I'm having and issue with active directory
Right now we have one domain controller been working for 5 years with no problem
as the company grew we desided to add a second domain controller and that when i found out there is something wrong with the current DC i got and error on the second machine RPC error that lead me back to the first DC
after running the dcdiag /fix ntdiag /fix i've still have the same problem
I've delete the DNS on the server reinstalled it no help to the problem
there are no error in the evenlogs i've fix the one that was there about the reverse DNS
i've done nslookup on the server name 9d2cc430-c00e-4c1c-af19-0717b4b9923a._msdcs.NAH.1 and it come back fine
Attached are the out put from DCDIAG /c /d,ipconfig /all netdiag
what does one try from here?
Here is a screen shot of the DNS
Command Line: "dcdiag.exe /c /d"
Domain Controller Diagnosis
Performing initial setup:
* Verifying that the local machine nordaas-srv, is a DC.
* Connecting to directory service on server nordaas-srv.
nordaas-srv.currentTime = 20100423151307.0Z
nordaas-srv.highestCommittedUSN = 561184
nordaas-srv.isSynchronized = 1
nordaas-srv.isGlobalCatalogReady = 1
* Collecting site info.
* Identifying all servers.
NORDAAS-SRV.currentTime = 20100423151307.0Z
NORDAAS-SRV.highestCommittedUSN = 561184
NORDAAS-SRV.isSynchronized = 1
NORDAAS-SRV.isGlobalCatalogReady = 1
* Identifying all NC cross-refs.
* Found 1 DC(s). Testing 1 of them.
Done gathering initial info.
===============================================Printing out pDsInfo
GLOBAL:
ulNumServers=1
pszRootDomain=NAH.1
pszNC=
pszRootDomainFQDN=DC=NAH,DC=1
pszConfigNc=CN=Configuration,DC=NAH,DC=1
pszPartitionsDn=CN=Partitions,CN=Configuration,DC=NAH,DC=1
iSiteOptions=0
dwTombstoneLifeTimeDays=180
dwForestBehaviorVersion=0
HomeServer=0, NORDAAS-SRV
SERVER: pServer[0].pszName=NORDAAS-SRV
pServer[0].pszGuidDNSName=9d2cc430-c00e-4c1c-af19-0717b4b9923a._msdcs.NAH.1
pServer[0].pszDNSName=nordaas-srv.NAH.1
pServer[0].pszDn=CN=NTDS Settings,CN=NORDAAS-SRV,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=NAH,DC=1
pServer[0].pszComputerAccountDn=CN=NORDAAS-SRV,OU=Domain Controllers,DC=NAH,DC=1
pServer[0].uuidObjectGuid=9d2cc430-c00e-4c1c-af19-0717b4b9923a
pServer[0].uuidInvocationId=bd0dc382-7431-48b6-8ec9-6f217b69fb78
pServer[0].iSite=0 (Default-First-Site-Name)
pServer[0].iOptions=1
pServer[0].ftLocalAcquireTime=7ad9bd10 01cae2f7
pServer[0].ftRemoteConnectTime=7a4ac380 01cae2f7
pServer[0].ppszMasterNCs:
ppszMasterNCs[0]=DC=ForestDnsZones,DC=NAH,DC=1
ppszMasterNCs[1]=DC=DomainDnsZones,DC=NAH,DC=1
ppszMasterNCs[2]=CN=Schema,CN=Configuration,DC=NAH,DC=1
ppszMasterNCs[3]=CN=Configuration,DC=NAH,DC=1
ppszMasterNCs[4]=DC=NAH,DC=1
SITES: pSites[0].pszName=Default-First-Site-Name
pSites[0].pszSiteSettings=CN=NTDS Site Settings,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=NAH,DC=1
pSites[0].pszISTG=CN=NTDS Settings,CN=NORDAAS-SRV,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=NAH,DC=1
pSites[0].iSiteOption=0
pSites[0].cServers=1
NC: pNCs[0].pszName=ForestDnsZones
pNCs[0].pszDn=DC=ForestDnsZones,DC=NAH,DC=1
pNCs[0].aCrInfo[0].dwFlags=0x00000201
pNCs[0].aCrInfo[0].pszDn=CN=6c0c0330-bb77-4447-ba23-f6e464006de3,CN=Partitions,CN=Configuration,DC=NAH,DC=1
pNCs[0].aCrInfo[0].pszDnsRoot=ForestDnsZones.NAH.1
pNCs[0].aCrInfo[0].iSourceServer=0
pNCs[0].aCrInfo[0].pszSourceServer=(null)
