activedirectory and DNS problmes.

  • Thread starter Thread starter Tony
  • Start date Start date
T

Tony

Hello everyone.
Im new to world of window 2000 server.
i recently installed win2k server in order to learn it ..
I installed DNS then installed Active directory.
now active direcotry is not starting . following messege showes when i start
active directory snap on..
No authorithy could be contacted for authantication.
KB on micorosft site mentioned only that DNS is not configured properly...
also , i can't remove Active directory using dcpromo..and message is the
same as above.
any help in figuring how to setup DNS so i can go on with the study , would
greatly appreciated.
regards/
 
In
Tony said:
Hello everyone.
Im new to world of window 2000 server.
i recently installed win2k server in order to learn it ..
I installed DNS then installed Active directory.
now active direcotry is not starting . following messege showes when
i start active directory snap on..
No authorithy could be contacted for authantication.
KB on micorosft site mentioned only that DNS is not configured
properly... also , i can't remove Active directory using dcpromo..and
message is the same as above.
any help in figuring how to setup DNS so i can go on with the study ,
would greatly appreciated.
regards/
Click to expand...

Hi Tony,

This is a very common issue that's posted here with an easy fix. Here's a
repost that I helped someone else with the same problem yesterday:



--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Thanks for your fast responce.

Well, i have syslink routher that is connected to my server and assinges ip
address to the NIC.. so i guess , with what you just said , this is the
problme.
Im going to give my server some fixed ip address to see what will happens ..
Thanks again for this info
Regards

"Ace Fekay [MVP]"
 
In
Tony said:
Thanks for your fast responce.

Well, i have syslink routher that is connected to my server and
assinges ip address to the NIC.. so i guess , with what you just said
, this is the problme.
Im going to give my server some fixed ip address to see what will
happens .. Thanks again for this info
Regards

"Ace Fekay [MVP]"
Click to expand...

Yes, you don';t want your router running DHCP in an AD infrastrucure (no
matter how small). Use Windows DHCP. It works hand in hand with DNS
registration, which is a requirement of AD. Don't use the router as a DNS
address anyhere. Point only to your internal DNS and use a forwarder for
Internet resolution (as I mentioned in my post). All servers *require*
static IPs due to their services.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Ace...

In 291832 that you listed, it says this:

Question: Do I need to configure forwarders in DNS?

Answer: No. By default, Windows 2000 and Windows Server 2003 DNS use the
root hint servers on the Internet; however, you can configure forwarders to
send DNS queries directly to your ISP's DNS server or other DNS servers. In
most cases, when you configure forwarders, DNS performance and efficiency
increases, but this configuration can also introduce a point of failure if
the forwarding DNS server is experiencing problems. The root hint server can
provide a level of redundancy in exchange for slightly increased DNS traffic
on your Internet connection

While I can see a benefit if there were multiple DNS servers on the internal
network for cached entries, and multiple forwarders would allow better
protection, unless they're all pointing to the ISP's DNS servers, would that
outweigh the chance for failure as listed above, in your opinion?

I have found my ISP's DNS to not be up to speed and by pointing to different
DNS servers, I have better reliability. I do not use forwarders. I removed
the "." in for forward lookup zone on the DNS server, pointed it to itself
only. I allow it to use the root hint servers for public resolutions and
point all workstations only to the internal DNS.

"Ace Fekay [MVP]"
message In
Tony said:
Hello everyone.
Im new to world of window 2000 server.
i recently installed win2k server in order to learn it ..
I installed DNS then installed Active directory.
now active direcotry is not starting . following messege showes when
i start active directory snap on..
No authorithy could be contacted for authantication.
KB on micorosft site mentioned only that DNS is not configured
properly... also , i can't remove Active directory using dcpromo..and
message is the same as above.
any help in figuring how to setup DNS so i can go on with the study ,
would greatly appreciated.
regards/
Click to expand...

Hi Tony,

This is a very common issue that's posted here with an easy fix. Here's a
repost that I helped someone else with the same problem yesterday:



--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Roland Hall said:
Ace...

In 291832 that you listed, it says this:

Question: Do I need to configure forwarders in DNS?

Answer: No. By default, Windows 2000 and Windows Server 2003 DNS use the
root hint servers on the Internet; however, you can configure forwarders to
send DNS queries directly to your ISP's DNS server or other DNS servers. In
most cases, when you configure forwarders, DNS performance and efficiency
increases, but this configuration can also introduce a point of failure if
the forwarding DNS server is experiencing problems. The root hint server can
provide a level of redundancy in exchange for slightly increased DNS traffic
on your Internet connection
Click to expand...

I never said you *need* a forwarder, just best practice to use one for more
efficient lookups, relieving your own internal DNS needing to perform
recursion on the Roots. That's all.
While I can see a benefit if there were multiple DNS servers on the internal
network for cached entries, and multiple forwarders would allow better
protection, unless they're all pointing to the ISP's DNS servers, would that
outweigh the chance for failure as listed above, in your opinion?
Click to expand...

Do you mean the forwarders pointing to your ISP? Yes, if that's the case. If
your machines are pointing to your ISP (in Ip properties), no, they should
not and is what is causing the problems you outlined, unless of course you
have a single label DNS domain name (which is not a true "FQDN").
I have found my ISP's DNS to not be up to speed and by pointing to different
DNS servers, I have better reliability.
Click to expand...

What do you mean here? Pointing to them in your IP properties? If so, that
is a no-no when it comes to AD functionality.
I do not use forwarders. I removed
the "." in for forward lookup zone on the DNS server, pointed it to itself
only. I allow it to use the root hint servers for public resolutions and
point all workstations only to the internal DNS.
Click to expand...


Sure, that's your call there if you would like to do it that way. I found
more efficiency with Forwarders and less CPU cycles on the DNS servers using
forwarders. You can test it yourself with Performance Monitor.


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
--
=================================


"Ace Fekay [MVP]"
message In Tony <[email protected]> posted their thoughts, then I offered
mine
Hello everyone.
Im new to world of window 2000 server.
i recently installed win2k server in order to learn it ..
I installed DNS then installed Active directory.
now active direcotry is not starting . following messege showes when
i start active directory snap on..
No authorithy could be contacted for authantication.
KB on micorosft site mentioned only that DNS is not configured
properly... also , i can't remove Active directory using dcpromo..and
message is the same as above.
any help in figuring how to setup DNS so i can go on with the study ,
would greatly appreciated.
regards/
Click to expand...

Hi Tony,

This is a very common issue that's posted here with an easy fix. Here's a
repost that I helped someone else with the same problem yesterday:
have
an
Click to expand...
removed
and
Click to expand...
resolution
(if
Click to expand...
delete
the
Click to expand...



--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
Click to expand...
 
Back
Top