DC Promo / DNS

  • Thread starter Thread starter Chris Saia
  • Start date Start date
C

Chris Saia

I may have posted this message twice by accident. I'm just getting setup on the newsgroups. My problem:

I have two Win2K servers. One is the DC and DNS server. The other is simply a member server. I want to promote the memberserver to become a DC. My DNS setup is completely internal with fowarding to our DSL's providers DNS. There is full comminication between the DC and the member server. However when I try to run DC promo on the member server I get the error message below.

Other notes:

1.AD integrated zones setup on DC
2 Dynamic forwarding is enabled
3. The DNS on the member server is pointing to the IP of the DC.
4. On the DC, I'm missing the four subzones from my foward zone setup. I've tried "ipconfig /registerdns" to get those four subs created but it didn't work
5. I've restarted the net logon service several times.
6. The Sysvol share exists.

Error:

"The wizard cannot gain access to the list of domains in the forest.
This condition may be caused by a DNS lookup problem. For information
about troubleshooting common DNS lookup problems, please see the
following Microsoft Web site:

http://go.microsoft.com/fwlink/?LinkId=5171. The error is:

The specified domain either does not exist or could not be contacted."

____________________________________________________________________________
I ran netdiag fix on the DC and below is the output.


.........................................

Computer Name: LRGFS1
DNS Host Name: lrgfs1.sammys.lajolla
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 6 Model 8 Stepping 3, GenuineIntel
List of installed hotfixes :
KB823182
KB823559
KB824105
KB824141
KB824146
KB825119
KB826232
KB828028
KB828035
KB828749
KB830352
Q147222


Netcard queries test . . . . . . . : Passed



Per interface results:

Adapter : Local Area Connection

Netcard queries test . . . : Passed

Host Name. . . . . . . . . : lrgfs1.sammys.lajolla
IP Address . . . . . . . . : 10.0.0.41
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 10.0.0.1
Primary WINS Server. . . . : 10.0.0.41
Dns Servers. . . . . . . . : 10.0.0.41


AutoConfiguration results. . . . . . : Passed

Default gateway test . . . : Failed
No gateway reachable for this adapter. ( Gateway on DC is IP of firewall (checkpoint) computer. Firewall cpu has two nics,one nic has the IP which is the gateway on all machines in the network)
NetBT name test. . . . . . : Passed

WINS service test. . . . . : Passed


Global results:


Domain membership test . . . . . . : Passed


NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
1 NetBt transport currently configured.


Autonet address test . . . . . . . : Passed


IP loopback ping test. . . . . . . : Passed


Default gateway test . . . . . . . : Failed

[FATAL] NO GATEWAYS ARE REACHABLE.
You have no connectivity to other network segments.
If you configured the IP protocol manually then
you need to add at least one valid gateway.


NetBT name test. . . . . . . . . . : Passed


Winsock test . . . . . . . . . . . : Passed


DNS test . . . . . . . . . . . . . : Failed
[FATAL] Failed to fix: DC DNS entry sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.pdc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.gc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.b5183208-4ee2-4bc1-9e79-f7c999b983ce.domains._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry gc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
226b9309-2184-455e-826e-05202de3ca9c._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.dc._msdcs.sammys.lajolla. re-registeration on DNS
server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.dc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _gc._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_gc._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Fix Failed: netdiag failed to re-register missing DNS
entries for this DC on DNS server '10.0.0.41'.
[FATAL] No DNS servers have the DNS records for this DC
registered.


Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
The redir is bound to 1 NetBt transport.

List of NetBt transports currently bound to the browser
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
The browser is bound to 1 NetBt transport.


DC discovery test. . . . . . . . . : Passed


DC list test . . . . . . . . . . . : Passed


Trust relationship test. . . . . . : Skipped


Kerberos test. . . . . . . . . . . : Passed


LDAP test. . . . . . . . . . . . . : Passed


Bindings test. . . . . . . . . . . : Passed


WAN configuration test . . . . . . : Skipped
No active remote access connections.


Modem diagnostics test . . . . . . : Passed

IP Security test . . . . . . . . . : Passed
IPSec policy service is active, but no policy is assigned.


The command completed successfully

Thank You!
 
In
Chris Saia said:
I may have posted this message twice by accident. I'm just getting
setup on the newsgroups. My problem:

I have two Win2K servers. One is the DC and DNS server. The other is
simply a member server. I want to promote the memberserver to
become a DC. My DNS setup is completely internal with fowarding to
our DSL's providers DNS. There is full comminication between the DC
and the member server. However when I try to run DC promo on the
member server I get the error message below.