pNCs[0].aCrInfo[0].ulSystemFlags=0x00000005
pNCs[0].aCrInfo[0].bEnabled=TRUE
pNCs[0].aCrInfo[0].ftWhenCreated=00000000 00000000 pNCs[0].aCrInfo[0].pszSDReferenceDomain=(null)
pNCs[0].aCrInfo[0].pszNetBiosName=(null)
pNCs[0].aCrInfo[0].cReplicas=-1
pNCs[0].aCrInfo[0].aszReplicas=
NC: pNCs[1].pszName=DomainDnsZones
pNCs[1].pszDn=DC=DomainDnsZones,DC=NAH,DC=1
pNCs[1].aCrInfo[0].dwFlags=0x00000201
pNCs[1].aCrInfo[0].pszDn=CN=98001b7d-ef11-4448-abe4-01936c108d84,CN=Partitions,CN=Configuration,DC=NAH,DC=1
pNCs[1].aCrInfo[0].pszDnsRoot=DomainDnsZones.NAH.1
pNCs[1].aCrInfo[0].iSourceServer=0
pNCs[1].aCrInfo[0].pszSourceServer=(null)
pNCs[1].aCrInfo[0].ulSystemFlags=0x00000005
pNCs[1].aCrInfo[0].bEnabled=TRUE
pNCs[1].aCrInfo[0].ftWhenCreated=00000000 00000000 pNCs[1].aCrInfo[0].pszSDReferenceDomain=(null)
pNCs[1].aCrInfo[0].pszNetBiosName=(null)
pNCs[1].aCrInfo[0].cReplicas=-1
pNCs[1].aCrInfo[0].aszReplicas=
NC: pNCs[2].pszName=Schema
pNCs[2].pszDn=CN=Schema,CN=Configuration,DC=NAH,DC=1
pNCs[2].aCrInfo[0].dwFlags=0x00000201
pNCs[2].aCrInfo[0].pszDn=CN=Enterprise Schema,CN=Partitions,CN=Configuration,DC=NAH,DC=1
pNCs[2].aCrInfo[0].pszDnsRoot=NAH.1
pNCs[2].aCrInfo[0].iSourceServer=0
pNCs[2].aCrInfo[0].pszSourceServer=(null)
pNCs[2].aCrInfo[0].ulSystemFlags=0x00000001
pNCs[2].aCrInfo[0].bEnabled=TRUE
pNCs[2].aCrInfo[0].ftWhenCreated=00000000 00000000 pNCs[2].aCrInfo[0].pszSDReferenceDomain=(null)
pNCs[2].aCrInfo[0].pszNetBiosName=(null)
pNCs[2].aCrInfo[0].cReplicas=-1
pNCs[2].aCrInfo[0].aszReplicas=
NC: pNCs[3].pszName=Configuration
pNCs[3].pszDn=CN=Configuration,DC=NAH,DC=1
pNCs[3].aCrInfo[0].dwFlags=0x00000201
pNCs[3].aCrInfo[0].pszDn=CN=Enterprise Configuration,CN=Partitions,CN=Configuration,DC=NAH,DC=1
pNCs[3].aCrInfo[0].pszDnsRoot=NAH.1
pNCs[3].aCrInfo[0].iSourceServer=0
pNCs[3].aCrInfo[0].pszSourceServer=(null)
pNCs[3].aCrInfo[0].ulSystemFlags=0x00000001
pNCs[3].aCrInfo[0].bEnabled=TRUE
pNCs[3].aCrInfo[0].ftWhenCreated=00000000 00000000 pNCs[3].aCrInfo[0].pszSDReferenceDomain=(null)
pNCs[3].aCrInfo[0].pszNetBiosName=(null)
pNCs[3].aCrInfo[0].cReplicas=-1
pNCs[3].aCrInfo[0].aszReplicas=
NC: pNCs[4].pszName=NAH
pNCs[4].pszDn=DC=NAH,DC=1
pNCs[4].aCrInfo[0].dwFlags=0x00000201
pNCs[4].aCrInfo[0].pszDn=CN=NAH,CN=Partitions,CN=Configuration,DC=NAH,DC=1
pNCs[4].aCrInfo[0].pszDnsRoot=NAH.1
pNCs[4].aCrInfo[0].iSourceServer=0
pNCs[4].aCrInfo[0].pszSourceServer=(null)
pNCs[4].aCrInfo[0].ulSystemFlags=0x00000003
pNCs[4].aCrInfo[0].bEnabled=TRUE
pNCs[4].aCrInfo[0].ftWhenCreated=00000000 00000000 pNCs[4].aCrInfo[0].pszSDReferenceDomain=(null)
pNCs[4].aCrInfo[0].pszNetBiosName=(null)
pNCs[4].aCrInfo[0].cReplicas=-1
pNCs[4].aCrInfo[0].aszReplicas=
5 NC TARGETS: ForestDnsZones, DomainDnsZones, Schema, Configuration, NAH,
1 TARGETS: NORDAAS-SRV,
=============================================Done Printing pDsInfo
Doing initial required tests
Testing server: Default-First-Site-Name\NORDAAS-SRV
Starting test: Connectivity
* Active Directory LDAP Services Check
The host 9d2cc430-c00e-4c1c-af19-0717b4b9923a._msdcs.NAH.1 could not be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(9d2cc430-c00e-4c1c-af19-0717b4b9923a._msdcs.NAH.1) couldn't be
resolved, the server name (nordaas-srv.NAH.1) resolved to the IP
address (192.168.1.2) and was pingable. Check that the IP address is
registered correctly with the DNS server.
