|
| |||||||||
| Tags: 2008, local, logins, responding |
Sponsored Links
2008 DC Stops responding to local logins
Active Directory
 |
| | Thread Tools | Search this Thread |
|
| |||||||||
| Tags: 2008, local, logins, responding |
|
| | Thread Tools | Search this Thread |
|
#1
22-01-2009
| |||
| |||
| 2008 DC Stops responding to local logins
We have a 2008 DC that seems to lose most network connectivity, but not all, every few days. We are total 2008 environment still in 2003 functional mode. We have an empty root domain and two child domains..this DC is in the main resource child domain. When the problem occurs, our monitoring system immediately notices that it is not responding to kerberos:88 any longer. We can then not reach it via RDP and it will not accept ctrl-alt-del at the console. I can basic ping it. At a rough estimation to this point, it seems it may coincide with the heavy traffic periods...8:30am login blitz. It is a GC and does normally show significant connections from an exchange server under normal conditions. Our campus environment is forced to use a BIND DNS implementation for the SRV records. Although, I get numerous errors logged from this, it essentially works most of the time, and the SRV records are always there. It does however muddy up the error logs making problem resolution more difficult. I'm pasting a verbose output of the dcdiag below. I've seen errors 1188 (DS RPC) and 1232 around the time on at least one occasion of the problem. The DNS errors in the dcdiag output can be ignored. Our DCs cannot always reach the DNS server so routine updates sometimes fail, but they work often enough that they are always there. This section of the dcdiag errors are what puzzle me Starting test: Replications * Replications Check [Replications Check,dcontroller05] DsReplicaGetInfo(PENDING_OPS, NULL) failed, error 0x2105 "Replication access was denied." ......................... dcontroller05 failed test Replications Starting test: Services * Checking Service: EventSystem * Checking Service: RpcSs * Checking Service: NTDS Could not open NTDS Service on dcontroller05, error 0x5 "Access is denied." Full OUTPUT Directory Server Diagnosis Performing initial setup: Trying to find home server... * Verifying that the local machine dcontroller05, is a Directory Server. Home Server = dcontroller05 snip .... * Found 13 DC(s). Testing 1 of them. Done gathering initial info. Doing initial required tests Testing server: universityCampus\dcontroller05 Starting test: Connectivity * Active Directory LDAP Services Check Determining IP4 connectivity * Active Directory RPC Services Check ......................... dcontroller05 passed test Connectivity Doing primary tests Testing server: universityCampus\dcontroller05 Starting test: Advertising The DC dcontroller05 is advertising itself as a DC and having a DS. The DC dcontroller05 is advertising as an LDAP server The DC dcontroller05 is advertising as having a writeable directory The DC dcontroller05 is advertising as a Key Distribution Center The DC dcontroller05 is advertising as a time server The DS dcontroller05 is advertising as a GC. ......................... dcontroller05 passed test Advertising Starting test: CheckSecurityError * Dr Auth: Beginning security errors check! Found KDC dcontroller05 for domain campus.university.edu in site universityCampus Checking machine account for DC dcontroller05 on DC dcontroller05. * SPN found :LDAP/dcontroller05.campus.university.edu/campus.university.edu * SPN found :LDAP/dcontroller05.campus.university.edu * SPN found :LDAP/dcontroller05 * SPN found :LDAP/dcontroller05.campus.university.edu/CAMPUS * SPN found :LDAP/3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu * SPN found :E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cca744e-246b-476c-a1c1-b4d3893981d1/campus.university.edu * SPN found :HOST/dcontroller05.campus.university.edu/campus.university.edu * SPN found :HOST/dcontroller05.campus.university.edu * SPN found :HOST/dcontroller05 * SPN found :HOST/dcontroller05.campus.university.edu/CAMPUS * SPN found :GC/dcontroller05.campus.university.edu/ad.university.edu [dcontroller05] DsReplicaGetInfo(KCC_DS_CONNECT_FAILURES) failed with error 8453, Replication access was denied.. [dcontroller05] Unable to query the list of KCC connection failures. Continuing... [dcontroller05] No security related replication errors were found on this DC! To target the connection to a specific source DC use /ReplSource:<DC>. ......................... dcontroller05 passed test CheckSecurityError Starting test: CutoffServers * Configuration Topology Aliveness Check * Analyzing the alive system replication topology for DC=campus,DC=university,DC=edu. * Performing upstream (of target) analysis. * Performing downstream (of target) analysis. * Analyzing the alive system replication topology for CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu. * Performing upstream (of target) analysis. * Performing downstream (of target) analysis. * Analyzing the alive system replication topology for CN=Configuration,dc=ad,DC=university,DC=edu. * Performing upstream (of target) analysis. * Performing downstream (of target) analysis. * Analyzing the alive system replication topology for DC=Biology,dc=ad,DC=university,DC=edu. * Performing upstream (of target) analysis. * Performing downstream (of target) analysis. * Analyzing the alive system replication topology for dc=ad,DC=university,DC=edu. * Performing upstream (of target) analysis. * Performing downstream (of target) analysis. ......................... dcontroller05 passed test CutoffServers Starting test: FrsEvent * The File Replication Service Event log test There are warning or error events within the last 24 hours after the SYSVOL has been shared. Failing SYSVOL replication problems may cause Group Policy problems. An Warning Event occurred. EventID: 0x800034C8 Time Generated: 01/20/2009 09:39:50 Event String: ......................... dcontroller05 passed test FrsEvent Starting test: DFSREvent The DFS Replication Event Log. ......................... dcontroller05 passed test DFSREvent Starting test: SysVolCheck * The File Replication Service SYSVOL ready test File Replication Service's SYSVOL is ready ......................... dcontroller05 passed test SysVolCheck Starting test: FrsSysVol * The File Replication Service SYSVOL ready test File Replication Service's SYSVOL is ready ......................... dcontroller05 passed test FrsSysVol Starting test: KccEvent * The KCC Event log test Found no KCC errors in "Directory Service" Event log in the last 15 minutes. ......................... dcontroller05 passed test KccEvent Starting test: KnowsOfRoleHolders Role Schema Owner = CN=NTDS Settings,CN=dcontroller01,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu Role Domain Owner = CN=NTDS Settings,CN=dcontroller01,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu Role PDC Owner = CN=NTDS Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu Role Rid Owner = CN=NTDS Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu Role Infrastructure Update Owner = CN=NTDS Settings,CN=dcontroller03,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu ......................... dcontroller05 passed test KnowsOfRoleHolders Starting test: MachineAccount Checking machine account for DC dcontroller05 on DC dcontroller05. * SPN found :LDAP/dcontroller05.campus.university.edu/campus.university.edu * SPN found :LDAP/dcontroller05.campus.university.edu * SPN found :LDAP/dcontroller05 * SPN found :LDAP/dcontroller05.campus.university.edu/CAMPUS * SPN found :LDAP/3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu * SPN found :E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cca744e-246b-476c-a1c1-b4d3893981d1/campus.university.edu * SPN found :HOST/dcontroller05.campus.university.edu/campus.university.edu * SPN found :HOST/dcontroller05.campus.university.edu * SPN found :HOST/dcontroller05 * SPN found :HOST/dcontroller05.campus.university.edu/CAMPUS * SPN found :GC/dcontroller05.campus.university.edu/ad.university.edu ......................... dcontroller05 passed test MachineAccount Starting test: NCSecDesc * Security Permissions check for all NC's on DC dcontroller05. * Security Permissions Check for DC=campus,DC=university,DC=edu (Domain,Version 3) * Security Permissions Check for CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu (Schema,Version 3) * Security Permissions Check for CN=Configuration,dc=ad,DC=university,DC=edu (Configuration,Version 3) * Security Permissions Check for DC=Biology,dc=ad,DC=university,DC=edu (Domain,Version 3) * Security Permissions Check for dc=ad,DC=university,DC=edu (Domain,Version 3) ......................... dcontroller05 passed test NCSecDesc Starting test: NetLogons * Network Logons Privileges Check Verified share \\dcontroller05\netlogon Verified share \\dcontroller05\sysvol [dcontroller05] User credentials does not have permission to perform this operation. The account used for this test must have network logon privileges for this machine's domain. ......................... dcontroller05 failed test NetLogons Starting test: ObjectsReplicated dcontroller05 is in domain DC=campus,DC=university,DC=edu Checking for CN=dcontroller05,OU=Domain Controllers,DC=campus,DC=university,DC=edu in domain DC=campus,DC=university,DC=edu on 1 servers Object is up-to-date on all servers. Checking for CN=NTDS Settings,CN=dcontroller05,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu in domain CN=Configuration,dc=ad,DC=university,DC=edu on 1 servers Object is up-to-date on all servers. ......................... dcontroller05 passed test ObjectsReplicated Starting test: OutboundSecureChannels * The Outbound Secure Channels test ** Did not run Outbound Secure Channels test because /testdomain: was not entered ......................... dcontroller05 passed test OutboundSecureChannels Starting test: Replications * Replications Check [Replications Check,dcontroller05] DsReplicaGetInfo(PENDING_OPS, NULL) failed, error 0x2105 "Replication access was denied." ......................... dcontroller05 failed test Replications Starting test: RidManager * Available RID Pool for the Domain is 763104 to 1073741823 * dcontroller04.campus.university.edu is the RID Master * DsBind with RID Master was successful * rIDAllocationPool is 761604 to 762103 * rIDPreviousAllocationPool is 761604 to 762103 * rIDNextRID: 761614 ......................... dcontroller05 passed test RidManager Starting test: Services * Checking Service: EventSystem * Checking Service: RpcSs * Checking Service: NTDS Could not open NTDS Service on dcontroller05, error 0x5 "Access is denied." * Checking Service: DnsCache * Checking Service: NtFrs * Checking Service: IsmServ * Checking Service: kdc * Checking Service: SamSs * Checking Service: LanmanServer * Checking Service: LanmanWorkstation * Checking Service: w32time * Checking Service: NETLOGON ......................... dcontroller05 failed test Services Starting test: SystemLog * The System Event log test An Warning Event occurred. EventID: 0x825A0081 Time Generated: 01/20/2009 09:31:29 Event String: NtpClient was unable to set a domain peer to use as a time source because of discovery error. The error was: The RPC server is too busy to complete this operation. (0x800706BB) Time Generated: 01/20/2009 09:54:28 Event String: Logon cache was disabled. Intermittent authentication failures may result during periods of network latency or interrupts. An Warning Event occurred. EventID: 0x80000434 Time Generated: 01/20/2009 09:55:12 Event String: Reason Code: 0xa000000 Problem ID: Bugcheck String: Comment: Had to power cycle from hang An Error Event occurred. EventID: 0xC0002719 Time Generated: 01/20/2009 10:18:21 Event String: DCOM was unable to communicate with the computer 192.168.136.9 using any of the configured protocols. An Error Event occurred. EventID: 0xC0002719 Time Generated: 01/20/2009 10:18:27 Event String: DCOM was unable to communicate with the computer 192.168.136.9 using any of the configured protocols. An Error Event occurred. EventID: 0xC0002719 Time Generated: 01/20/2009 10:18:40 Event String: DCOM was unable to communicate with the computer 192.168.206.12 using any of the configured protocols. An Error Event occurred. EventID: 0xC0002719 Time Generated: 01/20/2009 10:18:53 Event String: DCOM was unable to communicate with the computer 192.168.206.12 using any of the configured protocols. An Error Event occurred. EventID: 0xC0002719 Time Generated: 01/20/2009 10:18:54 Event String: DCOM was unable to communicate with the computer 192.168.136.12 using any of the configured protocols. An Error Event occurred. EventID: 0xC0002719 Time Generated: 01/20/2009 10:19:01 Event String: DCOM was unable to communicate with the computer 192.168.136.12 using any of the configured protocols. An Error Event occurred. EventID: 0xC0002719 Time Generated: 01/20/2009 10:19:07 Event String: DCOM was unable to communicate with the computer 192.168.206.9 using any of the configured protocols. An Error Event occurred. EventID: 0xC0002719 Time Generated: 01/20/2009 10:19:20 Event String: DCOM was unable to communicate with the computer 192.168.206.9 using any of the configured protocols. ......................... dcontroller05 failed test SystemLog Starting test: Topology * Configuration Topology Integrity Check * Analyzing the connection topology for DC=campus,DC=university,DC=edu. * Performing upstream (of target) analysis. * Performing downstream (of target) analysis. * Analyzing the connection topology for CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu. * Performing upstream (of target) analysis. * Performing downstream (of target) analysis. * Analyzing the connection topology for CN=Configuration,dc=ad,DC=university,DC=edu. * Performing upstream (of target) analysis. * Performing downstream (of target) analysis. * Analyzing the connection topology for DC=Biology,dc=ad,DC=university,DC=edu. * Performing upstream (of target) analysis. * Performing downstream (of target) analysis. * Analyzing the connection topology for dc=ad,DC=university,DC=edu. * Performing upstream (of target) analysis. * Performing downstream (of target) analysis. ......................... dcontroller05 passed test Topology Starting test: VerifyEnterpriseReferences ......................... dcontroller05 passed test VerifyEnterpriseReferences Starting test: