Re: Cannot Browse the Domain in the Network Neighborhood

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

Joshua,

Might try using ldifde to dump the information to try and find it..

ldifde -f ldifde.txt -t 3268 -d "dc=rootdomain,dc=com" -l
serviceprincipalname -r
"(serviceprincipalname=HOST/MACHINENAME*)" -p subtree

Explanation of command
-f lfid.txt: is the output file the command creates
-t 3268: causes the command to connect to a GC
-d "forest root DN": use the forest root DN here
-l serviceprincipalname: lists only the SPN values of the objects
-r "(serviceprincipalname=HOST/MACHINENAME*)": This is exactly how you want
to
enter it. This will search for any and all SPN's that start with HOST/...
-p subtree: searches all the domain NC's from the root down.


--

Hope that helps,
David Copeland
Microsoft Small Business Server Support

This posting is provided "AS IS" with no warranties, and confers no rights.

Newsgroups:
SBS v4.x : microsoft.public.backoffice.smallbiz
SBS 2000: microsoft.public.backoffice.smallbiz2000
SBS 2003: microsoft.public.windows.server.sbs


"Joshua @ UDA" <JoshuaUDA@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:2E54AC6F-7CD2-492D-9A20-EABDA5CDA570@xxxxxxxxxxxxxxxx
> David,
>
> The error is indeed KDC error 11 and I appreicate the link. I had
> previously attempted using those tools but to no avail. I cannot find
> duplicate SPN's listed where the event log's say they should be.
>
> For instance, it indicates that there are duplicate SPN's that begin with
> a
> 'cifs', however after using the tools in that knowledgebase article, not
> only
> can I not find duplicate SPN's that begin with cifs, I can't find one.
> Also
> one of the alleged duplicate SPN's is the name of my domain controller.
>
> There weren't any other domain controllers when this controller crashed.
> So
> we just recreated the domain.
>
> "David Copeland [MSFT]" wrote:
>
>> Joshua,
>>
>> With respect to WINS and the owner being the other nic's IP address, one
>> of
>> the things I would have checked would have been the binding order of the
>> nics in Control Panel/Network Connections/Advanced/Advanced Settings menu
>> to
>> see which nic was listed first, then after a reboot.
>>
>> With respect to the KDC errors are you referring to KDC event id 11's?
>> If
>> so, then you might want to take a look at the following article to find
>> the
>> duplicate SPN..
>>
>>
>> http://support.microsoft.com/default.aspx?scid=kb;en-us;321044
>>
>> As far as the re-installation part even using the same domain name etc..
>> shouldn't cause duplicate SPN's in and of itself since technically they
>> are
>> new domains based on their domain SIDs. Are there any other replica
>> DC's
>> that were apart of the domain before re-installing it?
>>
>>
>> --
>>
>> Hope that helps,
>> David Copeland
>> Microsoft Small Business Server Support
>>
>> This posting is provided "AS IS" with no warranties, and confers no
>> rights.
>>
>> Newsgroups:
>> SBS v4.x : microsoft.public.backoffice.smallbiz
>> SBS 2000: microsoft.public.backoffice.smallbiz2000
>> SBS 2003: microsoft.public.windows.server.sbs
>>
>>
>> "Joshua @ UDA" <JoshuaUDA@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
>> news:5C8C7F8C-61B8-46F0-81F0-8CF1CA9F55D2@xxxxxxxxxxxxxxxx
>> > David,
>> >
>> > Thank you very much for the information. I removed the network card
>> > and
>> > successfully removed the extra IP address for the Domain Master Browser
>> > in
>> > the WINS server. Apparently the second nic's IP address was given
>> > ownership
>> > of all the WINS records before and that disabled the network browsing
>> > capabilities in My Network Places. I'm no expert so I couldn't explain
>> > exactly why it happened or why it caused the problem.
>> >
>> > Thanks again for your help. The other posts that I've viewed are
>> > leap-frog
>> > conversations that seem to lead nowhere.
>> >
>> > I do have another question and will post it seperately as well as here.
>> > We
>> > recently had a disaster recovery situation where I had to recreate the
>> > domain
>> > here at our office. The domain was in a test phase and no backups were
>> > considered useable. This system is not mission critical and so a
>> > reinstall
>> > was the faster option over Domain Recovery tools. When I recreated the
>> > domain, I gave it the same name as the previously existing domain
>> > before
>> > the
>> > domain controller crashed. Since then I have had random KDC errors
>> > talking
>> > about duplicate service principal names. My question is whether or not
>> > it
>> > is
>> > bad practice to replace one domain controller (and domain) with another
>> > of
>> > the same name. Hopefully some of that made sense. Anyway thanks
>> > again.
>> >
>> > Joshua
>> >
>> > ""David Copeland [MSFT]"" wrote:
>> >
>> >> Joshua,
>> >>
>> >> You should be able to show a list of the records in the WINS database
>> >> (via
>> >> the WINS mmc) and then right click on the domainname[1B] entry and
>> >> select
>> >> Delete. Then from a command prompt you should be able to run
>> >> nbtstat -RR
>> >> to have the server re-register it's NetBIOS names.. Then check to see
>> >> if
>> >> it
>> >> comes back.. If you're not able to delete the one entry you could
>> >> also
>> >> do
>> >> a Delete Owner by right clicking on Server Registrations.. This would
>> >> delete all of the entres from the WINS database for this owner.. So,
>> >> on
>> >> the
>> >> server you would want to run the nbtstat -RR (if not reboot, if there
>> >> are
>> >> other 3rd party apps that may need to register their NetBIOS names)
>> >> and
>> >> then either wait or reboot the clients for them to re-register.
>> >>
>> >> --
>> >>
>> >> Hope that helps,
>> >> David Copeland
>> >> Microsoft Small Business Server Support
>> >>
>> >> This posting is provided "AS IS" with no warranties, and confers no
>> >> rights.
>> >>
>> >> Newsgroups:
>> >> SBS v4.x : microsoft.public.backoffice.smallbiz
>> >> SBS 2000: microsoft.public.backoffice.smallbiz2000
>> >> SBS 2003: microsoft.public.windows.server.sbs
>> >>
>> >>
>>
>>
>>