......................... NORDAAS-SRV failed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\NORDAAS-SRV
Skipping all tests, because server NORDAAS-SRV is
not responding to directory service requests
DNS Tests are running and not hung. Please wait a few minutes...
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : NAH
Starting test: CrossRefValidation
......................... NAH passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... NAH passed test CheckSDRefDom
Running enterprise tests on : NAH.1
Starting test: Intersite
Skipping site Default-First-Site-Name, this site is outside the scope
provided by the command line arguments provided.
......................... NAH.1 passed test Intersite
Starting test: FsmoCheck
GC Name: \\nordaas-srv.NAH.1
Locator Flags: 0xe00003fd
PDC Name: \\nordaas-srv.NAH.1
Locator Flags: 0xe00003fd
Time Server Name: \\nordaas-srv.NAH.1
Locator Flags: 0xe00003fd
Preferred Time Server Name: \\nordaas-srv.NAH.1
Locator Flags: 0xe00003fd
KDC Name: \\nordaas-srv.NAH.1
Locator Flags: 0xe00003fd
......................... NAH.1 passed test FsmoCheck
Starting test: DNS
Test results for domain controllers:
DC: nordaas-srv.NAH.1
Domain: NAH.1
TEST: Authentication (Auth)
Authentication test: Successfully completed
TEST: Basic (Basc)
Error: No LDAP connectivity Microsoft(R) Windows(R) Server 2003, Enterprise Edition (Service Pack level: 2.0) is supported
NETLOGON service is running
kdc service is running
DNSCACHE service is running
DNS service is running
DC is a DNS server
Network adapters information:
Adapter [00000022] Intel(R) 82574L Gigabit Network Connection:
MAC address is 00:30:48:BF:12:BF
IP address is static
IP address: 192.168.1.2
DNS servers:
127.0.0.1 (<name unavailable>) [Valid]
The A record for this DC was found
The SOA record for the Active Directory zone was found
The Active Directory zone on this DC/DNS server was found (primary)
Root zone on this DC/DNS server was not found
TEST: Forwarders/Root hints (Forw)
Recursion is enabled
Forwarders are not configured on this DNS server
Root hint Information:
Name: a.root-servers.net. IP: 198.41.0.4 [Valid]
Name: b.root-servers.net. IP: 192.228.79.201 [Valid]
Name: c.root-servers.net. IP: 192.33.4.12 [Valid]
Name: d.root-servers.net. IP: 128.8.10.90 [Valid]
Name: e.root-servers.net. IP: 192.203.230.10 [Valid]
Name: f.root-servers.net. IP: 192.5.5.241 [Valid]
Name: g.root-servers.net. IP: 192.112.36.4 [Valid]
Name: h.root-servers.net. IP: 128.63.2.53 [Valid]
Name: i.root-servers.net. IP: 192.36.148.17 [Valid]
Name: j.root-servers.net. IP: 192.58.128.30 [Valid]
Name: k.root-servers.net. IP: 193.0.14.129 [Valid]
Name: m.root-servers.net. IP: 202.12.27.33 [Valid]
TEST: Delegations (Del)
No delegations were found in this zone on this DNS server
TEST: Dynamic update (Dyn)
Dynamic update is enabled on the zone NAH.1.
Test record _dcdiag_test_record added successfully in zone NAH.1.
Test record _dcdiag_test_record deleted successfully in zone NAH.1.
TEST: Records registration (RReg)
Network Adapter [00000022] Intel(R) 82574L Gigabit Network Connection:
Matching A record found at DNS server 192.168.1.2:
nordaas-srv.NAH.1
Matching CNAME record found at DNS server 192.168.1.2:
9d2cc430-c00e-4c1c-af19-0717b4b9923a._msdcs.NAH.1
Matching DC SRV record found at DNS server 192.168.1.2:
_ldap._tcp.dc._msdcs.NAH.1
Matching GC SRV record found at DNS server 192.168.1.2:
_ldap._tcp.gc._msdcs.NAH.1
Matching PDC SRV record found at DNS server 192.168.1.2:
_ldap._tcp.pdc._msdcs.NAH.1
Total query time:0 min. 1 sec.. Total RPC connection time:0 min. 0 sec.