VerifyReferences The system object reference (serverReference) CN=dcontroller05,OU=Domain Controllers,DC=campus,DC=university,DC=edu and backlink on CN=dcontroller05,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=university,DC=edu are correct. The system object reference (serverReferenceBL) CN=dcontroller05,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=campus,DC=university,DC=edu and backlink on CN=NTDS Settings,CN=dcontroller05,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu are correct. ......................... dcontroller05 passed test VerifyReferences Starting test: VerifyReplicas ......................... dcontroller05 passed test VerifyReplicas Starting test: DNS DNS Tests are running and not hung. Please wait a few minutes... See DNS test in enterprise tests section for results ......................... dcontroller05 passed test DNS Running partition tests on : campus Starting test: CheckSDRefDom ......................... campus passed test CheckSDRefDom Starting test: CrossRefValidation ......................... campus passed test CrossRefValidation Running partition tests on : Schema Starting test: CheckSDRefDom ......................... Schema passed test CheckSDRefDom Starting test: CrossRefValidation ......................... Schema passed test CrossRefValidation Running partition tests on : Configuration Starting test: CheckSDRefDom ......................... Configuration passed test CheckSDRefDom Starting test: CrossRefValidation ......................... Configuration passed test CrossRefValidation Running enterprise tests on : ad.university.edu Starting test: DNS Test results for domain controllers: DC: dcontroller05.campus.university.edu Domain: campus.university.edu TEST: Authentication (Auth) Authentication test: Successfully completed TEST: Basic (Basc) Microsoftr Windows Serverr 2008 Standard (Service Pack level: 1.0) is supported NETLOGON service is running kdc service is running DNSCACHE service is running DNS service is running DC is not a DNS server Network adapters information: Adapter [00000006] Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client): MAC address is 00:1E:C9:50:3C:5F IP address: 10.10.215.234 DNS servers: 192.168.136.9 (<name unavailable>) [Valid] 192.168.206.12 (<name unavailable>) [Valid] 192.168.136.12 (<name unavailable>) [Valid] 192.168.206.9 (<name unavailable>) [Valid] The A host record(s) for this DC was found The SOA record for the Active Directory zone was found TEST: Records registration (RReg) Network Adapter [00000006] Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client): Matching CNAME record found at DNS server 192.168.136.9: 3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu Matching A record found at DNS server 192.168.136.9: dcontroller05.campus.university.edu Matching SRV record found at DNS server 192.168.136.9: _ldap._tcp.campus.university.edu Matching SRV record found at DNS server 192.168.136.9: _ldap._tcp.6274ac2e-e65e-4ae8-a371-c13cadb6a0b4.domains._msdcs.ad.university.edu Matching SRV record found at DNS server 192.168.136.9: _kerberos._tcp.dc._msdcs.campus.university.edu Matching SRV record found at DNS server 192.168.136.9: _ldap._tcp.dc._msdcs.campus.university.edu Matching SRV record found at DNS server 192.168.136.9: _kerberos._tcp.campus.university.edu Matching SRV record found at DNS server 192.168.136.9: _kerberos._udp.campus.university.edu Matching SRV record found at DNS server 192.168.136.9: _kpasswd._tcp.campus.university.edu Matching SRV record found at DNS server 192.168.136.9: _ldap._tcp.universityCampus._sites.campus.university.edu .... snip .... Matching SRV record found at DNS server 192.168.136.9: _ldap._tcp.gc._msdcs.ad.university.edu Matching A record found at DNS server 192.168.136.9: gc._msdcs.ad.university.edu Matching SRV record found at DNS server 192.168.136.9: _gc._tcp.universityCampus._sites.ad.university.edu Matching SRV record found at DNS server 192.168.136.9: _ldap._tcp.universityCampus._sites.gc._msdcs.ad.university.edu Matching CNAME record found at DNS server 192.168.206.12: 3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu Matching A record found at DNS server 192.168.206.12: dcontroller05.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _ldap._tcp.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _ldap._tcp.6274ac2e-e65e-4ae8-a371-c13cadb6a0b4.domains._msdcs.ad.university.edu Matching SRV record found at DNS server 192.168.206.12: _kerberos._tcp.dc._msdcs.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _ldap._tcp.dc._msdcs.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _kerberos._tcp.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _kerberos._udp.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _kpasswd._tcp.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _ldap._tcp.universityCampus._sites.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _kerberos._tcp.universityCampus._sites.dc._msdcs.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _ldap._tcp.universityCampus._sites.dc._msdcs.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _kerberos._tcp.universityCampus._sites.campus.university.edu Matching SRV record found at DNS server 192.168.206.12: _ldap._tcp.gc._msdcs.ad.university.edu Matching A record found at DNS server 192.168.206.12: gc._msdcs.ad.university.edu .... snip .... Matching SRV record found at DNS server 192.168.136.12: _ldap._tcp.gc._msdcs.ad.university.edu Matching A record found at DNS server 192.168.136.12: gc._msdcs.ad.university.edu Matching SRV record found at DNS server 192.168.136.12: _gc._tcp.universityCampus._sites.ad.university.edu Matching SRV record found at DNS server 192.168.136.12: _ldap._tcp.universityCampus._sites.gc._msdcs.ad.university.edu Matching CNAME record found at DNS server 192.168.206.9: 3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu Matching A record found at DNS server 192.168.206.9: dcontroller05.campus.university.edu Matching SRV record found at DNS server 192.168.206.9: _ldap._tcp.campus.university.edu Matching SRV record found at DNS server 192.168.206.9: _ldap._tcp.6274ac2e-e65e-4ae8-a371-c13cadb6a0b4.domains._msdcs.ad.university.edu .... snip .... Matching SRV record found at DNS server 192.168.206.9: _ldap._tcp.universityCampus._sites.gc._msdcs.ad.university.edu Summary of test results for DNS servers used by the above domain controllers: DNS server: 192.168.136.12 (<name unavailable>) All tests passed on this DNS server Name resolution is functional._ldap._tcp SRV record for the forest root domain is registered DNS server: 192.168.136.9 (<name unavailable>) All tests passed on this DNS server Name resolution is functional._ldap._tcp SRV record for the forest root domain is registered DNS server: 192.168.206.12 (<name unavailable>) All tests passed on this DNS server Name resolution is functional._ldap._tcp SRV record for the forest root domain is registered DNS server: 192.168.206.9 (<name unavailable>) All tests passed on this DNS server Name resolution is functional._ldap._tcp SRV record for the forest root domain is registered Summary of DNS test results: Auth Basc Forw Del Dyn RReg Ext _________________________________________________________________ Domain: campus.university.edu dcontroller05 PASS PASS n/a n/a n/a PASS n/a ......................... ad.university.edu passed test DNS Starting test: LocatorCheck GC Name: \\dcontroller05.campus.university.edu Locator Flags: 0xe00011fc PDC Name: \\dcontroller04.campus.university.edu Locator Flags: 0xe00011fd Time Server Name: \\dcontroller05.campus.university.edu Locator Flags: 0xe00011fc Preferred Time Server Name: \\dcontroller05.campus.university.edu Locator Flags: 0xe00011fc KDC Name: \\dcontroller05.campus.university.edu Locator Flags: 0xe00011fc ......................... ad.university.edu passed test LocatorCheck Starting test: FsmoCheck GC Name: \\dcontroller05.campus.university.edu Locator Flags: 0xe00011fc PDC Name: \\dcontroller04.campus.university.edu Locator Flags: 0xe00011fd Time Server Name: \\dcontroller05.campus.university.edu Locator Flags: 0xe00011fc Preferred Time Server Name: \\dcontroller05.campus.university.edu Locator Flags: 0xe00011fc KDC Name: \\dcontroller05.campus.university.edu Locator Flags: 0xe00011fc ......................... ad.university.edu passed test FsmoCheck  |
|
#2
22-01-2009
| |||
| |||
| Re: 2008 DC Stops responding to local logins
Hello forrestsjs, Is that the only DC with problems? AD relies on DNS and it must have always a DNS server reachable, you state that is not the case? Is the firewall disabled or at least opened for all ports a DC has to have open? http://support.microsoft.com/kb/555381 Please post an unedited ipconfig /all from the problem DC and one correct running DC. Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights. ** Please do NOT email, only reply to Newsgroups ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm > We have a 2008 DC that seems to lose most network connectivity, but > not all, every few days. We are total 2008 environment still in 2003 > functional mode. We have an empty root domain and two child > domains..this DC is in the main resource child domain. > > When the problem occurs, our monitoring system immediately notices > that it is not responding to kerberos:88 any longer. We can then not > reach it via RDP and it will not accept ctrl-alt-del at the console. I > can basic ping it. At a rough estimation to this point, it seems it > may coincide with the heavy traffic periods...8:30am login blitz. It > is a GC and does normally show significant connections from an > exchange server under normal conditions. > > Our campus environment is forced to use a BIND DNS implementation for > the SRV records. Although, I get numerous errors logged from this, it > essentially works most of the time, and the SRV records are always > there. It does however muddy up the error logs making problem > resolution more difficult. I'm pasting a verbose output of the dcdiag > below. I've seen errors 1188 (DS RPC) and 1232 around the time on at > least one occasion of the problem. The DNS errors in the dcdiag output > can be ignored. Our DCs cannot always reach the DNS server so routine > updates sometimes fail, but they work often enough that they are > always there. > > This section of the dcdiag errors are what puzzle me > > Starting test: Replications > > * Replications Check > [Replications Check,dcontroller05] > DsReplicaGetInfo(PENDING_OPS, > NULL) > failed, error 0x2105 "Replication access was denied." > > ......................... dcontroller05 failed test > Replications > > Starting test: Services > > * Checking Service: EventSystem > * Checking Service: RpcSs > * Checking Service: NTDS > Could not open NTDS Service on dcontroller05, error 0x5 > "Access is denied." > > Full OUTPUT > > Directory Server Diagnosis > > Performing initial setup: > > Trying to find home server... > > * Verifying that the local machine dcontroller05, is a Directory > Server. > Home Server = dcontroller05 > snip > ... > * Found 13 DC(s). Testing 1 of them. > > Done gathering initial info. > > Doing initial required tests > > Testing server: universityCampus\dcontroller05 > > Starting test: Connectivity > > * Active Directory LDAP Services Check > Determining IP4 connectivity > * Active Directory RPC Services Check > ......................... dcontroller05 passed test > Connectivity > Doing primary tests > > Testing server: universityCampus\dcontroller05 > > Starting test: Advertising > > The DC dcontroller05 is advertising itself as a DC and having > a DS. > The DC dcontroller05 is advertising as an LDAP server > The DC dcontroller05 is advertising as having a writeable > directory > The DC dcontroller05 is advertising as a Key Distribution > Center > The DC dcontroller05 is advertising as a time server > The DS dcontroller05 is advertising as a GC. > ......................... dcontroller05 passed test > Advertising > Starting test: CheckSecurityError > > * Dr Auth: Beginning security errors check! > Found KDC dcontroller05 for domain campus.university.edu in > site > universityCampus > Checking machine account for DC dcontroller05 on DC > dcontroller05. > * SPN found > :LDAP/dcontroller05.campus.university.edu/campus.university.edu > * SPN found :LDAP/dcontroller05.campus.university.edu > * SPN found :LDAP/dcontroller05 > * SPN found :LDAP/dcontroller05.campus.university.edu/CAMPUS > * SPN found > :LDAP/3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > * SPN found > :E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cca744e-246b-476c-a1c1-b4d38939 > 81d1/campus.university.edu > * SPN found > :HOST/dcontroller05.campus.university.edu/campus.university.edu > * SPN found :HOST/dcontroller05.campus.university.edu > * SPN found :HOST/dcontroller05 > * SPN found :HOST/dcontroller05.campus.university.edu/CAMPUS > * SPN found > :GC/dcontroller05.campus.university.edu/ad.university.edu > [dcontroller05] DsReplicaGetInfo(KCC_DS_CONNECT_FAILURES) > failed > with > error 8453, > > Replication access was denied.. > [dcontroller05] Unable to query the list of KCC connection > failures. > Continuing... > > [dcontroller05] No security related replication errors were > found on this > > DC! To target the connection to a specific source DC use > > /ReplSource:<DC>. > > ......................... dcontroller05 passed test > CheckSecurityError > > Starting test: CutoffServers > > * Configuration Topology Aliveness Check > * Analyzing the alive system replication topology for > DC=campus,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the alive system replication topology for > CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the alive system replication topology for > CN=Configuration,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the alive system replication topology for > DC=Biology,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the alive system replication topology for > dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > ......................... dcontroller05 passed test > CutoffServers > Starting test: FrsEvent > > * The File Replication Service Event log test > There are warning or error events within the last 24 hours > after the > SYSVOL has been shared. Failing SYSVOL replication problems > may cause > > Group Policy problems. > An Warning Event occurred. EventID: 0x800034C8 > Time Generated: 01/20/2009 09:39:50 > > Event