.

Relevant Pages

  • Re: Cannot Browse the Domain in the Network Neighborhood
    ... duplicate SPN's listed where the event log's say they should be. ... one of the alleged duplicate SPN's is the name of my domain controller. ... > With respect to the KDC errors are you referring to KDC event id 11's? ... >>> Microsoft Small Business Server Support ...
    (microsoft.public.windows.server.sbs)
  • INSERT INTO Not working correctly
    ... I have a command button that does a "Copy" but more of a INSERT INTO command ... Dim strSql As String 'SQL statement. ... 'Make sure there is a record to duplicate. ... !PhaseComplDateReqPlan = Me.PhaseComplDateReqPlan ...
    (microsoft.public.access.formscoding)
  • Re: problem with short date
    ... You say you want to add a "Duplicate record" command but you get an error ... Doug Steele, Microsoft Access MVP ...
    (microsoft.public.access.forms)
  • phantom drive
    ... I have the same problem I believe it was caused by drag to disk I tried the mount vol command but it did not work for me but not sure I did it correctly would like to know if you find a solution ... In windows explorer I see a C: and E: harddrive. ... But E: duplicate of C: is always present on reboot. ...
    (microsoft.public.windowsxp.hardware)
  • Re: controlling cmd.exe via named pipes
    ... I use them to avoid handling named pipes directly by Windows ... 1-I create two different named pipes, say 'cmdIN' and 'cmdOUT'; ... That's the command switch that tells Cmd to run the command on the command line, and then wait for more commands. ... You can duplicate them into Cmd's process because that process doesn't exist yet. ...
    (comp.lang.pascal.delphi.misc)