Total WMI connection time:0 min. 0 sec. Total Netuse connection time:0 min. 0 sec.
Summary of test results for DNS servers used by the above domain controllers:
DNS server: 128.63.2.53 (h.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 128.8.10.90 (d.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 192.112.36.4 (g.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 192.168.1.2 (<name unavailable>)
All tests passed on this DNS server
This is a valid DNS server
Name resolution is funtional. _ldap._tcp SRV record for the forest root domain is registered
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 192.203.230.10 (e.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 192.228.79.201 (b.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 192.33.4.12 (c.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 192.36.148.17 (i.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 192.5.5.241 (f.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 192.58.128.30 (j.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 193.0.14.129 (k.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 198.41.0.4 (a.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
DNS server: 202.12.27.33 (m.root-servers.net.)
All tests passed on this DNS server
This is a valid DNS server
Total query time:0 min. 0 sec., Total WMI connection time:0 min. 0 sec.
Summary of DNS test results:
Auth Basc Forw Del Dyn RReg Ext
________________________________________________________________
Domain: NAH.1
nordaas-srv PASS FAIL PASS PASS PASS PASS n/a
Total Time taken to test all the DCs:0 min. 1 sec.
......................... NAH.1 failed test DNS
C:\Program Files\Support Tools>ipconfig /all
Windows IP Configuration
Host Name . . . . . . . . . . . . : nordaas-srv
Primary Dns Suffix . . . . . . . : NAH.1
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : NAH.1
Ethernet adapter Local Area Connection 4:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) 82574L Gigabit Network Connectio
n
Physical Address. . . . . . . . . : 00-30-48-BF-12-BF
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.1.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.254
DNS Servers . . . . . . . . . . . : 127.0.0.1
C:\Program Files\Support Tools>netdiag
....................................
Computer Name: NORDAAS-SRV
DNS Host Name: nordaas-srv.NAH.1
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 6 Model 26 Stepping 5, GenuineIntel
List of installed hotfixes :
KB911564
KB921503
KB923561
KB924667-v2
KB925398_WMP64
KB925902
KB926122
KB927891
KB929123
KB930178
KB931768
KB931784
KB931836
KB932168
KB933360
KB933566
KB933729
KB933854
KB935839
KB935840
KB935966
KB936021
KB936357
KB936782
KB937143
KB938127
KB938464
KB939653
KB941202
KB941568
KB941569
KB941644
KB941672
KB941693
KB942615
KB942763
KB942840
KB943055
KB943460
KB943484
KB943485
KB944338
KB944533
KB944653
KB945553
KB946026
KB947864
KB948496
KB948590
KB948745
KB948881
KB949014
KB950759
KB950760
KB950762
KB950974
KB951066
KB951072-v2
KB951698
KB951746
KB951748
KB952004
KB952069
KB952954
KB953298
KB953838
KB953839
KB954155
KB954211
KB954550-v5
KB954600
KB955069
KB955759
KB955839
KB956390
KB956391
KB956572
KB956802
KB956803
KB956841
KB956844
KB957095
KB957097
KB958215
KB958469
KB958644
KB958687
KB958690
KB958869
KB959426
KB960225
KB960714
KB960715
KB960803
KB960859
KB961063
KB961064
KB961118
KB961371
KB961371-v2
KB961373
KB961501
KB963027
KB967715
KB967723
KB968389
KB968537
KB968816
KB969059
KB969805
KB969883
KB969897
KB969898
KB969947
KB970238
KB970430
KB970653-v3
KB971032
KB971468
KB971486
KB971557
KB971633
KB971657
KB971737
KB971961
KB972260
KB972270
KB973037
KB973346
KB973354
KB973507
KB973525
KB973540
KB973687
KB973815
KB973825
KB973869
KB973904
KB974112
KB974318
KB974392
KB974455
KB974571
KB975025
KB975467
KB975560
KB975713
KB976098-v2
KB976325
KB976749
KB977165
KB977290
KB977816
KB977914
KB978037
KB978207
KB978251
KB978262
KB978338
KB978601
KB978706
KB979306
KB979309
KB979683
KB980182
KB980232
KB981350
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection 4
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : nordaas-srv
IP Address . . . . . . . . : 192.168.1.2
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.1.254
Dns Servers. . . . . . . . : 127.0.0.1
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
No remote names have been found.
WINS service test. . . . . : Skipped
There are no WINS servers configured for this interface.
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{BDC703E4-AF4E-4393-826C-C83BD44B510E}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Passed
PASS - All the DNS entries for DC are registered on DNS server '127.0.0.1'.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{BDC703E4-AF4E-4393-826C-C83BD44B510E}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{BDC703E4-AF4E-4393-826C-C83BD44B510E}
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
Bookmarks