String: > > ......................... dcontroller05 passed test FrsEvent > > Starting test: DFSREvent > > The DFS Replication Event Log. > ......................... dcontroller05 passed test DFSREvent > Starting test: SysVolCheck > > * The File Replication Service SYSVOL ready test > File Replication Service's SYSVOL is ready > ......................... dcontroller05 passed test > SysVolCheck > Starting test: FrsSysVol > > * The File Replication Service SYSVOL ready test > File Replication Service's SYSVOL is ready > ......................... dcontroller05 passed test FrsSysVol > Starting test: KccEvent > > * The KCC Event log test > Found no KCC errors in "Directory Service" Event log in the > last 15 > minutes. > ......................... dcontroller05 passed test KccEvent > Starting test: KnowsOfRoleHolders > > Role Schema Owner = CN=NTDS > Settings,CN=dcontroller01,CN=Servers,CN=universityCampus,CN=Sites,CN=C > onfiguration,dc=ad,DC=university,DC=edu > Role Domain Owner = CN=NTDS > Settings,CN=dcontroller01,CN=Servers,CN=universityCampus,CN=Sites,CN=C > onfiguration,dc=ad,DC=university,DC=edu > Role PDC Owner = CN=NTDS > Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=C > onfiguration,dc=ad,DC=university,DC=edu > Role Rid Owner = CN=NTDS > Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=C > onfiguration,dc=ad,DC=university,DC=edu > Role Infrastructure Update Owner = CN=NTDS > Settings,CN=dcontroller03,CN=Servers,CN=universityCampus,CN=Sites,CN=C > onfiguration,dc=ad,DC=university,DC=edu > ......................... dcontroller05 passed test > KnowsOfRoleHolders > Starting test: MachineAccount > > Checking machine account for DC dcontroller05 on DC > dcontroller05. > * SPN found > :LDAP/dcontroller05.campus.university.edu/campus.university.edu > * SPN found :LDAP/dcontroller05.campus.university.edu > * SPN found :LDAP/dcontroller05 > * SPN found :LDAP/dcontroller05.campus.university.edu/CAMPUS > * SPN found > :LDAP/3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > * SPN found > :E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cca744e-246b-476c-a1c1-b4d38939 > 81d1/campus.university.edu > * SPN found > :HOST/dcontroller05.campus.university.edu/campus.university.edu > * SPN found :HOST/dcontroller05.campus.university.edu > * SPN found :HOST/dcontroller05 > * SPN found :HOST/dcontroller05.campus.university.edu/CAMPUS > * SPN found > :GC/dcontroller05.campus.university.edu/ad.university.edu > ......................... dcontroller05 passed test > MachineAccount > Starting test: NCSecDesc > > * Security Permissions check for all NC's on DC > dcontroller05. > * Security Permissions Check for > DC=campus,DC=university,DC=edu > (Domain,Version 3) > * Security Permissions Check for > CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu > (Schema,Version 3) > * Security Permissions Check for > CN=Configuration,dc=ad,DC=university,DC=edu > (Configuration,Version 3) > * Security Permissions Check for > DC=Biology,dc=ad,DC=university,DC=edu > (Domain,Version 3) > * Security Permissions Check for > dc=ad,DC=university,DC=edu > (Domain,Version 3) > ......................... dcontroller05 passed test NCSecDesc > Starting test: NetLogons > > * Network Logons Privileges Check > Verified share \\dcontroller05\netlogon > Verified share \\dcontroller05\sysvol > [dcontroller05] User credentials does not have permission to > perform this > operation. > > The account used for this test must have network logon > privileges > > for this machine's domain. > > ......................... dcontroller05 failed test NetLogons > > Starting test: ObjectsReplicated > > dcontroller05 is in domain DC=campus,DC=university,DC=edu > Checking for CN=dcontroller05,OU=Domain > Controllers,DC=campus,DC=university,DC=edu in domain > DC=campus,DC=university,DC=edu on 1 servers > Object is up-to-date on all servers. > Checking for CN=NTDS > Settings,CN=dcontroller05,CN=Servers,CN=universityCampus,CN=Sites,CN=C > onfiguration,dc=ad,DC=university,DC=edu > in domain CN=Configuration,dc=ad,DC=university,DC=edu on 1 servers > Object is up-to-date on all servers. > ......................... dcontroller05 passed test > ObjectsReplicated > Starting test: OutboundSecureChannels > > * The Outbound Secure Channels test > ** Did not run Outbound Secure Channels test because > /testdomain: was > not entered > > ......................... dcontroller05 passed test > OutboundSecureChannels > > Starting test: Replications > > * Replications Check > [Replications Check,dcontroller05] > DsReplicaGetInfo(PENDING_OPS, > NULL) > failed, error 0x2105 "Replication access was denied." > > ......................... dcontroller05 failed test > Replications > > Starting test: RidManager > > * Available RID Pool for the Domain is 763104 to 1073741823 > * dcontroller04.campus.university.edu is the RID Master > * DsBind with RID Master was successful > * rIDAllocationPool is 761604 to 762103 > * rIDPreviousAllocationPool is 761604 to 762103 > * rIDNextRID: 761614 > ......................... dcontroller05 passed test > RidManager > Starting test: Services > > * Checking Service: EventSystem > * Checking Service: RpcSs > * Checking Service: NTDS > Could not open NTDS Service on dcontroller05, error 0x5 > "Access is denied." > > * Checking Service: DnsCache > * Checking Service: NtFrs > * Checking Service: IsmServ > * Checking Service: kdc > * Checking Service: SamSs > * Checking Service: LanmanServer > * Checking Service: LanmanWorkstation > * Checking Service: w32time > * Checking Service: NETLOGON > ......................... dcontroller05 failed test Services > Starting test: SystemLog > > * The System Event log test > An Warning Event occurred. EventID: 0x825A0081 > Time Generated: 01/20/2009 09:31:29 > > Event String: > > NtpClient was unable to set a domain peer to use as a time > source because of discovery error. The error was: The RPC server is > too busy > to complete this operation. (0x800706BB) > Time Generated: 01/20/2009 09:54:28 > Event String: > > Logon cache was disabled. Intermittent authentication > failures may result during periods of network latency or interrupts. > > An Warning Event occurred. EventID: 0x80000434 > > Time Generated: 01/20/2009 09:55:12 > > Event String: > > Reason Code: 0xa000000 > > Problem ID: > > Bugcheck String: > > Comment: Had to power cycle from hang > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:18:21 > > Event String: > > DCOM was unable to communicate with the computer > 192.168.136.9 using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:18:27 > > Event String: > > DCOM was unable to communicate with the computer > 192.168.136.9 using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:18:40 > > Event String: > > DCOM was unable to communicate with the computer > 192.168.206.12 using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:18:53 > > Event String: > > DCOM was unable to communicate with the computer > 192.168.206.12 using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:18:54 > > Event String: > > DCOM was unable to communicate with the computer > 192.168.136.12 using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:19:01 > > Event String: > > DCOM was unable to communicate with the computer > 192.168.136.12 using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:19:07 > > Event String: > > DCOM was unable to communicate with the computer > 192.168.206.9 using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:19:20 > > Event String: > > DCOM was unable to communicate with the computer > 192.168.206.9 using any of the configured protocols. > > ......................... dcontroller05 failed test SystemLog > > Starting test: Topology > > * Configuration Topology Integrity Check > * Analyzing the connection topology for > DC=campus,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the connection topology for > CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the connection topology for > CN=Configuration,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the connection topology for > DC=Biology,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the connection topology for > dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > ......................... dcontroller05 passed test Topology > Starting test: VerifyEnterpriseReferences > > ......................... dcontroller05 passed test > > VerifyEnterpriseReferences > > Starting test: VerifyReferences > > The system object reference (serverReference) > > CN=dcontroller05,OU=Domain > Controllers,DC=campus,DC=university,DC=edu and > > backlink on > > CN=dcontroller05,CN=Servers,CN=universityCampus,CN=Sites,CN=Configurat > ion,dc=ad,DC=university,DC=edu > > are correct. > The system object reference (serverReferenceBL) > CN=dcontroller05,CN=Domain System Volume (SYSVOL > share),CN=File Replication > Service,CN=System,DC=campus,DC=university,DC=edu > > and backlink on > > CN=NTDS > Settings,CN=dcontroller05,CN=Servers,CN=universityCampus,CN=Sites,CN=C > onfiguration,dc=ad,DC=university,DC=edu > > are correct. > ......................... dcontroller05 passed test > VerifyReferences > Starting test: VerifyReplicas > > ......................... dcontroller05 passed test > VerifyReplicas > > Starting test: DNS > > DNS Tests are running and not hung. Please wait a few > minutes... > > See DNS test in enterprise tests section for results > ......................... dcontroller05 passed test DNS > Running partition tests on : campus > > Starting test: CheckSDRefDom > > ......................... campus passed test CheckSDRefDom > > Starting test: CrossRefValidation > > ......................... campus passed test > CrossRefValidation > > Running partition tests on : Schema > > Starting test: CheckSDRefDom > > ......................... Schema passed test CheckSDRefDom > > Starting test: CrossRefValidation > > ......................... Schema passed test > CrossRefValidation > > Running partition tests on : Configuration > > Starting test: CheckSDRefDom > > ......................... Configuration passed test > CheckSDRefDom > > Starting test: CrossRefValidation > > ......................... Configuration passed test > CrossRefValidation > > Running enterprise tests on : ad.university.edu > > Starting test: DNS > > Test results for domain controllers: > > DC: dcontroller05.campus.university.edu > > Domain: campus.university.edu > > TEST: Authentication (Auth) > Authentication test: Successfully completed > TEST: Basic (Basc) > Microsoftr Windows Serverr 2008 Standard (Service > Pack > level: 1.0) > is supported > > NETLOGON service is running > > kdc service is running > > DNSCACHE service is running > > DNS service is running > > DC is not a DNS server > > Network adapters information: > > Adapter > > [00000006] Broadcom BCM5708C NetXtreme II GigE (NDIS > VBD Client): > > MAC address is 00:1E:C9:50:3C:5F > IP address: 10.10.215.234 > DNS servers: > 192.168.136.9 (<name unavailable>) [Valid] > 192.168.206.12 (<name unavailable>) [Valid] > 192.168.136.12 (<name unavailable>) [Valid] > 192.168.206.9 (<name unavailable>) [Valid] > The A host record(s) for this DC was found > The SOA record for the Active Directory zone was > found > TEST: Records registration (RReg) > Network Adapter > [00000006] Broadcom BCM5708C NetXtreme II GigE (NDIS > VBD Client): > > Matching CNAME record found at DNS server > 192.168.136.9: > > 3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > > Matching A record found at DNS server > 192.168.136.9: > dcontroller05.campus.university.edu > Matching SRV record found at DNS server > 192.168.136.9: > _ldap._tcp.campus.university.edu > Matching SRV record found at DNS server > 192.168.136.9: > > _ldap._tcp.6274ac2e-e65e-4ae8-a371-c13cadb6a0b4.domains._msdcs.ad.univ > ersity.edu > > Matching SRV record found at DNS server > 192.168.136.9: > _kerberos._tcp.dc._msdcs.campus.university.edu > Matching SRV record found at DNS server > 192.168.136.9: > _ldap._tcp.dc._msdcs.campus.university.edu > Matching SRV record found at DNS server > 192.168.136.9: > _kerberos._tcp.campus.university.edu > Matching SRV record found at DNS server > 192.168.136.9: > _kerberos._udp.campus.university.edu > Matching SRV record found at DNS server > 192.168.136.9: > _kpasswd._tcp.campus.university.edu > Matching SRV record found at DNS server > 192.168.136.9: > > _ldap._tcp.universityCampus._sites.campus.university.edu > ... > snip > ... > Matching SRV record found at DNS server > 192.168.136.9: > _ldap._tcp.gc._msdcs.ad.university.edu > Matching A record found at DNS server > 192.168.136.9: > gc._msdcs.ad.university.edu > Matching SRV record found at DNS server > 192.168.136.9: > > _gc._tcp.universityCampus._sites.ad.university.edu > Matching SRV record found at DNS server > 192.168.136.9: > > _ldap._tcp.universityCampus._sites.gc._msdcs.ad.university.edu > > Matching CNAME record found at DNS server > 192.168.206.12: > > 3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > > Matching A record found at DNS server > 192.168.206.12: > dcontroller05.campus.university.edu > Matching SRV record found at DNS server > 192.168.206.12: > _ldap._tcp.campus.university.edu > Matching SRV record found at DNS server > 192.168.206.12: > > _ldap._tcp.6274ac2e-e65e-4ae8-a371-c13cadb6a0b4.domains._msdcs.ad.univ > ersity.edu > > Matching SRV record found at DNS server > 192.168.206.12: > _kerberos._tcp.dc._msdcs.campus.university.edu > Matching SRV record found at DNS server > 192.168.206.12: > _ldap._tcp.dc._msdcs.campus.university.edu > Matching SRV record found at DNS server > 192.168.206.12: > _kerberos._tcp.campus.university.edu > Matching SRV record found at DNS server > 192.168.206.12: > _kerberos._udp.campus.university.edu > Matching SRV record found at DNS server > 192.168.206.12: > _kpasswd._tcp.campus.university.edu > Matching SRV record found at DNS server > 192.168.206.12: > > _ldap._tcp.universityCampus._sites.campus.university.edu > Matching SRV record found at DNS server > 192.168.206.12: > > _kerberos._tcp.universityCampus._sites.dc._msdcs.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > > _ldap._tcp.universityCampus._sites.dc._msdcs.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > > _kerberos._tcp.universityCampus._sites.