Other notes:

1.AD integrated zones setup on DC
2 Dynamic forwarding is enabled
3. The DNS on the member server is pointing to the IP of the DC.
4. On the DC, I'm missing the four subzones from my foward zone
setup. I've tried "ipconfig /registerdns" to get those four subs
created but it didn't work
5. I've restarted the net logon service several times.
6. The Sysvol share exists.

Error:

"The wizard cannot gain access to the list of domains in the forest.
This condition may be caused by a DNS lookup problem. For information
about troubleshooting common DNS lookup problems, please see the
following Microsoft Web site:

http://go.microsoft.com/fwlink/?LinkId=5171. The error is:

The specified domain either does not exist or could not be contacted."

____________________________________________________________________________
I ran netdiag fix on the DC and below is the output.


........................................

Computer Name: LRGFS1
DNS Host Name: lrgfs1.sammys.lajolla
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 6 Model 8 Stepping 3, GenuineIntel
List of installed hotfixes :
KB823182
KB823559
KB824105
KB824141
KB824146
KB825119
KB826232
KB828028
KB828035
KB828749
KB830352
Q147222


Netcard queries test . . . . . . . : Passed



Per interface results:

Adapter : Local Area Connection

Netcard queries test . . . : Passed

Host Name. . . . . . . . . : lrgfs1.sammys.lajolla
IP Address . . . . . . . . : 10.0.0.41
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 10.0.0.1
Primary WINS Server. . . . : 10.0.0.41
Dns Servers. . . . . . . . : 10.0.0.41


AutoConfiguration results. . . . . . : Passed

Default gateway test . . . : Failed
No gateway reachable for this adapter. ( Gateway on DC is
IP of firewall (checkpoint) computer. Firewall cpu has two nics,one
nic has the IP which is the gateway on all machines in the network)
NetBT name test. . . . . . : Passed

WINS service test. . . . . : Passed


Global results:


Domain membership test . . . . . . : Passed


NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
1 NetBt transport currently configured.


Autonet address test . . . . . . . : Passed


IP loopback ping test. . . . . . . : Passed


Default gateway test . . . . . . . : Failed

[FATAL] NO GATEWAYS ARE REACHABLE.
You have no connectivity to other network segments.
If you configured the IP protocol manually then
you need to add at least one valid gateway.


NetBT name test. . . . . . . . . . : Passed


Winsock test . . . . . . . . . . . : Passed


DNS test . . . . . . . . . . . . . : Failed
[FATAL] Failed to fix: DC DNS entry sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.pdc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.gc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.b5183208-4ee2-4bc1-9e79-f7c999b983ce.domains._msdcs.sammys.lajoll
a.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry gc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
226b9309-2184-455e-826e-05202de3ca9c._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.dc._msdcs.sammys.lajolla. re-registeration on DNS
server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.dc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _gc._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_gc._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Fix Failed: netdiag failed to re-register missing DNS
entries for this DC on DNS server '10.0.0.41'.
[FATAL] No DNS servers have the DNS records for this DC
registered.


Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
The redir is bound to 1 NetBt transport.

List of NetBt transports currently bound to the browser
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
The browser is bound to 1 NetBt transport.


DC discovery test. . . . . . . . . : Passed


DC list test . . . . . . . . . . . : Passed


Trust relationship test. . . . . . : Skipped


Kerberos test. . . . . . . . . . . : Passed


LDAP test. . . . . . . . . . . . . : Passed


Bindings test. . . . . . . . . . . : Passed


WAN configuration test . . . . . . : Skipped
No active remote access connections.


Modem diagnostics test . . . . . . : Passed

IP Security test . . . . . . . . . : Passed
IPSec policy service is active, but no policy is assigned.


The command completed successfully

Thank You!
Click to expand...


Thanks for posting that info up front. I have a few questions...


1. Is sammys.lajolla your Active Directory domain name or should it have
been sammys.lajolla.com ?

2. What is the spelling of the zone name in DNS?

3. What is your primary DNS suffix on this machine?

4. Is Dynamic Updates set to at least "YES" in the zone properties?

5. Also what do you mean by this statement below?
2 Dynamic forwarding is enabled
Click to expand...

6. Can we also see an ipconfig /all?

Thanks!


