- Jul 31, 2011
- 5
- 0
- 18,510
hi all-
I have an AD issue that is driving me to bash my head against a wall.
We have a member server that is no longer listed in AD, but *is* a member according to its spec. However, it cannot find the single DC we have on the same LAN. So basically the DC thinks it is no longer a member and it cannot rejoin? As though it had been removed from Active Directory while offline, and now cannot reconnect or is blocked? a simple ping definitely verified DNS *is* working and it can physically contact the server, but AD services are unavailable or inaccessible?
Problem is, this is our Blackberry enterprise server.. so deleting and recreating the server is not an option.
I have run dcdiag and netdiag on the domain controller but I'm not clear on how to resolve the errors shown, since the DNS records *look* correct to me.. Any help is appreciated.
*******
NETDIAG
*******
Computer Name: EDMSERVER01
DNS Host Name: edmserver01.XYZ.local
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : EM64T Family 6 Model 15 Stepping 8, GenuineIntel
List of installed hotfixes :
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : edmserver01
IP Address . . . . . . . . : 192.20.20.10
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.20.20.4
Dns Servers. . . . . . . . : 208.67.222.222
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
No names have been found.
WINS service test. . . . . : Skipped
There are no WINS servers configured for this interface.
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{2236CEE3-8A1B-45F7-AABE-8AE05CE4C5C4}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'edmserver01.XYZ.local.'. [RCODE_SERVER_FAILURE]
The name 'edmserver01.XYZ.local.' may not be registered in DNS.
[FATAL] Could not open file C:\WINDOWS\system32\config\netlogon.dns for reading.
[FATAL] No DNS servers have the DNS records for this DC registered.
Redir and Browser test . . . . . . : Failed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{2236CEE3-8A1B-45F7-AABE-8AE05CE4C5C4}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{2236CEE3-8A1B-45F7-AABE-8AE05CE4C5C4}
The browser is bound to 1 NetBt transport.
[FATAL] Cannot send mailslot message to 'XYZ*' via browser. [ERROR_INVALID_FUNCTION]
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Failed
[FATAL] Cannot lookup package Kerberos.
The error occurred was: (null)
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
********************************************
********************************************
---
DCDIAG
---
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site\EDMSERVER01
Starting test: Connectivity
The host ecda2438-0557-4b28-96b3-d7a864516de0._msdcs.XYZ.local could not be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name (ecda2438-0557-4b28-96b3-d7a864516de0._msdcs.XYZ.local) couldn't be resolved, the
server name (edmserver01.XYZ.local) resolved to the IP address (192.20.20.10) and was pingable. Check that the IP address is
registered correctly with the DNS server.
......................... EDMSERVER01 failed test Connectivity
Doing primary tests
Testing server: Default-First-Site\EDMSERVER01
Skipping all tests, because server EDMSERVER01 is
not responding to directory service requests
Running partition tests on : TAPI3Directory
Starting test: CrossRefValidation
......................... TAPI3Directory passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... TAPI3Directory passed test CheckSDRefDom
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : XYZ
Starting test: CrossRefValidation
......................... XYZ passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... XYZ passed test CheckSDRefDom
Running enterprise tests on : XYZ.local
Starting test: Intersite
......................... XYZ.local passed test Intersite
Starting test: FsmoCheck
Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 1355
A Good Time Server could not be located.
......................... XYZ.local failed test FsmoCheck
***************************************
I have an AD issue that is driving me to bash my head against a wall.
We have a member server that is no longer listed in AD, but *is* a member according to its spec. However, it cannot find the single DC we have on the same LAN. So basically the DC thinks it is no longer a member and it cannot rejoin? As though it had been removed from Active Directory while offline, and now cannot reconnect or is blocked? a simple ping definitely verified DNS *is* working and it can physically contact the server, but AD services are unavailable or inaccessible?
Problem is, this is our Blackberry enterprise server.. so deleting and recreating the server is not an option.
I have run dcdiag and netdiag on the domain controller but I'm not clear on how to resolve the errors shown, since the DNS records *look* correct to me.. Any help is appreciated.
*******
NETDIAG
*******
Computer Name: EDMSERVER01
DNS Host Name: edmserver01.XYZ.local
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : EM64T Family 6 Model 15 Stepping 8, GenuineIntel
List of installed hotfixes :
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : edmserver01
IP Address . . . . . . . . : 192.20.20.10
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.20.20.4
Dns Servers. . . . . . . . : 208.67.222.222
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
No names have been found.
WINS service test. . . . . : Skipped
There are no WINS servers configured for this interface.
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{2236CEE3-8A1B-45F7-AABE-8AE05CE4C5C4}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'edmserver01.XYZ.local.'. [RCODE_SERVER_FAILURE]
The name 'edmserver01.XYZ.local.' may not be registered in DNS.
[FATAL] Could not open file C:\WINDOWS\system32\config\netlogon.dns for reading.
[FATAL] No DNS servers have the DNS records for this DC registered.
Redir and Browser test . . . . . . : Failed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{2236CEE3-8A1B-45F7-AABE-8AE05CE4C5C4}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{2236CEE3-8A1B-45F7-AABE-8AE05CE4C5C4}
The browser is bound to 1 NetBt transport.
[FATAL] Cannot send mailslot message to 'XYZ*' via browser. [ERROR_INVALID_FUNCTION]
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Failed
[FATAL] Cannot lookup package Kerberos.
The error occurred was: (null)
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
********************************************
********************************************
---
DCDIAG
---
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site\EDMSERVER01
Starting test: Connectivity
The host ecda2438-0557-4b28-96b3-d7a864516de0._msdcs.XYZ.local could not be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name (ecda2438-0557-4b28-96b3-d7a864516de0._msdcs.XYZ.local) couldn't be resolved, the
server name (edmserver01.XYZ.local) resolved to the IP address (192.20.20.10) and was pingable. Check that the IP address is
registered correctly with the DNS server.
......................... EDMSERVER01 failed test Connectivity
Doing primary tests
Testing server: Default-First-Site\EDMSERVER01
Skipping all tests, because server EDMSERVER01 is
not responding to directory service requests
Running partition tests on : TAPI3Directory
Starting test: CrossRefValidation
......................... TAPI3Directory passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... TAPI3Directory passed test CheckSDRefDom
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : XYZ
Starting test: CrossRefValidation
......................... XYZ passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... XYZ passed test CheckSDRefDom
Running enterprise tests on : XYZ.local
Starting test: Intersite
......................... XYZ.local passed test Intersite
Starting test: FsmoCheck
Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 1355
A Good Time Server could not be located.
......................... XYZ.local failed test FsmoCheck
***************************************
Facebook
Twitter
Instagram