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > _ldap._tcp.gc._msdcs.ad.university.edu > Matching A record found at DNS server > 192.168.206.12: > gc._msdcs.ad.university.edu > ... > snip > ... > Matching SRV record found at DNS server > 192.168.136.12: > _ldap._tcp.gc._msdcs.ad.university.edu > Matching A record found at DNS server > 192.168.136.12: > gc._msdcs.ad.university.edu > Matching SRV record found at DNS server > 192.168.136.12: > > _gc._tcp.universityCampus._sites.ad.university.edu > Matching SRV record found at DNS server > 192.168.136.12: > > _ldap._tcp.universityCampus._sites.gc._msdcs.ad.university.edu > > Matching CNAME record found at DNS server > 192.168.206.9: > > 3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > > Matching A record found at DNS server > 192.168.206.9: > dcontroller05.campus.university.edu > Matching SRV record found at DNS server > 192.168.206.9: > _ldap._tcp.campus.university.edu > Matching SRV record found at DNS server > 192.168.206.9: > > _ldap._tcp.6274ac2e-e65e-4ae8-a371-c13cadb6a0b4.domains._msdcs.ad.univ > ersity.edu > > ... > snip > ... > Matching SRV record found at DNS server > 192.168.206.9: > > _ldap._tcp.universityCampus._sites.gc._msdcs.ad.university.edu > > Summary of test results for DNS servers used by the above > domain > > controllers: > > DNS server: 192.168.136.12 (<name unavailable>) > > All tests passed on this DNS server > > Name resolution is functional._ldap._tcp SRV record for > the forest root domain is registered > > DNS server: 192.168.136.9 (<name unavailable>) > > All tests passed on this DNS server > > Name resolution is functional._ldap._tcp SRV record for > the forest root domain is registered > > DNS server: 192.168.206.12 (<name unavailable>) > > All tests passed on this DNS server > > Name resolution is functional._ldap._tcp SRV record for > the forest root domain is registered > > DNS server: 192.168.206.9 (<name unavailable>) > > All tests passed on this DNS server > > Name resolution is functional._ldap._tcp SRV record for > the forest root domain is registered > > Summary of DNS test results: > > Auth Basc Forw Del Dyn > RReg Ext > > _________________________________________________________________ > Domain: campus.university.edu > dcontroller05 PASS PASS n/a n/a > n/a PASS n/a > > ......................... ad.university.edu passed test DNS > > Starting test: LocatorCheck > > GC Name: \\dcontroller05.campus.university.edu > > Locator Flags: 0xe00011fc > PDC Name: \\dcontroller04.campus.university.edu > Locator Flags: 0xe00011fd > Time Server Name: \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > Preferred Time Server Name: > \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > KDC Name: \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > ......................... ad.university.edu passed test > LocatorCheck > Starting test: FsmoCheck > > GC Name: \\dcontroller05.campus.university.edu > > Locator Flags: 0xe00011fc > PDC Name: \\dcontroller04.campus.university.edu > Locator Flags: 0xe00011fd > Time Server Name: \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > Preferred Time Server Name: > \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > KDC Name: \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > ......................... ad.university.edu passed test > FsmoCheck |
|
#3
22-01-2009
| |||
| |||
| Re: 2008 DC Stops responding to local logins
Hi Meinolf, Yes this is the only DC of 10 total that has the issue. Yes, it has DNS connectivity, however, the mechanism that allows it to UPDATE DDNS is intermittent, causing occasional errors in the logs, but the SRV records do always exist and can be reached. Our DCs just fail maybe 2 of 3 times that they might try to update their SRV records which never generally need updating anyway. Yes our firewall rules allow it to connect and another DC is working fine in the same network location as part of the empty root domain. The server seems to be working fine, then perhaps during heavy utilization stops listening on port 88 at least and stops allowing local logins. It does however seem to be authenticating users perhaps via NTLMv2 during these "hangs." I'm posting some IPConfig below, but it doesn't really show much...the "working one below" is not the other root domain in this same location, but really all of our dcs have the same basic setup. repladmin /showrepl is all clean across domains/dc except for an error at the end of the output DsReplicaGetInfo() failed with status 8453 (0x2105): Replication access was denied. DsReplicaGetInfo() failed with status 8453 (0x2105): Replication access was denied. Thanks, Forrrest THIS ONE HANGS Windows IP Configuration Host Name . . . . . . . . . . . . : dcontroller05 Primary Dns Suffix . . . . . . . : campus.university.edu Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : campus.university.edu university.edu Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : campus.university.edu Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client) Physical Address. . . . . . . . . : 00-1E-C9-50-3C-52 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes IPv4 Address. . . . . . . . . . . : 192.168.215.234(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.240 Default Gateway . . . . . . . . . : 192.168.215.225 DNS Servers . . . . . . . . . . . : 192.168.136.9 192.168.206.12 192.168.136.12 192.168.206.9 NetBIOS over Tcpip. . . . . . . . : Disabled THIS ONE IS WORKING FINE **************************************************************************************************** Windows IP Configuration Host Name . . . . . . . . . . . . : dcontroller07 Primary Dns Suffix . . . . . . . : campus.university.edu Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : campus.university.edu university.edu Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : campus.university.edu Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client) Physical Address. . . . . . . . . : 00-1E-C9-50-3C-42 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes IPv4 Address. . . . . . . . . . . : 192.168.70.195(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.70.1 DNS Servers . . . . . . . . . . . : 192.168.136.9 192.168.206.9 192.168.136.12 192.168.206.12 NetBIOS over Tcpip. . . . . . . . : Enabled "Meinolf Weber [MVP-DS]" wrote: > Hello forrestsjs, > > Is that the only DC with problems? AD relies on DNS and it must have always > a DNS server reachable, you state that is not the case? Is the firewall disabled > or at least opened for all ports a DC has to have open? > http://support.microsoft.com/kb/555381 > > Please post an unedited ipconfig /all from the problem DC and one correct > running DC. > > Best regards > > Meinolf Weber > Disclaimer: This posting is provided "AS IS" with no warranties, and confers > no rights. > ** Please do NOT email, only reply to Newsgroups > ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm > > > > We have a 2008 DC that seems to lose most network connectivity, but > > not all, every few days. We are total 2008 environment still in 2003 > > functional mode. We have an empty root domain and two child > > domains..this DC is in the main resource child domain. > > > > When the problem occurs, our monitoring system immediately notices > > that it is not responding to kerberos:88 any longer. We can then not > > reach it via RDP and it will not accept ctrl-alt-del at the console. I > > can basic ping it. At a rough estimation to this point, it seems it > > may coincide with the heavy traffic periods...8:30am login blitz. It > > is a GC and does normally show significant connections from an > > exchange server under normal conditions. > > > > Our campus environment is forced to use a BIND DNS implementation for > > the SRV records. Although, I get numerous errors logged from this, it > > essentially works most of the time, and the SRV records are always > > there. It does however muddy up the error logs making problem > > resolution more difficult. I'm pasting a verbose output of the dcdiag > > below. I've seen errors 1188 (DS RPC) and 1232 around the time on at > > least one occasion of the problem. The DNS errors in the dcdiag output > > can be ignored. Our DCs cannot always reach the DNS server so routine > > updates sometimes fail, but they work often enough that they are > > always there. > > > > This section of the dcdiag errors are what puzzle me > > > > Starting test: Replications > > > > * Replications Check > > [Replications Check,dcontroller05] > > DsReplicaGetInfo(PENDING_OPS, > > NULL) > > failed, error 0x2105 "Replication access was denied." > > > > ......................... dcontroller05 failed test > > Replications > > > > Starting test: Services > > > > * Checking Service: EventSystem > > * Checking Service: RpcSs > > * Checking Service: NTDS > > Could not open NTDS Service on dcontroller05, error 0x5 > > "Access is denied." > > > > Full OUTPUT > > > > Directory Server Diagnosis > > > > Performing initial setup: > > > > Trying to find home server... > > > > * Verifying that the local machine dcontroller05, is a Directory > > Server. > > Home Server = dcontroller05 > > snip > > ... > > * Found 13 DC(s). Testing 1 of them. > > > > Done gathering initial info. > > > > Doing initial required tests > > > > Testing server: universityCampus\dcontroller05 > > > > Starting test: Connectivity > > > > * Active Directory LDAP Services Check > > Determining IP4 connectivity > > * Active Directory RPC Services Check > > ......................... dcontroller05 passed test > > Connectivity > > Doing primary tests > > > > Testing server: universityCampus\dcontroller05 > > > > Starting test: Advertising > > > > The DC dcontroller05 is advertising itself as a DC and having > > a DS. > > The DC dcontroller05 is advertising as an LDAP server > > The DC dcontroller05 is advertising as having a writeable > > directory > > The DC dcontroller05 is advertising as a Key Distribution > > Center > > The DC dcontroller05 is advertising as a time server > > The DS dcontroller05 is advertising as a GC. > > ......................... dcontroller05 passed test > > Advertising > > Starting test: CheckSecurityError > > > > * Dr Auth: Beginning security errors check! > > Found KDC dcontroller05 for domain campus.university.edu in > > site > > universityCampus > > Checking machine account for DC dcontroller05 on DC > > dcontroller05. > > * SPN found > > :LDAP/dcontroller05.campus.university.edu/campus.university.edu > > * SPN found :LDAP/dcontroller05.campus.university.edu > > * SPN found :LDAP/dcontroller05 > > * SPN found :LDAP/dcontroller05.campus.university.edu/CAMPUS > > * SPN found > > :LDAP/3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > > * SPN found > > :E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cca744e-246b-476c-a1c1-b4d38939 > > 81d1/campus.university.edu > > * SPN found > > :HOST/dcontroller05.campus.university.edu/campus.university.edu > > * SPN found :HOST/dcontroller05.campus.university.edu > > * SPN found :HOST/dcontroller05 > > * SPN found :HOST/dcontroller05.campus.university.edu/CAMPUS > > * SPN found > > :GC/dcontroller05.campus.university.edu/ad.university.edu > > [dcontroller05] DsReplicaGetInfo(KCC_DS_CONNECT_FAILURES) > > failed > > with > > error 8453, > > > > Replication access was denied.. > > [dcontroller05] Unable to query the list of KCC connection > > failures. > > Continuing... > > > > [dcontroller05] No security related replication errors were > > found on this > > > > DC! To target the connection to a specific source DC use > > > > /ReplSource:<DC>. > > > > ......................... dcontroller05 passed test > > CheckSecurityError > > > > Starting test: CutoffServers > > > > * Configuration Topology Aliveness Check > > * Analyzing the alive system replication topology for > > DC=campus,DC=university,DC=edu. > > * Performing upstream (of target) analysis. > > * Performing downstream (of target) analysis. > > * Analyzing the alive system replication topology for > > CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu. > > * Performing upstream (of target) analysis. > > * Performing downstream (of target) analysis. > > * Analyzing the alive system replication topology for > > CN=Configuration,dc=ad,DC=university,DC=edu. > > * Performing upstream (of target) analysis. > > * Performing downstream (of target) analysis. > > * Analyzing the alive system replication topology for > > DC=Biology,dc=ad,DC=university,DC=edu. > > * Performing upstream (of target) analysis. > > * Performing downstream (of target) analysis. > > * Analyzing the alive system replication topology for > > dc=ad,DC=university,DC=edu. > > * Performing upstream (of target) analysis. > > * Performing downstream (of target) analysis. > > ......................... dcontroller05 passed test > > CutoffServers > > Starting test: FrsEvent > > > > * The File Replication Service Event log test > > There are warning or error events within the last 24 hours > > after the > > SYSVOL has been shared. Failing SYSVOL replication problems > > may cause > > > > Group Policy problems. > > An Warning Event occurred. EventID: 0x800034C8 > > Time Generated: 01/20/2009 09:39:50 > > > > Event String: > > > > ......................... dcontroller05 passed test FrsEvent > > > > Starting test: DFSREvent > > > > The DFS Replication Event Log. > > ......................... dcontroller05 passed test DFSREvent > > Starting test: SysVolCheck > > > > * The File Replication Service SYSVOL ready test > > File Replication Service's SYSVOL is ready > > ......................... dcontroller05 passed test > > SysVolCheck > > Starting test: FrsSysVol > > > > * The File Replication Service SYSVOL ready test > > File Replication Service's SYSVOL is ready > > ......................... dcontroller05 passed test FrsSysVol > > Starting test: KccEvent > > > > * The KCC Event log test > > Found no KCC errors in "Directory Service" Event log in the > > last 15 > > minutes. > > ......................... dcontroller05 passed test KccEvent > > Starting test: KnowsOfRoleHolders > > > > Role Schema Owner = CN=NTDS > > Settings,CN=dcontroller01,CN=Servers,CN=universityCampus,CN=Sites,CN=C > > onfiguration,dc=ad,DC=university,DC=edu > > Role Domain Owner = CN=NTDS > > Settings,CN=dcontroller01,CN=Servers,CN=universityCampus,CN=Sites,CN=C > > onfiguration,dc=ad,DC=university,DC=edu > > Role PDC Owner = CN=NTDS > > Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=C > > onfiguration,dc=ad,DC=university,DC=edu > > Role Rid Owner = CN=NTDS > > Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=C > > onfiguration,dc=ad,DC=university,DC=edu > > Role Infrastructure Update Owner = CN=NTDS > > Settings,CN=dcontroller03,CN=Servers,CN=universityCampus,CN=Sites,CN=C > > onfiguration,dc=ad,DC=university,DC=edu > > ......................... dcontroller05 passed test > > KnowsOfRoleHolders > > Starting test: MachineAccount > > > > Checking machine account for DC dcontroller05 on DC > > dcontroller05. > > * SPN found > > :LDAP/dcontroller05.campus.university.edu/campus.university.edu > > * SPN found :LDAP/dcontroller05.campus.university.edu > > * SPN found :LDAP/dcontroller05 > > * SPN found :LDAP/dcontroller05.campus.university.edu/CAMPUS > > * SPN found > > :LDAP/3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > > * SPN found > > :E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cca744e-246b-476c-a1c1-b4d38939 > > 81d1/campus.university.edu > > * SPN found > > :HOST/dcontroller05.campus.university.edu/campus.university.edu > > * SPN found :HOST/dcontroller05.campus.university.edu > > * SPN found :HOST/dcontroller05 > > * SPN found :HOST/dcontroller05.campus.university.edu/CAMPUS > > * SPN found > > :GC/dcontroller05.campus.university.edu/ad.university.edu > > ......................... dcontroller05 passed test > > MachineAccount > > Starting test: NCSecDesc > > > > * Security Permissions check for all NC's on DC > > dcontroller05. > > * Security Permissions Check for > > DC=campus,DC=university,DC=edu > > (Domain,Version 3) > > * Security Permissions Check for > > CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu > > (Schema,Version 3) > > * Security Permissions Check for > > CN=Configuration,dc=ad,DC=university,DC=edu > > (Configuration,Version 3) > > * Security Permissions Check for > > DC=Biology,dc=ad,DC=university,DC=edu > > (Domain,Version 3) > > * Security Permissions Check for > > dc=ad,DC=university,DC=edu > > (Domain,Version 3) > > ......................... dcontroller05 passed test NCSecDesc > > Starting test: NetLogons > > > > * Network Logons Privileges Check > > Verified share \\dcontroller05\netlogon > > Verified share \\dcontroller05\sysvol > > [dcontroller05] User credentials does not have permission to > > perform this > > operation. > > > > The account used for this test must have network logon > > privileges > > > > for this machine's domain. > > > > ......................... dcontroller05 failed test NetLogons > > > > Starting test: ObjectsReplicated > > > > dcontroller05 is in domain DC=campus,DC=university,DC=edu > > Checking for CN=dcontroller05,OU=Domain > > Controllers,DC=campus,DC=university,DC=edu in domain |
|
#4
22-01-2009
| |||
| |||
| Re: 2008 DC Stops responding to local logins
Hello forrestsjs, Was the server installed from an image? I assume it is listed correct under the ADUC DC's OU on all DC's in the domain? Have a look on this articles, seems that the promotion does not work correct, which causes the replication problem. https://technet.microsoft.com/en-us/.../cc756638.aspx http://www.eventid.net/display.asp?e...cation&phase=1 Try resetting the secure channel(nltest is included in 2008): nltest /sc_change_pwd:yourdomain.com Then restart the server. Download PortQryUI and run the tool to make sure the firewall has all ports open. Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights. ** Please do NOT email, only reply to Newsgroups ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm > Hi Meinolf, > > Yes this is the only DC of 10 total that has the issue. Yes, it has > DNS connectivity, however, the mechanism that allows it to UPDATE DDNS > is intermittent, causing occasional errors in the logs, but the SRV > records do always exist and can be reached. Our DCs just fail maybe 2 > of 3 times that they might try to update their SRV records which never > generally need updating anyway. Yes our firewall rules allow it to > connect and another DC is working fine in the same network location as > part of the empty root domain. > > The server seems to be working fine, then perhaps during heavy > utilization stops listening on port 88 at least and stops allowing > local logins. It does however seem to be authenticating users perhaps > via NTLMv2 during these "hangs." > > I'm posting some IPConfig below, but it doesn't really show much...the > "working one below" is not the other root domain in this same > location, but really all of our dcs have the same basic setup. > > repladmin /showrepl is all clean across domains/dc except for an error > at the end of the output > > DsReplicaGetInfo() failed with status 8453 (0x2105): > Replication access was denied. > DsReplicaGetInfo() failed with status 8453 (0x2105): > Replication access was denied. > Thanks, > Forrrest > THIS ONE HANGS > > Windows IP Configuration > > Host Name . . . . . . . . . . . . : dcontroller05 > Primary Dns Suffix . . . . . . . : campus.university.edu > Node Type . . . . . . . . . . . . : Hybrid > IP Routing Enabled. . . . . . . . : No > WINS Proxy Enabled. . . . . . . . : No > DNS Suffix Search List. . . . . . : campus.university.edu > university.edu > Ethernet adapter Local Area Connection: > > Connection-specific DNS Suffix . : campus.university.edu > Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II > GigE > (NDIS VBD Client) > Physical Address. . . . . . . . . : 00-1E-C9-50-3C-52 > DHCP Enabled. . . . . . . . . . . : No > Autoconfiguration Enabled . . . . : Yes > IPv4 Address. . . . . . . . . . . : 192.168.215.234(Preferred) > Subnet Mask . . . . . . . . . . . : 255.255.255.240 > Default Gateway . . . . . . . . . : 192.168.215.225 > DNS Servers . . . . . . . . . . . : 192.168.136.9 > 192.168.206.12 > 192.168.136.12 > 192.168.206.9 > NetBIOS over Tcpip. . . . . . . . : Disabled > THIS ONE IS WORKING FINE > ********************************************************************** > ****************************** > Windows IP Configuration > > Host Name . . . . . . . . . . . . : dcontroller07 > Primary Dns Suffix . . . . . . . : campus.university.edu > Node Type . . . . . . . . . . . . : Hybrid > IP Routing Enabled. . . . . . . . : No > WINS Proxy Enabled. . . . . . . . : No > DNS Suffix Search List. . . . . . : campus.university.edu > university.edu > Ethernet adapter Local Area Connection: > > Connection-specific DNS Suffix . : campus.university.edu > Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II > GigE > (NDIS VBD Client) > Physical Address. . . . . . . . . : 00-1E-C9-50-3C-42 > DHCP Enabled. . . . . . . . . . . : No > Autoconfiguration Enabled . . . . : Yes > IPv4 Address. . . . . . . . . . . : 192.168.70.195(Preferred) > Subnet Mask . . . . . . . . . . . : 255.255.255.0 > Default Gateway . . . . . . . . . : 192.168.70.1 > DNS Servers . . . . . . . . . . . : 192.168.136.9 > 192.168.206.9 > 192.168.136.12 > 192.168.206.12 > NetBIOS over Tcpip. . . . . . . . : Enabled > "Meinolf Weber [MVP-DS]" wrote: > >> Hello forrestsjs, >> >> Is that the only DC with problems? AD relies on DNS and it must have >> always >> a DNS server reachable, you state that is not the case? Is the >> firewall disabled >> or at least opened for all ports a DC has to have open? >> http://support.microsoft.com/kb/555381 >> Please post an unedited ipconfig /all from the problem DC and one >> correct running DC. >> >> Best regards >> >> Meinolf Weber >> Disclaimer: This posting is provided "AS IS" with no warranties, and >> confers >> no rights. >> ** Please do NOT email, only reply to Newsgroups >> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm >>> We have a 2008 DC that seems to lose most network connectivity, but >>> not all, every few days. We are total 2008 environment still in 2003 >>> functional mode. We have an empty root domain and two child >>> domains..this DC is in the main resource child domain. >>> >>> When the problem occurs, our monitoring system immediately notices >>> that it is not responding to kerberos:88 any longer. We can then not >>> reach it via RDP and it will not accept ctrl-alt-del at the console. >>> I can basic ping it. At a rough estimation to this point, it seems >>> it may coincide with the heavy traffic periods...8:30am login blitz. >>> It is a GC and does normally show significant connections from an >>> exchange server under normal conditions. >>> >>> Our campus environment is forced to use a BIND DNS implementation >>> for the SRV records. Although, I get numerous errors logged from >>> this, it essentially works most of the time, and the SRV records are >>> always there. It does however muddy up the error logs making problem >>> resolution more difficult. I'm pasting a verbose output of the >>> dcdiag below. I've seen errors 1188 (DS RPC) and 1232 around the >>> time on at least one occasion of the problem. The DNS errors in the >>> dcdiag output can be ignored. Our DCs cannot always reach the DNS >>> server so routine updates sometimes fail, but they work often enough >>> that they are always there. >>> >>> This section of the dcdiag errors are what puzzle me >>> >>> Starting test: Replications >>> >>> * Replications Check >>> [Replications Check,dcontroller05] >>> DsReplicaGetInfo(PENDING_OPS, >>> NULL) >>> failed, error 0x2105 "Replication access was denied." >>> ......................... dcontroller05 failed test Replications >>> >>> Starting test: Services >>> >>> * Checking Service: EventSystem >>> * Checking Service: RpcSs >>> * Checking Service: NTDS >>> Could not open NTDS Service on dcontroller05, error 0x5 >>> "Access is denied." >>> Full OUTPUT >>> >>> Directory Server Diagnosis >>> >>> Performing initial setup: >>> >>> Trying to find home server... >>> >>> * Verifying that the local machine dcontroller05, is a Directory >>> Server. >>> Home Server = dcontroller05 >>> snip >>> ... >>> * Found 13 DC(s). Testing 1 of them. >>> Done gathering initial info. >>> >>> Doing initial required tests >>> >>> Testing server: universityCampus\dcontroller05 >>> >>> Starting test: Connectivity >>> >>> * Active Directory LDAP Services Check >>> Determining IP4 connectivity >>> * Active Directory RPC Services Check >>> ......................... dcontroller05 passed test >>> Connectivity >>> Doing primary tests >>> Testing server: universityCampus\dcontroller05 >>> >>> Starting test: Advertising >>> >>> The DC dcontroller05 is advertising itself as a DC and having >>> a DS. >>> The DC dcontroller05 is advertising as an LDAP server >>> The DC dcontroller05 is advertising as having a writeable >>> directory >>> The DC dcontroller05 is advertising as a Key Distribution >>> Center >>> The DC dcontroller05 is advertising as a time server >>> The DS dcontroller05 is advertising as a GC. >>> ......................... dcontroller05 passed test >>> Advertising >>> Starting test: CheckSecurityError >>> * Dr Auth: Beginning security errors check! >>> Found KDC dcontroller05 for domain campus.university.edu in >>> site >>> universityCampus >>> Checking machine account for DC dcontroller05 on DC >>> dcontroller05. >>> * SPN found >>> :LDAP/dcontroller05.campus.university.edu/campus.university.edu >>> * SPN found :LDAP/dcontroller05.campus.university.edu >>> * SPN found :LDAP/dcontroller05 >>> * SPN found :LDAP/dcontroller05.campus.university.edu/CAMPUS >>> * SPN found >>> :LDAP/3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu >>> * SPN found >>> :E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cca744e-246b-476c-a1c1-b4d389 >>> 39 >>> 81d1/campus.university.edu >>> * SPN found >>> :HOST/dcontroller05.campus.university.edu/campus.university.edu >>> * SPN found :HOST/dcontroller05.campus.university.edu >>> * SPN found :HOST/dcontroller05 >>> * SPN found :HOST/dcontroller05.campus.university.edu/CAMPUS >>> * SPN found >>> :GC/dcontroller05.campus.university.edu/ad.university.edu >>> [dcontroller05] DsReplicaGetInfo(KCC_DS_CONNECT_FAILURES) >>> failed >>> with >>> error 8453, >>> Replication access was denied.. >>> [dcontroller05] Unable to query the list of KCC connection >>> failures. >>> Continuing... >>> [dcontroller05] No security related replication errors were found on >>> this >>> >>> DC! To target the connection to a specific source DC use >>> >>> /ReplSource:<DC>. >>> >>> ......................... dcontroller05 passed test >>> CheckSecurityError >>> >>> Starting test: CutoffServers >>> >>> * Configuration Topology Aliveness Check >>> * Analyzing the alive system replication topology for >>> DC=campus,DC=university,DC=edu. >>> * Performing upstream (of target) analysis. >>> * Performing downstream (of target) analysis. >>> * Analyzing the alive system replication topology for >>> CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu. >>> * Performing upstream (of target) analysis. >>> * Performing downstream (of target) analysis. >>> * Analyzing the alive system replication topology for >>> CN=Configuration,dc=ad,DC=university,DC=edu. >>> * Performing upstream (of target) analysis. >>> * Performing downstream (of target) analysis. >>> * Analyzing the alive system replication topology for >>> DC=Biology,dc=ad,DC=university,DC=edu. >>> * Performing upstream (of target) analysis. >>> * Performing downstream (of target) analysis. >>> * Analyzing the alive system replication topology for >>> dc=ad,DC=university,DC=edu. >>> * Performing upstream (of target) analysis. >>> * Performing downstream (of target) analysis. >>> ......................... dcontroller05 passed test >>> CutoffServers >>> Starting test: FrsEvent >>> * The File Replication Service Event log test >>> There are warning or error events within the last 24 hours >>> after the >>> SYSVOL has been shared. Failing SYSVOL replication problems >>> may cause >>> Group Policy problems. >>> An Warning Event occurred. EventID: 0x800034C8 >>> Time Generated: 01/20/2009 09:39:50 >>> Event String: >>> >>> ......................... dcontroller05 passed test FrsEvent >>> >>> Starting test: DFSREvent >>> >>> The DFS Replication Event Log. >>> ......................... dcontroller05 passed test DFSREvent >>> Starting test: SysVolCheck >>> * The File Replication Service SYSVOL ready test >>> File Replication Service's SYSVOL is ready >>> ......................... dcontroller05 passed test >>> SysVolCheck >>> Starting test: FrsSysVol >>> * The File Replication Service SYSVOL ready test >>> File Replication Service's SYSVOL is ready >>> ......................... dcontroller05 passed test FrsSysVol >>> Starting test: KccEvent >>> * The KCC Event log test >>> Found no KCC errors in "Directory Service" Event log in the >>> last 