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
In
Chris Saia said:
I may have posted this message twice by accident. I'm just getting
setup on the newsgroups. My problem:

I have two Win2K servers. One is the DC and DNS server. The other is
simply a member server. I want to promote the memberserver to
become a DC. My DNS setup is completely internal with fowarding to
our DSL's providers DNS. There is full comminication between the DC
and the member server. However when I try to run DC promo on the
member server I get the error message below.

Other notes:

1.AD integrated zones setup on DC
2 Dynamic forwarding is enabled
3. The DNS on the member server is pointing to the IP of the DC.
4. On the DC, I'm missing the four subzones from my foward zone
setup. I've tried "ipconfig /registerdns" to get those four subs
created but it didn't work
5. I've restarted the net logon service several times.
6. The Sysvol share exists.

Error:

"The wizard cannot gain access to the list of domains in the forest.
This condition may be caused by a DNS lookup problem. For information
about troubleshooting common DNS lookup problems, please see the
following Microsoft Web site:

http://go.microsoft.com/fwlink/?LinkId=5171. The error is:

The specified domain either does not exist or could not be contacted."
Click to expand...

Thanks for posting the netdiag, that is a good start to resolving your
issue.
We need a little more info, can you please
1. post your ipconfig /all
2. Post AD domain name from ADU&C?
3. Post results from this test: netdiag /v /test:dns
 
Thank you for the help! Answers to your questions below.
Thanks for posting that info up front. I have a few questions...


1. Is sammys.lajolla your Active Directory domain name or should it have
been sammys.lajolla.com ?
Click to expand...

AD name is Sammys.lajolla (I'm wondering if this counts as a single word AD)

2. What is the spelling of the zone name in DNS?
Click to expand...

lrgfs1.sammys.lajolla (this is on the DC)
lrgfs2.sammys.lajolla (on the memberserver i want to promote)
3. What is your primary DNS suffix on this machine?
Sammys.lajolla


4. Is Dynamic Updates set to at least "YES" in the zone properties?
Yes

5. Also what do you mean by this statement below?
Click to expand...

Sorry about the wording, I meant "Allow Dynamic updates" is set to "yes"

6. Can we also see an ipconfig /all?
Click to expand...

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : lrgfs1
Primary DNS Suffix . . . . . . . : sammys.lajolla
Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : sammys.lajolla

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : sammys.lajolla
Description . . . . . . . . . . . : HP NC3163 Fast Ethernet NIC
Physical Address. . . . . . . . . : 00-50-8B-F3-75-E1

DHCP Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 10.0.0.41

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 10.0.0.1

DNS Servers . . . . . . . . . . . : 10.0.0.41
Primary WINS Server . . . . . . . : 10.0.0.41



"Ace Fekay [MVP]"
In Chris Saia <[email protected]> posted their thoughts, then I offered
mine
I may have posted this message twice by accident. I'm just getting
setup on the newsgroups. My problem:

I have two Win2K servers. One is the DC and DNS server. The other is
simply a member server. I want to promote the memberserver to
become a DC. My DNS setup is completely internal with fowarding to
our DSL's providers DNS. There is full comminication between the DC
and the member server. However when I try to run DC promo on the
member server I get the error message below.

Other notes:

1.AD integrated zones setup on DC
2 Dynamic forwarding is enabled
3. The DNS on the member server is pointing to the IP of the DC.
4. On the DC, I'm missing the four subzones from my foward zone
setup. I've tried "ipconfig /registerdns" to get those four subs
created but it didn't work
5. I've restarted the net logon service several times.
6. The Sysvol share exists.

Error:

"The wizard cannot gain access to the list of domains in the forest.
This condition may be caused by a DNS lookup problem. For information
about troubleshooting common DNS lookup problems, please see the
following Microsoft Web site:

http://go.microsoft.com/fwlink/?LinkId=5171. The error is:

The specified domain either does not exist or could not be contacted."
Click to expand...
____________________________________________________________________________
I ran netdiag fix on the DC and below is the output.


........................................

