Additional Domain Controller

  • Thread starter Thread starter Jardyus
  • Start date Start date
J

Jardyus

Hi. I am currently running a small domain with 1 DC. In order to implement
better reliability, I am trying to add an additional DC to take over in the
event that the first one fails. I installed Windows 2000 Advanced Server on
DC2 and ran dcpromo. It has prmoted the server to a DC, however when DC1 is
shut down, users cannot login to the domain - the error returned is "The
domain DOMAIN is not available". I am not sure why this is happening? Do I
need to create a secondary DNS server manually? Do I need to seize a FSMO
role? I cannot seem to figure out what I have done wrong. Any help would be
appreciated. Thank you.
 
You need DNS on this second DC and then make both DNS zone AD Integrated.
Point all clients to these DC's for DNS, one for primary the other for
secondary. This should help.
 
I have done that, and I have updated the DNS on the client machines by
logging in locally. Whenever the first DC is down, I still get the error
message that the domain is not available. However, using nslookup, I have
queried the srv records and found that both servers are configured to act as
DCs for the domain. So why are the clients only able to connect to one of
them?
 
In
Jardyus said:
I have done that, and I have updated the DNS on the client machines by
logging in locally. Whenever the first DC is down, I still get the
error message that the domain is not available. However, using
nslookup, I have queried the srv records and found that both servers
are configured to act as DCs for the domain. So why are the clients
only able to connect to one of them?
Click to expand...

Run netdiag /fix then run netdiag /test:dns /v on both DCs. Post errors from
the test:dns
 
Please check your e-mail. Thank you.
Kevin D. Goodknecht Sr. said:
In

Run netdiag /fix then run netdiag /test:dns /v on both DCs. Post errors
from
the test:dns
Click to expand...
 
Hi Jardyus & Kevin,

I am facing the same problem as you had already faced. How you resolved this
issue. Pls help me in this regard.

ADC's for different doamins are working fine, except this one, which I need
more.

Problem is just a carbon copy of yours problem.

Thanks
Brajesh
 
Brajesh said:
Hi Jardyus & Kevin,

I am facing the same problem as you had already faced. How you
resolved this issue. Pls help me in this regard.

ADC's for different doamins are working fine, except this one, which
I need more.

Problem is just a carbon copy of yours problem.
Click to expand...

What exactly is the problem?
You have posted a reply to a post that is older than the thirty day limit
when using NNTP in a News reader.

Some suggestions I can make without having more information is to run
netdiag /fix and restart the netlogon service on all DCs. Install DNS on at
least two DCs and use AD integrated zones, make sure the DCs and all clients
only use the internal DNS that supports the AD domain. This could also be a
Global Catalog problem, although only one Global Catalog is required in a
Forest, I would suggest having two GC servers so one is always available.
Posting an ipconfig /all from the DCs and a client will also help us
diagnose your problem.

Frequently asked questions about Windows 2000 DNS and Windows Server 2003
DNS
http://support.microsoft.com/default.aspx?scid=kb;en-us;291382

300202 - HOW TO: Configure DNS for Internet Access in Windows 2000
http://support.microsoft.com/?id=300202&sd=RMVP

825036 - Best practices for DNS client settings in Windows 2000 Server and
in Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en-us;825036&sd=RMVP

323380 - HOW TO: Configure DNS for Internet Access in Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en-us;323380&sd=RMVP

313994 - How To Create or Move a Global Catalog in Windows 2000:
http://support.microsoft.com/default.aspx?scid=kb;en-us;313994&Product=win2000


--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
 
Back
Top