15 >>> minutes. >>> ......................... dcontroller05 passed test KccEvent >>> Starting test: KnowsOfRoleHolders >>> Role Schema Owner = CN=NTDS >>> Settings,CN=dcontroller01,CN=Servers,CN=universityCampus,CN=Sites,CN >>> =C >>> onfiguration,dc=ad,DC=university,DC=edu >>> Role Domain Owner = CN=NTDS >>> Settings,CN=dcontroller01,CN=Servers,CN=universityCampus,CN=Sites,CN >>> =C >>> onfiguration,dc=ad,DC=university,DC=edu >>> Role PDC Owner = CN=NTDS >>> Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN >>> =C >>> onfiguration,dc=ad,DC=university,DC=edu >>> Role Rid Owner = CN=NTDS >>> Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN >>> =C >>> onfiguration,dc=ad,DC=university,DC=edu >>> Role Infrastructure Update Owner = CN=NTDS >>> Settings,CN=dcontroller03,CN=Servers,CN=universityCampus,CN=Sites,CN >>> =C >>> onfiguration,dc=ad,DC=university,DC=edu >>> ......................... dcontroller05 passed test >>> KnowsOfRoleHolders >>> Starting test: MachineAccount >>> Checking machine account for DC dcontroller05 on DC >>> dcontroller05. >>> * SPN found >>> :LDAP/dcontroller05.campus.university.edu/campus.university.edu >>> * SPN found :LDAP/dcontroller05.campus.university.edu >>> * SPN found :LDAP/dcontroller05 >>> * SPN found :LDAP/dcontroller05.campus.university.edu/CAMPUS >>> * SPN found >>> :LDAP/3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu >>> * SPN found >>> :E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cca744e-246b-476c-a1c1-b4d389 >>> 39 >>> 81d1/campus.university.edu >>> * SPN found >>> :HOST/dcontroller05.campus.university.edu/campus.university.edu >>> * SPN found :HOST/dcontroller05.campus.university.edu >>> * SPN found :HOST/dcontroller05 >>> * SPN found :HOST/dcontroller05.campus.university.edu/CAMPUS >>> * SPN found >>> :GC/dcontroller05.campus.university.edu/ad.university.edu >>> ......................... dcontroller05 passed test >>> MachineAccount >>> Starting test: NCSecDesc >>> * Security Permissions check for all NC's on DC >>> dcontroller05. >>> * Security Permissions Check for >>> DC=campus,DC=university,DC=edu >>> (Domain,Version 3) >>> * Security Permissions Check for >>> CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu >>> (Schema,Version 3) >>> * Security Permissions Check for >>> CN=Configuration,dc=ad,DC=university,DC=edu >>> (Configuration,Version 3) >>> * Security Permissions Check for >>> DC=Biology,dc=ad,DC=university,DC=edu >>> (Domain,Version 3) >>> * Security Permissions Check for >>> dc=ad,DC=university,DC=edu >>> (Domain,Version 3) >>> ......................... dcontroller05 passed test NCSecDesc >>> Starting test: NetLogons >>> * Network Logons Privileges Check >>> Verified share \\dcontroller05\netlogon >>> Verified share \\dcontroller05\sysvol >>> [dcontroller05] User credentials does not have permission to >>> perform this >>> operation. >>> The account used for this test must have network logon privileges >>> >>> for this machine's domain. >>> >>> ......................... dcontroller05 failed test NetLogons >>> >>> Starting test: ObjectsReplicated >>> >>> dcontroller05 is in domain DC=campus,DC=university,DC=edu Checking >>> for CN=dcontroller05,OU=Domain >>> Controllers,DC=campus,DC=university,DC=edu in domain >>> |
|
#5
22-01-2009
| |||
| |||
| Re: 2008 DC Stops responding to local logins
Since this is 2008, I would suggest you disable IPv6 if it hasn't been already. Also make sure this is not a multi-homed device (More than 1 nic with an ip address on your dc) Since we aren't using IPv6 at this time (In my shop) I disable all references to it as well as enable IPv4 pings Enable Pings, Firewall doesn't allow IPv4 pings Server Manager / Configuration / Windows Firewall with Advanced... / Inbound Rules Action / New Rule Select Custom Next Select All Programs Next Protocol Type = ICMPv4 Next Local Ip Address = Any Remote IP Address = Any Next Select allow the connection Next Check Domain Check Private Check Public Next Name = IPv4 Finish Network Right Click Network Places Select Manage Network Connections For each enabled and used NIC Right Click - Local Area Connection - Select Properties Networking Tab DeSelect IPv6 Close Change the Nic Provider Order Network Connections Advanced Advanced Settings Provider Order Move Microsoft Windows Networks to First -- Paul Bergson MVP - Directory Services MCTS, MCT, MCSE, MCSA, Security+, BS CSci 2008, 2003, 2000 (Early Achiever), NT4 http://www.pbbergs.com Please no e-mails, any questions should be posted in the NewsGroup This posting is provided "AS IS" with no warranties, and confers no rights. "forrestsjs" <forrestsjs@discussions.microsoft.com> wrote in message news:22E6B7B1-C7C4-42AA-B6B2-D9C825A4F5DD@microsoft.com... > We have a 2008 DC that seems to lose most network connectivity, but not > all, > every few days. We are total 2008 environment still in 2003 functional > mode. > We have an empty root domain and two child domains..this DC is in the main > resource child domain. > > When the problem occurs, our monitoring system immediately notices that it > is not responding to kerberos:88 any longer. We can then not reach it via > RDP > and it will not accept ctrl-alt-del at the console. I can basic ping it. > At a > rough estimation to this point, it seems it may coincide with the heavy > traffic periods...8:30am login blitz. It is a GC and does normally show > significant connections from an exchange server under normal conditions. > > Our campus environment is forced to use a BIND DNS implementation for the > SRV records. Although, I get numerous errors logged from this, it > essentially > works most of the time, and the SRV records are always there. It does > however > muddy up the error logs making problem resolution more difficult. I'm > pasting > a verbose output of the dcdiag below. I've seen errors 1188 (DS RPC) and > 1232 > around the time on at least one occasion of the problem. The DNS errors in > the dcdiag output can be ignored. Our DCs cannot always reach the DNS > server > so routine updates sometimes fail, but they work often enough that they > are > always there. > > This section of the dcdiag errors are what puzzle me > > Starting test: Replications > > * Replications Check > [Replications Check,dcontroller05] DsReplicaGetInfo(PENDING_OPS, > NULL) > > failed, error 0x2105 "Replication access was denied." > > ......................... dcontroller05 failed test Replications > > Starting test: Services > > * Checking Service: EventSystem > * Checking Service: RpcSs > * Checking Service: NTDS > Could not open NTDS Service on dcontroller05, error 0x5 > > "Access is denied." > > Full OUTPUT > > > Directory Server Diagnosis > > > Performing initial setup: > > Trying to find home server... > > * Verifying that the local machine dcontroller05, is a Directory Server. > Home Server = dcontroller05 > > > snip > ... > > > * Found 13 DC(s). Testing 1 of them. > > Done gathering initial info. > > > Doing initial required tests > > > Testing server: universityCampus\dcontroller05 > > Starting test: Connectivity > > * Active Directory LDAP Services Check > Determining IP4 connectivity > * Active Directory RPC Services Check > ......................... dcontroller05 passed test Connectivity > > > > Doing primary tests > > > Testing server: universityCampus\dcontroller05 > > Starting test: Advertising > > The DC dcontroller05 is advertising itself as a DC and having a > DS. > The DC dcontroller05 is advertising as an LDAP server > The DC dcontroller05 is advertising as having a writeable > directory > The DC dcontroller05 is advertising as a Key Distribution Center > The DC dcontroller05 is advertising as a time server > The DS dcontroller05 is advertising as a GC. > ......................... dcontroller05 passed test Advertising > > Starting test: CheckSecurityError > > * Dr Auth: Beginning security errors check! > Found KDC dcontroller05 for domain campus.university.edu in site > universityCampus > Checking machine account for DC dcontroller05 on DC dcontroller05. > * SPN found > :LDAP/dcontroller05.campus.university.edu/campus.university.edu > * SPN found :LDAP/dcontroller05.campus.university.edu > * SPN found :LDAP/dcontroller05 > * SPN found :LDAP/dcontroller05.campus.university.edu/CAMPUS > * SPN found > :LDAP/3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > * SPN found > :E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cca744e-246b-476c-a1c1-b4d3893981d1/campus.university.edu > * SPN found > :HOST/dcontroller05.campus.university.edu/campus.university.edu > * SPN found :HOST/dcontroller05.campus.university.edu > * SPN found :HOST/dcontroller05 > * SPN found :HOST/dcontroller05.campus.university.edu/CAMPUS > * SPN found > :GC/dcontroller05.campus.university.edu/ad.university.edu > [dcontroller05] DsReplicaGetInfo(KCC_DS_CONNECT_FAILURES) > failed > with > > error 8453, > > Replication access was denied.. > [dcontroller05] Unable to query the list of KCC connection > failures. > > Continuing... > > [dcontroller05] No security related replication errors were found > on this > > DC! To target the connection to a specific source DC use > > /ReplSource:<DC>. > > ......................... dcontroller05 passed test > CheckSecurityError > > Starting test: CutoffServers > > * Configuration Topology Aliveness Check > * Analyzing the alive system replication topology for > DC=campus,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the alive system replication topology for > CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the alive system replication topology for > CN=Configuration,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the alive system replication topology for > DC=Biology,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the alive system replication topology for > dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > ......................... dcontroller05 passed test CutoffServers > > Starting test: FrsEvent > > * The File Replication Service Event log test > There are warning or error events within the last 24 hours after > the > > SYSVOL has been shared. Failing SYSVOL replication problems may > cause > > Group Policy problems. > An Warning Event occurred. EventID: 0x800034C8 > > Time Generated: 01/20/2009 09:39:50 > > Event String: > > ......................... dcontroller05 passed test FrsEvent > > Starting test: DFSREvent > > The DFS Replication Event Log. > ......................... dcontroller05 passed test DFSREvent > > Starting test: SysVolCheck > > * The File Replication Service SYSVOL ready test > File Replication Service's SYSVOL is ready > ......................... dcontroller05 passed test SysVolCheck > > Starting test: FrsSysVol > > * The File Replication Service SYSVOL ready test > File Replication Service's SYSVOL is ready > ......................... dcontroller05 passed test FrsSysVol > > Starting test: KccEvent > > * The KCC Event log test > Found no KCC errors in "Directory Service" Event log in the last > 15 > minutes. > ......................... dcontroller05 passed test KccEvent > > Starting test: KnowsOfRoleHolders > > Role Schema Owner = CN=NTDS > Settings,CN=dcontroller01,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu > Role Domain Owner = CN=NTDS > Settings,CN=dcontroller01,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu > Role PDC Owner = CN=NTDS > Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu > Role Rid Owner = CN=NTDS > Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu > Role Infrastructure Update Owner = CN=NTDS > Settings,CN=dcontroller03,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu > ......................... dcontroller05 passed test > KnowsOfRoleHolders > > Starting test: MachineAccount > > Checking machine account for DC dcontroller05 on DC dcontroller05. > * SPN found > :LDAP/dcontroller05.campus.university.edu/campus.university.edu > * SPN found :LDAP/dcontroller05.campus.university.edu > * SPN found :LDAP/dcontroller05 > * SPN found :LDAP/dcontroller05.campus.university.edu/CAMPUS > * SPN found > :LDAP/3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > * SPN found > :E3514235-4B06-11D1-AB04-00C04FC2DCD2/3cca744e-246b-476c-a1c1-b4d3893981d1/campus.university.edu > * SPN found > :HOST/dcontroller05.campus.university.edu/campus.university.edu > * SPN found :HOST/dcontroller05.campus.university.edu > * SPN found :HOST/dcontroller05 > * SPN found :HOST/dcontroller05.campus.university.edu/CAMPUS > * SPN found > :GC/dcontroller05.campus.university.edu/ad.university.edu > ......................... dcontroller05 passed test MachineAccount > > Starting test: NCSecDesc > > * Security Permissions check for all NC's on DC dcontroller05. > * Security Permissions Check for > > DC=campus,DC=university,DC=edu > (Domain,Version 3) > * Security Permissions Check for > > CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu > (Schema,Version 3) > * Security Permissions Check for > > CN=Configuration,dc=ad,DC=university,DC=edu > (Configuration,Version 3) > * Security Permissions Check for > > DC=Biology,dc=ad,DC=university,DC=edu > (Domain,Version 3) > * Security Permissions Check for > > dc=ad,DC=university,DC=edu > (Domain,Version 3) > ......................... dcontroller05 passed test NCSecDesc > > Starting test: NetLogons > > * Network Logons Privileges Check > Verified share \\dcontroller05\netlogon > Verified share \\dcontroller05\sysvol > [dcontroller05] User credentials does not have permission to > perform this > > operation. > > The account used for this test must have network logon privileges > > for this machine's domain. > > ......................... dcontroller05 failed test NetLogons > > Starting test: ObjectsReplicated > > dcontroller05 is in domain DC=campus,DC=university,DC=edu > Checking for CN=dcontroller05,OU=Domain > Controllers,DC=campus,DC=university,DC=edu in domain > DC=campus,DC=university,DC=edu on 1 servers > Object is up-to-date on all servers. > Checking for CN=NTDS > Settings,CN=dcontroller05,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu > in domain CN=Configuration,dc=ad,DC=university,DC=edu on 1 servers > Object is up-to-date on all servers. > ......................... dcontroller05 passed test > ObjectsReplicated > > Starting test: OutboundSecureChannels > > * The Outbound Secure Channels test > ** Did not run Outbound Secure Channels test because /testdomain: > was > > not entered > > ......................... dcontroller05 