Computer Name: LRGFS1
DNS Host Name: lrgfs1.sammys.lajolla
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 6 Model 8 Stepping 3, GenuineIntel
List of installed hotfixes :
KB823182
KB823559
KB824105
KB824141
KB824146
KB825119
KB826232
KB828028
KB828035
KB828749
KB830352
Q147222


Netcard queries test . . . . . . . : Passed



Per interface results:

Adapter : Local Area Connection

Netcard queries test . . . : Passed

Host Name. . . . . . . . . : lrgfs1.sammys.lajolla
IP Address . . . . . . . . : 10.0.0.41
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 10.0.0.1
Primary WINS Server. . . . : 10.0.0.41
Dns Servers. . . . . . . . : 10.0.0.41


AutoConfiguration results. . . . . . : Passed

Default gateway test . . . : Failed
No gateway reachable for this adapter. ( Gateway on DC is
IP of firewall (checkpoint) computer. Firewall cpu has two nics,one
nic has the IP which is the gateway on all machines in the network)
NetBT name test. . . . . . : Passed

WINS service test. . . . . : Passed


Global results:


Domain membership test . . . . . . : Passed


NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
1 NetBt transport currently configured.


Autonet address test . . . . . . . : Passed


IP loopback ping test. . . . . . . : Passed


Default gateway test . . . . . . . : Failed

[FATAL] NO GATEWAYS ARE REACHABLE.
You have no connectivity to other network segments.
If you configured the IP protocol manually then
you need to add at least one valid gateway.


NetBT name test. . . . . . . . . . : Passed


Winsock test . . . . . . . . . . . : Passed


DNS test . . . . . . . . . . . . . : Failed
[FATAL] Failed to fix: DC DNS entry sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.pdc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.gc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
Click to expand...
_ldap._tcp.b5183208-4ee2-4bc1-9e79-f7c999b983ce.domains._msdcs.sammys.lajoll
a.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry gc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
226b9309-2184-455e-826e-05202de3ca9c._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.dc._msdcs.sammys.lajolla. re-registeration on DNS
server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.dc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _gc._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_gc._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Fix Failed: netdiag failed to re-register missing DNS
entries for this DC on DNS server '10.0.0.41'.
[FATAL] No DNS servers have the DNS records for this DC
registered.


Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
The redir is bound to 1 NetBt transport.

List of NetBt transports currently bound to the browser
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
The browser is bound to 1 NetBt transport.


DC discovery test. . . . . . . . . : Passed


DC list test . . . . . . . . . . . : Passed


Trust relationship test. . . . . . : Skipped


Kerberos test. . . . . . . . . . . : Passed


LDAP test. . . . . . . . . . . . . : Passed


Bindings test. . . . . . . . . . . : Passed


WAN configuration test . . . . . . : Skipped
No active remote access connections.


Modem diagnostics test . . . . . . : Passed

IP Security test . . . . . . . . . : Passed
IPSec policy service is active, but no policy is assigned.


The command completed successfully

Thank You!
Click to expand...


Thanks for posting that info up front. I have a few questions...


1. Is sammys.lajolla your Active Directory domain name or should it have
been sammys.lajolla.com ?

2. What is the spelling of the zone name in DNS?

3. What is your primary DNS suffix on this machine?

4. Is Dynamic Updates set to at least "YES" in the zone properties?

5. Also what do you mean by this statement below?
2 Dynamic forwarding is enabled
Click to expand...

6. Can we also see an ipconfig /all?

Thanks!


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
Click to expand...
 
Kevin, thank you. You should see the answers to all of your questions in my
first reponse post. Here is the results of the netdiag dns test: Again,
I'm setting up internal DNS only. Thanks


Gathering IPX configuration information.
Querying status of the Netcard drivers... Passed
Testing Domain membership... Passed
Gathering NetBT configuration information.
Testing DNS
The DNS registration for lrgfs1.sammys.lajolla is correct on all
DNS servers
[WARNING] The DNS entries for this DC are not registered correctly on
DNS server '10.0.0.41'. Please wait for 30 minutes for DNS server
replication.
[FATAL] No DNS servers have the DNS records for this DC registered.

Tests complete.


