,DC=com on 1 servers
Object is up-to-date on all servers.
......................... WIN2003DC passed test ObjectsReplicated
Starting test: frssysvol
* The File Replication Service SYSVOL ready test
File Replication Service's SYSVOL is ready
......................... WIN2003DC passed test frssysvol
Starting test: frsevent
* The File Replication Service Event log test
......................... WIN2003DC passed test frsevent
Starting test: kccevent
* The KCC Event log test
Found no KCC errors in Directory Service Event log in the last 15
minutes.
......................... WIN2003DC passed test kccevent
Starting test: systemlog
* The System Event log test
Found no errors in System Event log in the last 60 minutes.
......................... WIN2003DC passed test systemlog
Test omitted by user request: VerifyReplicas
Starting test: VerifyReferences
The system object reference (serverReference)

CN=WIN2003DC,OU=Domain Controllers,DC=testdomain,DC=com and
backlink

on


CN=WIN2003DC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration
,DC=testdomain,DC=com

are correct.
The system object reference (frsComputerReferenceBL)

CN=WIN2003DC,CN=Domain System Volume (SYSVOL share),CN=File
Replication Service,CN=System,DC=testdomain,DC=com

and backlink on

CN=WIN2003DC,OU=Domain Controllers,DC=testdomain,DC=com are
correct.
The system object reference (serverReferenceBL)

CN=WIN2003DC,CN=Domain System Volume (SYSVOL share),CN=File
Replication Service,CN=System,DC=testdomain,DC=com

and backlink on

CN=NTDS
Settings,CN=WIN2003DC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Conf
iguration,DC=testdomain,DC=com

are correct.
......................... WIN2003DC passed test VerifyReferences
Test omitted by user request: VerifyEnterpriseReferences
Test omitted by user request: CheckSecurityError

Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom

Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom

Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom

Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom

Running partition tests on : testdomain
Starting test: CrossRefValidation
......................... testdomain passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... testdomain passed test CheckSDRefDom

Running enterprise tests on : testdomain.com
Starting test: Intersite
Skipping site Default-First-Site-Name, this site is outside the
scope

provided by the command line arguments provided.
......................... testdomain.com passed test Intersite
Starting test: FsmoCheck
GC Name: \\WIN2003DC.testdomain.com
Locator Flags: 0xe00003fd
PDC Name: \\WIN2003DC.testdomain.com
Locator Flags: 0xe00003fd
Time Server Name: \\WIN2003DC.testdomain.com
Locator Flags: 0xe00003fd
Preferred Time Server Name: \\WIN2003DC.testdomain.com
Locator Flags: 0xe00003fd
KDC Name: \\WIN2003DC.testdomain.com
Locator Flags: 0xe00003fd
......................... testdomain.com passed test FsmoCheck
Test omitted by user request: DNS
Test omitted by user request: DNS
---------------------------------------------------

Thanks much.




.

Relevant Pages

  • Re: SBS 2003 and Replication Errors with Remote DC
    ... alpha server as soon as you can to get things going. ... A simple DNS replication test is to create a host record in the SBS server ... Domain Controller Diagnosis ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS 2003 and Replication Errors with Remote DC
    ... I did make the changes that you suggested on the DNS of my alpha server and rebooted. ... I did run the simple DNS test that you suggested by adding a host record to my SBS server. ... A simple DNS replication test is to create a host record in the SBS server and wait till it shows up in the remote server. ...
    (microsoft.public.windows.server.sbs)
  • Re: how do i move primary DC from one machine to another
    ... Unfortunately I can't point it back to the first DNS server because ... Test omitted by user request: ... Replication Latency Check ...
    (microsoft.public.windows.server.general)
  • Re: error 8254 DNS Lookup failure
    ... FYI, I repointed the DNS to one server, deleted the contents of _MSDCS ... > in the same site, Replication has been fine up until yesterday, the ... > Starting test: CrossRefValidation ...
    (microsoft.public.win2000.dns)
  • Re: NTDS Replication Event ID 1083/1955
    ... I ran netdom query fsmo on all domains, dcdiag /v on two DCs, and ipconfig ... Connecting to directory service on server S1. ... Test omitted by user request: ... The File Replication Service SYSVOL ready test ...
    (microsoft.public.windows.server.active_directory)
Loading