passed test > OutboundSecureChannels > > Starting test: Replications > > * Replications Check > [Replications Check,dcontroller05] DsReplicaGetInfo(PENDING_OPS, > NULL) > > failed, error 0x2105 "Replication access was denied." > > ......................... dcontroller05 failed test Replications > > Starting test: RidManager > > * Available RID Pool for the Domain is 763104 to 1073741823 > * dcontroller04.campus.university.edu is the RID Master > * DsBind with RID Master was successful > * rIDAllocationPool is 761604 to 762103 > * rIDPreviousAllocationPool is 761604 to 762103 > * rIDNextRID: 761614 > ......................... dcontroller05 passed test RidManager > > Starting test: Services > > * Checking Service: EventSystem > * Checking Service: RpcSs > * Checking Service: NTDS > Could not open NTDS Service on dcontroller05, error 0x5 > > "Access is denied." > > * Checking Service: DnsCache > * Checking Service: NtFrs > * Checking Service: IsmServ > * Checking Service: kdc > * Checking Service: SamSs > * Checking Service: LanmanServer > * Checking Service: LanmanWorkstation > * Checking Service: w32time > * Checking Service: NETLOGON > ......................... dcontroller05 failed test Services > > Starting test: SystemLog > > * The System Event log test > An Warning Event occurred. EventID: 0x825A0081 > > Time Generated: 01/20/2009 09:31:29 > > Event String: > > NtpClient was unable to set a domain peer to use as a time > source because of discovery error. The error was: The RPC server is too > busy > to complete this operation. (0x800706BB) > Time Generated: 01/20/2009 09:54:28 > > Event String: > > Logon cache was disabled. Intermittent authentication failures > may result during periods of network latency or interrupts. > > An Warning Event occurred. EventID: 0x80000434 > > Time Generated: 01/20/2009 09:55:12 > > Event String: > > Reason Code: 0xa000000 > > Problem ID: > > Bugcheck String: > > Comment: Had to power cycle from hang > > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:18:21 > > Event String: > > DCOM was unable to communicate with the computer 192.168.136.9 > using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:18:27 > > Event String: > > DCOM was unable to communicate with the computer 192.168.136.9 > using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:18:40 > > Event String: > > DCOM was unable to communicate with the computer 192.168.206.12 > using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:18:53 > > Event String: > > DCOM was unable to communicate with the computer 192.168.206.12 > using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:18:54 > > Event String: > > DCOM was unable to communicate with the computer 192.168.136.12 > using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:19:01 > > Event String: > > DCOM was unable to communicate with the computer 192.168.136.12 > using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:19:07 > > Event String: > > DCOM was unable to communicate with the computer 192.168.206.9 > using any of the configured protocols. > > An Error Event occurred. EventID: 0xC0002719 > > Time Generated: 01/20/2009 10:19:20 > > Event String: > > DCOM was unable to communicate with the computer 192.168.206.9 > using any of the configured protocols. > > ......................... dcontroller05 failed test SystemLog > > Starting test: Topology > > * Configuration Topology Integrity Check > * Analyzing the connection topology for > DC=campus,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the connection topology for > CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the connection topology for > CN=Configuration,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the connection topology for > DC=Biology,dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > * Analyzing the connection topology for > dc=ad,DC=university,DC=edu. > * Performing upstream (of target) analysis. > * Performing downstream (of target) analysis. > ......................... dcontroller05 passed test Topology > > Starting test: VerifyEnterpriseReferences > > ......................... dcontroller05 passed test > > VerifyEnterpriseReferences > > Starting test: VerifyReferences > > The system object reference (serverReference) > > CN=dcontroller05,OU=Domain > Controllers,DC=campus,DC=university,DC=edu and > > backlink on > > > CN=dcontroller05,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=university,DC=edu > > are correct. > The system object reference (serverReferenceBL) > > CN=dcontroller05,CN=Domain System Volume (SYSVOL share),CN=File > Replication Service,CN=System,DC=campus,DC=university,DC=edu > > and backlink on > > CN=NTDS > Settings,CN=dcontroller05,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu > > are correct. > ......................... dcontroller05 passed test > VerifyReferences > > Starting test: VerifyReplicas > > ......................... dcontroller05 passed test VerifyReplicas > > > Starting test: DNS > > > > DNS Tests are running and not hung. Please wait a few minutes... > > See DNS test in enterprise tests section for results > ......................... dcontroller05 passed test DNS > > > Running partition tests on : campus > > Starting test: CheckSDRefDom > > ......................... campus passed test CheckSDRefDom > > Starting test: CrossRefValidation > > ......................... campus passed test CrossRefValidation > > > Running partition tests on : Schema > > Starting test: CheckSDRefDom > > ......................... Schema passed test CheckSDRefDom > > Starting test: CrossRefValidation > > ......................... Schema passed test CrossRefValidation > > > Running partition tests on : Configuration > > Starting test: CheckSDRefDom > > ......................... Configuration passed test CheckSDRefDom > > Starting test: CrossRefValidation > > ......................... Configuration passed test > CrossRefValidation > > > Running enterprise tests on : ad.university.edu > > Starting test: DNS > > Test results for domain controllers: > > > DC: dcontroller05.campus.university.edu > > Domain: campus.university.edu > > > > > TEST: Authentication (Auth) > Authentication test: Successfully completed > > TEST: Basic (Basc) > Microsoftr Windows Serverr 2008 Standard (Service Pack > level: 1.0) > > is supported > > NETLOGON service is running > > kdc service is running > > DNSCACHE service is running > > DNS service is running > > DC is not a DNS server > > Network adapters information: > > Adapter > > [00000006] Broadcom BCM5708C NetXtreme II GigE (NDIS VBD > Client): > > > > MAC address is 00:1E:C9:50:3C:5F > IP address: 10.10.215.234 > DNS servers: > > 192.168.136.9 (<name unavailable>) [Valid] > 192.168.206.12 (<name unavailable>) [Valid] > 192.168.136.12 (<name unavailable>) [Valid] > 192.168.206.9 (<name unavailable>) [Valid] > The A host record(s) for this DC was found > The SOA record for the Active Directory zone was found > > TEST: Records registration (RReg) > Network Adapter > > [00000006] Broadcom BCM5708C NetXtreme II GigE (NDIS VBD > Client): > > > > Matching CNAME record found at DNS server > 192.168.136.9: > > 3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > > Matching A record found at DNS server 192.168.136.9: > dcontroller05.campus.university.edu > > Matching SRV record found at DNS server > 192.168.136.9: > _ldap._tcp.campus.university.edu > > Matching SRV record found at DNS server > 192.168.136.9: > > _ldap._tcp.6274ac2e-e65e-4ae8-a371-c13cadb6a0b4.domains._msdcs.ad.university.edu > > Matching SRV record found at DNS server > 192.168.136.9: > _kerberos._tcp.dc._msdcs.campus.university.edu > > Matching SRV record found at DNS server > 192.168.136.9: > _ldap._tcp.dc._msdcs.campus.university.edu > > Matching SRV record found at DNS server > 192.168.136.9: > _kerberos._tcp.campus.university.edu > > Matching SRV record found at DNS server > 192.168.136.9: > _kerberos._udp.campus.university.edu > > Matching SRV record found at DNS server > 192.168.136.9: > _kpasswd._tcp.campus.university.edu > > Matching SRV record found at DNS server > 192.168.136.9: > > _ldap._tcp.universityCampus._sites.campus.university.edu > > ... > snip > ... > > Matching SRV record found at DNS server > 192.168.136.9: > _ldap._tcp.gc._msdcs.ad.university.edu > > Matching A record found at DNS server 192.168.136.9: > gc._msdcs.ad.university.edu > > Matching SRV record found at DNS server > 192.168.136.9: > _gc._tcp.universityCampus._sites.ad.university.edu > > Matching SRV record found at DNS server > 192.168.136.9: > > _ldap._tcp.universityCampus._sites.gc._msdcs.ad.university.edu > > Matching CNAME record found at DNS server > 192.168.206.12: > > 3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > > Matching A record found at DNS server 192.168.206.12: > dcontroller05.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > _ldap._tcp.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > > _ldap._tcp.6274ac2e-e65e-4ae8-a371-c13cadb6a0b4.domains._msdcs.ad.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > _kerberos._tcp.dc._msdcs.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > _ldap._tcp.dc._msdcs.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > _kerberos._tcp.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > _kerberos._udp.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > _kpasswd._tcp.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > > _ldap._tcp.universityCampus._sites.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > > _kerberos._tcp.universityCampus._sites.dc._msdcs.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > > _ldap._tcp.universityCampus._sites.dc._msdcs.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > > _kerberos._tcp.universityCampus._sites.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.12: > _ldap._tcp.gc._msdcs.ad.university.edu > > Matching A record found at DNS server 192.168.206.12: > gc._msdcs.ad.university.edu > > ... > snip > ... > > Matching SRV record found at DNS server > 192.168.136.12: > _ldap._tcp.gc._msdcs.ad.university.edu > > Matching A record found at DNS server 192.168.136.12: > gc._msdcs.ad.university.edu > > Matching SRV record found at DNS server > 192.168.136.12: > _gc._tcp.universityCampus._sites.ad.university.edu > > Matching SRV record found at DNS server > 192.168.136.12: > > _ldap._tcp.universityCampus._sites.gc._msdcs.ad.university.edu > > Matching CNAME record found at DNS server > 192.168.206.9: > > 3cca744e-246b-476c-a1c1-b4d3893981d1._msdcs.ad.university.edu > > Matching A record found at DNS server 192.168.206.9: > dcontroller05.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.9: > _ldap._tcp.campus.university.edu > > Matching SRV record found at DNS server > 192.168.206.9: > > _ldap._tcp.6274ac2e-e65e-4ae8-a371-c13cadb6a0b4.domains._msdcs.ad.university.edu > > > ... > snip > ... > > Matching SRV record found at DNS server > 192.168.206.9: > > _ldap._tcp.universityCampus._sites.gc._msdcs.ad.university.edu > > > Summary of test results for DNS servers used by the above domain > > controllers: > > > > DNS server: 192.168.136.12 (<name unavailable>) > > All tests passed on this DNS server > > Name resolution is functional._ldap._tcp SRV record for the > forest root domain is registered > > DNS server: 192.168.136.9 (<name unavailable>) > > All tests passed on this DNS server > > Name resolution is functional._ldap._tcp SRV record for the > forest root domain is registered > > DNS server: 192.168.206.12 (<name unavailable>) > > All tests passed on this DNS server > > Name resolution is functional._ldap._tcp SRV record for the > forest root domain is registered > > DNS server: 192.168.206.9 (<name unavailable>) > > All tests passed on this DNS server > > Name resolution is functional._ldap._tcp SRV record for the > forest root domain is registered > > Summary of DNS test results: > > > Auth Basc Forw Del Dyn RReg > Ext > > _________________________________________________________________ > Domain: campus.university.edu > > dcontroller05 PASS PASS n/a n/a n/a > PASS n/a > > ......................... ad.university.edu passed test DNS > > Starting test: LocatorCheck > > GC Name: \\dcontroller05.campus.university.edu > > Locator Flags: 0xe00011fc > PDC Name: \\dcontroller04.campus.university.edu > Locator Flags: 0xe00011fd > Time Server Name: \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > Preferred Time Server Name: \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > KDC Name: \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > ......................... ad.university.edu passed test > LocatorCheck > > Starting test: FsmoCheck > > GC Name: \\dcontroller05.campus.university.edu > > Locator Flags: 0xe00011fc > PDC Name: \\dcontroller04.campus.university.edu > Locator Flags: 0xe00011fd > Time Server Name: \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > Preferred Time Server Name: \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > KDC Name: \\dcontroller05.campus.university.edu > Locator Flags: 0xe00011fc > ......................... ad.university.edu passed test FsmoCheck > > |
|
#6
22-01-2009
| |||
| |||
| Re: 2008 DC Stops responding to local logins