Computer Name: LRGFS1
DNS Host Name: lrgfs1.sammys.lajolla
DNS Domain Name: sammys.lajolla
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 6 Model 8 Stepping 3, GenuineIntel
Hotfixes :
Installed? Name
Yes KB823182
Yes KB823559
Yes KB824105
Yes KB824141
Yes KB824146
Yes KB825119
Yes KB826232
Yes KB828028
Yes KB828035
Yes KB828749
Yes KB830352
Yes Q147222
No ServicePackUninstall


Netcard queries test . . . . . . . : Passed

Information of Netcard drivers:

------------------------------------------------------------------------
---
Description: HP NC3163 Fast Ethernet NIC
Device: \DEVICE\{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}

Media State: Connected

Device State: Connected
Connect Time: 9 days, 13:41:47
Media Speed: 100 Mbps

Packets Sent: 17172800
Bytes Sent (Optional): 0

Packets Received: 17394153
Directed Pkts Recd (Optional): 16003201
Bytes Received (Optional): 0
Directed Bytes Recd (Optional): 0

------------------------------------------------------------------------
---
[PASS] - At least one netcard is in the 'Connected' state.



Per interface results:

Adapter : Local Area Connection
Adapter ID . . . . . . . . : {2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}

Netcard queries test . . . : Passed


Global results:


Domain membership test . . . . . . : Passed
Machine is a . . . . . . . . . : Primary Domain Controller Emulator
Netbios Domain name. . . . . . : SAMMYS
Dns domain name. . . . . . . . : sammys.lajolla
Dns forest name. . . . . . . . : sammys.lajolla
Domain Guid. . . . . . . . . . : {B5183208-4EE2-4BC1-9E79-F7C999B983CE}
Domain Sid . . . . . . . . . . : S-1-5-21-57989841-789336058-682003330
Logon User . . . . . . . . . . : ntadmin
Logon Domain . . . . . . . . . : SAMMYS


NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
1 NetBt transport currently configured.


DNS test . . . . . . . . . . . . . : Failed
Interface {2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
DNS Domain: sammys.lajolla
DNS Servers: 10.0.0.41
IP Address: 10.0.0.41
Expected registration with PDN (primary DNS domain name):
Hostname: lrgfs1.sammys.lajolla.
Authoritative zone: lrgfs1.sammys.lajolla.
Primary DNS server: lrgfs1.sammys.lajolla 10.0.0.41
Authoritative NS:10.0.0.41
Verify DNS registration:
Name: lrgfs1.sammys.lajolla
Expected IP: 10.0.0.41
Server 10.0.0.41: NO_ERROR
The DNS registration for lrgfs1.sammys.lajolla is correct on all DNS
servers
Check the DNS registration for DCs entries on DNS server '10.0.0.41'
Query for DC DNS entry sammys.lajolla. on DNS server 10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry _ldap._tcp.sammys.lajolla. on DNS server 10.0.0.41
failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.sammys.lajolla. on DNS server
10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry _ldap._tcp.pdc._msdcs.sammys.lajolla. on DNS server
10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry _ldap._tcp.gc._msdcs.sammys.lajolla. on DNS server
10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.sammys.lajolla. on DNS
server 10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry
_ldap._tcp.b5183208-4ee2-4bc1-9e79-f7c999b983ce.domains._msdcs.sammys.lajoll
a. on DNS server 10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry gc._msdcs.sammys.lajolla. on DNS server 10.0.0.41
failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry
226b9309-2184-455e-826e-05202de3ca9c._msdcs.sammys.lajolla. on DNS server
10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry _kerberos._tcp.dc._msdcs.sammys.lajolla. on DNS
server 10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.sammys.lajolla. on
DNS server 10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry _ldap._tcp.dc._msdcs.sammys.lajolla. on DNS server
10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.sammys.lajolla. on DNS
server 10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry _kerberos._tcp.sammys.lajolla. on DNS server
10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry
_kerberos._tcp.Default-First-Site-Name._sites.sammys.lajolla. on DNS server
10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry _gc._tcp.sammys.lajolla. on DNS server 10.0.0.41
failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry
_gc._tcp.Default-First-Site-Name._sites.sammys.lajolla. on DNS server
10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry _kerberos._udp.sammys.lajolla. on DNS server
10.0.0.41 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry _kpasswd._tcp.sammys.lajolla. on DNS server 10.0.0.41
failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
Query for DC DNS entry _kpasswd._udp.sammys.lajolla. on DNS server 10.0.0.41
failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS
server)
[WARNING] The DNS entries for this DC are not registered correctly on
DNS server '10.0.0.41'. Please wait for 30 minutes for DNS server
replication.
[FATAL] No DNS servers have the DNS records for this DC registered.


The command completed successfully
 
That last message was from me, Chris Saia. I screwed up my posting name.


msnews.microsoft.com said:
Thank you for the help! Answers to your questions below.
Thanks for posting that info up front. I have a few questions...


1. Is sammys.lajolla your Active Directory domain name or should it have
been sammys.lajolla.com ?
Click to expand...

AD name is Sammys.lajolla (I'm wondering if this counts as a single word AD)
2. What is the spelling of the zone name in DNS?
Click to expand...

lrgfs1.sammys.lajolla (this is on the DC)
lrgfs2.sammys.lajolla (on the memberserver i want to promote)
3. What is your primary DNS suffix on this machine?
Sammys.lajolla


4. Is Dynamic Updates set to at least "YES" in the zone properties?
Yes

5. Also what do you mean by this statement below?
Click to expand...

Sorry about the wording, I meant "Allow Dynamic updates" is set to "yes"

6. Can we also see an ipconfig /all?
Click to expand...

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : lrgfs1
Primary DNS Suffix . . . . . . . : sammys.lajolla
Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : sammys.lajolla

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : sammys.lajolla
Description . . . . . . . . . . . : HP NC3163 Fast Ethernet NIC
Physical Address. . . . . . . . . : 00-50-8B-F3-75-E1

DHCP Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 10.0.0.41

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 10.0.0.1

DNS Servers . . . . . . . . . . . : 10.0.0.41
Primary WINS Server . . . . . . . : 10.0.0.41



"Ace Fekay [MVP]"
In Chris Saia <[email protected]> posted their thoughts, then I offered
Click to expand...
____________________________________________________________________________
I ran netdiag fix on the DC and below is the output.


........................................

Computer Name: LRGFS1
DNS Host Name: lrgfs1.sammys.lajolla
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 6 Model 8 Stepping 3, GenuineIntel
List of installed hotfixes :
KB823182
KB823559
KB824105
KB824141
KB824146
KB825119
KB826232
KB828028
KB828035
KB828749
KB830352
Q147222


Netcard queries test . . . . . . . : Passed



Per interface results:

Adapter : Local Area Connection

Netcard queries test . . . : Passed

Host Name. . . . . . . . . : lrgfs1.sammys.lajolla
IP Address . . . . . . . . : 10.0.0.41
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 10.0.0.1
Primary WINS Server. . . . : 10.0.0.41
Dns Servers. . . . . . . . : 10.0.0.41


AutoConfiguration results. . . . . . : Passed

Default gateway test . . . : Failed
No gateway reachable for this adapter. ( Gateway on DC is
IP of firewall (checkpoint) computer. Firewall cpu has two nics,one
nic has the IP which is the gateway on all machines in the network)
NetBT name test. . . . . . : Passed

WINS service test. . . . . : Passed


Global results:


Domain membership test . . . . . . : Passed


NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
1 NetBt transport currently configured.


Autonet address test . . . . . . . : Passed


IP loopback ping test. . . . . . . : Passed


Default gateway test . . . . . . . : Failed

[FATAL] NO GATEWAYS ARE REACHABLE.
You have no connectivity to other network segments.
If you configured the IP protocol manually then
you need to add at least one valid gateway.


NetBT name test. . . . . . . . . . : Passed


Winsock test . . . . . . . . . . . : Passed


DNS test . . . . . . . . . . . . . : Failed
[FATAL] Failed to fix: DC DNS entry sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.pdc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.gc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
Click to expand...
Click to expand...
_ldap._tcp.b5183208-4ee2-4bc1-9e79-f7c999b983ce.domains._msdcs.sammys.lajoll
a.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry gc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
226b9309-2184-455e-826e-05202de3ca9c._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.dc._msdcs.sammys.lajolla. re-registeration on DNS
server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.dc._msdcs.sammys.lajolla. re-registeration on DNS server
'10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _gc._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_gc._tcp.Default-First-Site-Name._sites.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.sammys.lajolla.
re-registeration on DNS server '10.0.0.41' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Fix Failed: netdiag failed to re-register missing DNS
entries for this DC on DNS server '10.0.0.41'.
[FATAL] No DNS servers have the DNS records for this DC
registered.


Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
The redir is bound to 1 NetBt transport.

List of NetBt transports currently bound to the browser
NetBT_Tcpip_{2DE3A1AE-9FCB-49C8-B49B-D7F1345DD029}
The browser is bound to 1 NetBt transport.