Thanks Paul and Meinolf, I downloaded the portqueryui tool and ran that. Very useful..did not know about that tool. I ran it and I think everything is good. Again BIND DNS always clogs my output with errors, put DNS is functioning. My remote site is experiencing "switch" memory issues so I'm going to wait for resolution on that before adding more variables/changes to my config. Some blogger mentioned they had a problem with their nic and cisco auto negotiate that caused it...who knows about that. This server is a clean install, not a VM or image. I did take it off as a GC yesterday to alleviate the load on it while the network switch issue is investigated and rule out another variable. We do have IPv6 deselected..and the regkey applied that disables it...our environment doesn't support it yet...and without integrated AD DDNS on campus yet, that will be awhile. I will experiment with our provider order on the nic. It is currently SYmantec SNAC, MS Terminal, MS Win Network. I won't do that until teh switch status is determined and i renable as GC to see if the problem returns. I am pasting the portqueryoutput below which seems pretty clean from what I can tell.. I will post when I have a few more these approaches and results tested and confirmed. Thanks again, Forrest (from the problem dc to one that it has had recent issues , 1188 errors with etc.) ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 135 -p TCP ... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... TCP port 135 (epmap service): LISTENING Using ephemeral source port Querying Endpoint Mapper Database... Server's response: UUID: b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 KeyIso ncacn_ip_tcp:dcontroller04.campus.university.edu[49156] UUID: 367abb81-9844-35f1-ad32-98f038001003 ncacn_ip_tcp:dcontroller04.campus.university.edu[49736] UUID: 2f5f6521-cb55-1059-b446-00df0bce31db Unimodem LRPC Endpoint ncacn_np:dcontroller04.campus.university.edu[\\pipe\\tapsrv] UUID: f5cc59b4-4264-101a-8c59-08002b2f8426 NtFrs Service ncacn_ip_tcp:dcontroller04.campus.university.edu[49181] UUID: d049b186-814f-11d1-9a3c-00c04fc9b232 NtFrs API ncacn_ip_tcp:dcontroller04.campus.university.edu[49181] UUID: a00c021c-2be2-11d2-b678-0000f87a8f8e PERFMON SERVICE ncacn_ip_tcp:dcontroller04.campus.university.edu[49181] UUID: 3473dd4d-2e88-4006-9cba-22570909dd10 WinHttp Auto-Proxy Service ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\wkssvc] UUID: 3473dd4d-2e88-4006-9cba-22570909dd10 WinHttp Auto-Proxy Service ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\W32TIME_ALT] UUID: 1ff70682-0a51-30e8-076d-740be8cee98b ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\atsvc] UUID: 378e52b0-c0a9-11cf-822d-00aa0051e40f ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\atsvc] UUID: 86d35949-83c9-4044-b424-db363231fd0c ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\atsvc] UUID: 86d35949-83c9-4044-b424-db363231fd0c ncacn_ip_tcp:dcontroller04.campus.university.edu[49157] UUID: a398e520-d59a-4bdd-aa7a-3c1e0303a511 IKE/Authip API ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\atsvc] UUID: a398e520-d59a-4bdd-aa7a-3c1e0303a511 IKE/Authip API ncacn_ip_tcp:dcontroller04.campus.university.edu[49157] UUID: a398e520-d59a-4bdd-aa7a-3c1e0303a511 IKE/Authip API ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\srvsvc] UUID: c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 Impl friendly name ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\atsvc] UUID: c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 Impl friendly name ncacn_ip_tcp:dcontroller04.campus.university.edu[49157] UUID: c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 Impl friendly name ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\srvsvc] UUID: c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 Impl friendly name ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\ROUTER] UUID: 30b044a5-a225-43f0-b3a4-e060df91f9c1 ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\atsvc] UUID: 30b044a5-a225-43f0-b3a4-e060df91f9c1 ncacn_ip_tcp:dcontroller04.campus.university.edu[49157] UUID: 30b044a5-a225-43f0-b3a4-e060df91f9c1 ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\srvsvc] UUID: 30b044a5-a225-43f0-b3a4-e060df91f9c1 ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\ROUTER] UUID: f6beaff7-1e19-4fbb-9f8f-b89e2018337c Event log TCPIP ncacn_np:dcontroller04.campus.university.edu[\\pipe\\eventlog] UUID: f6beaff7-1e19-4fbb-9f8f-b89e2018337c Event log TCPIP ncacn_ip_tcp:dcontroller04.campus.university.edu[49153] UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 DHCP Client LRPC Endpoint ncacn_np:dcontroller04.campus.university.edu[\\pipe\\eventlog] UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 DHCP Client LRPC Endpoint ncacn_ip_tcp:dcontroller04.campus.university.edu[49153] UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 DHCPv6 Client LRPC Endpoint ncacn_np:dcontroller04.campus.university.edu[\\pipe\\eventlog] UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 DHCPv6 Client LRPC Endpoint ncacn_ip_tcp:dcontroller04.campus.university.edu[49153] UUID: 76f226c3-ec14-4325-8a99-6a46348418af ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\InitShutdown] UUID: d95afe70-a6d5-4259-822e-2c84da1ddb0d ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\InitShutdown] UUID: d95afe70-a6d5-4259-822e-2c84da1ddb0d ncacn_ip_tcp:dcontroller04.campus.university.edu[49152] UUID: c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 Impl friendly name ncacn_np:dcontroller04.campus.university.edu[\\pipe\\lsass] UUID: c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 Impl friendly name ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\protected_storage] UUID: e3514235-4b06-11d1-ab04-00c04fc2dcd2 MS NT Directory DRS Interface ncacn_np:dcontroller04.campus.university.edu[\\pipe\\lsass] UUID: e3514235-4b06-11d1-ab04-00c04fc2dcd2 MS NT Directory DRS Interface ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\protected_storage] UUID: e3514235-4b06-11d1-ab04-00c04fc2dcd2 MS NT Directory DRS Interface ncacn_ip_tcp:dcontroller04.campus.university.edu[50135] UUID: e3514235-4b06-11d1-ab04-00c04fc2dcd2 MS NT Directory DRS Interface ncacn_http:dcontroller04.campus.university.edu[49155] UUID: f5cc5a18-4264-101a-8c59-08002b2f8426 MS NT Directory NSP Interface ncacn_np:dcontroller04.campus.university.edu[\\pipe\\lsass] UUID: f5cc5a18-4264-101a-8c59-08002b2f8426 MS NT Directory NSP Interface ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\protected_storage] UUID: f5cc5a18-4264-101a-8c59-08002b2f8426 MS NT Directory NSP Interface ncacn_ip_tcp:dcontroller04.campus.university.edu[50135] UUID: f5cc5a18-4264-101a-8c59-08002b2f8426 MS NT Directory NSP Interface ncacn_http:dcontroller04.campus.university.edu[49155] UUID: 12345778-1234-abcd-ef00-0123456789ab ncacn_np:dcontroller04.campus.university.edu[\\pipe\\lsass] UUID: 12345778-1234-abcd-ef00-0123456789ab ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\protected_storage] UUID: 12345778-1234-abcd-ef00-0123456789ab ncacn_ip_tcp:dcontroller04.campus.university.edu[50135] UUID: 12345778-1234-abcd-ef00-0123456789ab ncacn_http:dcontroller04.campus.university.edu[49155] UUID: 12345778-1234-abcd-ef00-0123456789ac ncacn_np:dcontroller04.campus.university.edu[\\pipe\\lsass] UUID: 12345778-1234-abcd-ef00-0123456789ac ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\protected_storage] UUID: 12345778-1234-abcd-ef00-0123456789ac ncacn_ip_tcp:dcontroller04.campus.university.edu[50135] UUID: 12345778-1234-abcd-ef00-0123456789ac ncacn_http:dcontroller04.campus.university.edu[49155] UUID: 12345778-1234-abcd-ef00-0123456789ac ncacn_ip_tcp:dcontroller04.campus.university.edu[49156] UUID: 12345678-1234-abcd-ef00-01234567cffb ncacn_np:dcontroller04.campus.university.edu[\\pipe\\lsass] UUID: 12345678-1234-abcd-ef00-01234567cffb ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\protected_storage] UUID: 12345678-1234-abcd-ef00-01234567cffb ncacn_ip_tcp:dcontroller04.campus.university.edu[50135] UUID: 12345678-1234-abcd-ef00-01234567cffb ncacn_http:dcontroller04.campus.university.edu[49155] UUID: 12345678-1234-abcd-ef00-01234567cffb ncacn_ip_tcp:dcontroller04.campus.university.edu[49156] UUID: b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 KeyIso ncacn_np:dcontroller04.campus.university.edu[\\pipe\\lsass] UUID: b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 KeyIso ncacn_np:dcontroller04.campus.university.edu[\\PIPE\\protected_storage] UUID: b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 KeyIso ncacn_ip_tcp:dcontroller04.campus.university.edu[50135] UUID: b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 KeyIso ncacn_http:dcontroller04.campus.university.edu[49155] Total endpoints found: 60 ==== End of RPC Endpoint Mapper query response ==== portqry.exe -n dcontroller04.campus.university.edu -e 135 -p TCP exits with return code 0x00000000. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 389 -p BOTH .... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... TCP port 389 (ldap service): LISTENING Using ephemeral source port Sending LDAP query to TCP port 389... LDAP query response: currentdate: 01/22/2009 17:10:35 (unadjusted GMT) subschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,DC=ad,DC=university,DC=edu dsServiceName: CN=NTDS Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,DC=ad,DC=universi ty,DC=edu namingContexts: CN=Configuration,dc=ad,DC=university,DC=edu defaultNamingContext: DC=campus,DC=university,DC=edu schemaNamingContext: CN=Schema,CN=Configuration,DC=ad,DC=university,DC=edu configurationNamingContext: CN=Configuration,DC=ad,DC=university,DC=edu rootDomainNamingContext: DC=ad,DC=university,DC=edu supportedControl: 1.2.840.113556.1.4.319 supportedLDAPVersion: 3 supportedLDAPPolicies: MaxPoolThreads highestCommittedUSN: 38356323 supportedSASLMechanisms: GSSAPI dnsHostName: dcontroller04.campus.university.edu ldapServiceName: uc.university.edu:dcontroller04$@CAMPUS.university.EDU serverName: CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,DC=ad,DC=university,DC=edu supportedCapabilities: 1.2.840.113556.1.4.800 isSynchronized: TRUE isGlobalCatalogReady: TRUE domainFunctionality: 2 forestFunctionality: 2 domainControllerFunctionality: 3 ======== End of LDAP query response ======== UDP port 389 (unknown service): LISTENING or FILTERED Using ephemeral source port Sending LDAP query to UDP port 389... LDAP query to port 389 failed Server did not respond to LDAP query portqry.exe -n dcontroller04.campus.university.edu -e 389 -p BOTH exits with return code 0x00000001. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 636 -p TCP ... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... TCP port 636 (ldaps service): LISTENING portqry.exe -n dcontroller04.campus.university.edu -e 636 -p TCP exits with return code 0x00000000. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 3268 -p TCP .... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... TCP port 3268 (msft-gc service): LISTENING Using ephemeral source port Sending LDAP query to TCP port 3268... LDAP query response: currentdate: 01/22/2009 17:10:57 (unadjusted GMT) subschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu dsServiceName: CN=NTDS Settings,CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=universi ty,DC=edu namingContexts: CN=Configuration,dc=ad,DC=university,DC=edu defaultNamingContext: DC=campus,DC=university,DC=edu schemaNamingContext: CN=Schema,CN=Configuration,dc=ad,DC=university,DC=edu configurationNamingContext: CN=Configuration,dc=ad,DC=university,DC=edu rootDomainNamingContext: dc=ad,DC=university,DC=edu supportedControl: 1.2.840.113556.1.4.319 supportedLDAPVersion: 3 supportedLDAPPolicies: MaxPoolThreads highestCommittedUSN: 38356408 supportedSASLMechanisms: GSSAPI dnsHostName: dcontroller04.campus.university.edu ldapServiceName: uc.university.edu:dcontroller04$@CAMPUS.university.EDU serverName: CN=dcontroller04,CN=Servers,CN=universityCampus,CN=Sites,CN=Configuration,dc=ad,DC=university,DC=edu supportedCapabilities: 1.2.840.113556.1.4.800 isSynchronized: TRUE isGlobalCatalogReady: TRUE domainFunctionality: 2 forestFunctionality: 2 domainControllerFunctionality: 3 ======== End of LDAP query response ======== portqry.exe -n dcontroller04.campus.university.edu -e 3268 -p TCP exits with return code 0x00000000. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 3269 -p TCP .... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... TCP port 3269 (msft-gc-ssl service): LISTENING portqry.exe -n dcontroller04.campus.university.edu -e 3269 -p TCP exits with return code 0x00000000. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 53 -p BOTH ... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... TCP port 53 (domain service): FILTERED UDP port 53 (domain service): LISTENING or FILTERED Sending DNS query to UDP port 53... DNS query timed out portqry.exe -n dcontroller04.campus.university.edu -e 53 -p BOTH exits with return code 0x00000002. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 88 -p BOTH ... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... TCP port 88 (kerberos service): LISTENING UDP port 88 (kerberos service): LISTENING or FILTERED portqry.exe -n dcontroller04.campus.university.edu -e 88 -p BOTH exits with return code 0x00000002. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 445 -p TCP ... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... TCP port 445 (microsoft-ds service): LISTENING portqry.exe -n dcontroller04.campus.university.edu -e 445 -p TCP exits with return code 0x00000000. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 137 -p UDP ... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... UDP port 137 (netbios-ns service): LISTENING or FILTERED Using ephemeral source port Attempting NETBIOS adapter status query to UDP port 137... NETBIOS name for 10.10.131.13 not found (timeout) Adapter status query failed. UDP port: FILTERED portqry.exe -n dcontroller04.campus.university.edu -e 137 -p UDP exits with return code 0x00000001. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 138 -p UDP ... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... UDP port 138 (netbios-dgm service): LISTENING or FILTERED portqry.exe -n dcontroller04.campus.university.edu -e 138 -p UDP exits with return code 0x00000002. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 139 -p TCP ... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... TCP port 139 (netbios-ssn service): LISTENING portqry.exe -n dcontroller04.campus.university.edu -e 139 -p TCP exits with return code 0x00000000. ============================================= Starting portqry.exe -n dcontroller04.campus.university.edu -e 42 -p TCP ... Querying target system called: dcontroller04.campus.university.edu Attempting to resolve name to IP address... Name resolved to 10.10.131.13 querying... TCP port 42 (nameserver service): FILTERED portqry.exe -n dcontroller04.campus.university.edu -e 42 -p TCP exits with return code 0x00000002. |
|
|
| Thread Tools | Search this Thread |
| |
Similar Threads for: "2008 DC Stops responding to local logins" | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Samsung TL100 stops responding | Gopala | Portable Devices | 5 | 2 Weeks Ago 03:46 PM |
| Taskbar stops responding | Indrani | Operating Systems | 3 | 03-09-2009 08:51 PM |
| Windows 2008 - AD testX.local -> testY.local | Paul | Active Directory | 3 | 19-02-2009 07:16 PM |
| DNS Server Stops Responding to Requests | Mark Howard | Small Business Server | 1 | 05-02-2008 01:45 AM |
| Windows Exp Stops Responding (Vista) | Wes Carey | Vista Help | 2 | 26-11-2007 04:09 PM |