DC discovery test. . . . . . . . . : Passed


DC list test . . . . . . . . . . . : Passed


Trust relationship test. . . . . . : Skipped


Kerberos test. . . . . . . . . . . : Passed


LDAP test. . . . . . . . . . . . . : Passed


Bindings test. . . . . . . . . . . : Passed


WAN configuration test . . . . . . : Skipped
No active remote access connections.


Modem diagnostics test . . . . . . : Passed

IP Security test . . . . . . . . . : Passed
IPSec policy service is active, but no policy is assigned.


The command completed successfully

Thank You!
Click to expand...


Thanks for posting that info up front. I have a few questions...


1. Is sammys.lajolla your Active Directory domain name or should it have
been sammys.lajolla.com ?

2. What is the spelling of the zone name in DNS?

3. What is your primary DNS suffix on this machine?

4. Is Dynamic Updates set to at least "YES" in the zone properties?

5. Also what do you mean by this statement below?
2 Dynamic forwarding is enabled
Click to expand...

6. Can we also see an ipconfig /all?

Thanks!


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
Click to expand...
Click to expand...
 
In
msnews.microsoft.com said:
Kevin, thank you. You should see the answers to all of your
questions in my first reponse post. Here is the results of the
netdiag dns test: Again, I'm setting up internal DNS only. Thanks

In your response to Ace:
2. What is the spelling of the zone name in DNS?
Click to expand...

lrgfs1.sammys.lajolla (this is on the DC)
lrgfs2.sammys.lajolla (on the memberserver i want to promote)

Delete these two zones, then in the DC create one zone named sammys.lajolla,
make it AD integrated, set it to allow zone updates then run netdiag /fix

When you promote the Member it will get the zone.
 
You da man! That was it. The only other thing I had to do after I created
the new zones was restart the netlogon service. Once I did that all the
errors in netdiag /fix were gone! And I was able to promote the member
server to a DC.

As a followup , now that I have two DC's, I want to plan for disaster (my
preferred DC, LRGFS1 goes down). Where should I start with getting the AD
info from the first DC (LRGFS1) over to the new DC (LRGFS2). And is there a
way I can have it so everytime I create an account on the preferred DC that
the account replicates to the AD on the alternate DC.

Thanks again to Kevin and Ace.
 
Kevin,

Nix that last question. I see all the AD info from the preferred DC
automatically is put into the new DC. But...if the first DC was to go down,
is all that account info actually stored on the second DC or is it just
reading the info from the first DC?

Chris
 
In
Chris Saia said:
Kevin,

Nix that last question. I see all the AD info from the preferred DC
automatically is put into the new DC. But...if the first DC was to
go down, is all that account info actually stored on the second DC or
is it just reading the info from the first DC?
Click to expand...

Both DCs have writable databases, although the first DC holds the five FSMO
(Flexible Single Master of Operations) roles for now, you can transfer all
or any of the FSMO roles to the other DC. Do a Google search to find info to
help you understand these roles.
 
In
Kevin D. Goodknecht said:
In

Both DCs have writable databases, although the first DC holds the
five FSMO (Flexible Single Master of Operations) roles for now, you
can transfer all or any of the FSMO roles to the other DC. Do a
Google search to find info to help you understand these roles.


--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
============================
Click to expand...


Just to add, best practice dictates to move the Infrastructure Master to the
DC that is NOT a GC. And just to clarify, both DCs are replicas of your
domain AD database, which means they both have an exact copy of the
database, so if one were to fail, follow Kevin's advise to seize roles to
the good one.

And for your reading pleasure...

Chapter 7 - Managing Flexible Single-Master Operations:
http://www.microsoft.com/resources/...erver/reskit/en-us/distsys/part1/dsgch07.mspx

Managing Domain Controllers, Roles, and Catalogs:
http://www.microsoft.com/technet/prodtechnol/windows2000serv/deploy/confeat/06w2kadc.mspx

234790 - HOW TO How to Find FSMO Role Holders:
http://support.microsoft.com/?id=234790

255690 - HOW TO View and Transfer FSMO Roles in the Graphical User
Interface:
http://support.microsoft.com/default.aspx?scid=kb;en-us;255690

Active Directory Backup and Restore:
http://www.microsoft.com/technet/pr...irectory/maintain/opsguide/part1/adogd03.mspx

Active Directory Disaster Recovery:
http://www.microsoft.com/technet/pr...nologies/activedirectory/support/adrecov.mspx


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS-IS" with no warranties and confers no
rights.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Back
Top