William Stacey said:Please post the results of the diags. How else could we help you?
Azz said:I've a good mind to demote this dc and promote it again.
This is the situation:
DC2 is pointing to DC1.
DNS don't matter if Active or primary because the result is the same.
I have tried reinstalling it (deleting the DNS folders on both
domains) and reinstalling them.
Does error 5781 have anything to do with this? I notice this problem
after installing on DC2 SP4. Luckily I restrained from SP4 on DC1
which is the main DC. Both runs windows 2000
Please help ...
Azz said:Thanks Ace,
but the key is not there. So now what ?
The DCs are not replicating and DCDIAG on DC2 is not correct.
Here's the sample:
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\BDC
Starting test: Connectivity
BDC's server GUID DNS name could not be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(b2b1a235-a813-4691-b5b1-12d99cd079de._msdcs.CONSARCDG) couldn't be
resolved, the server name (bdc.CONSARCDG) resolved to the IP
address
(192.0.0.6) and was pingable. Check that the IP address is
registered
correctly with the DNS server.
......................... BDC failed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\BDC
Skipping all tests, because server BDC is
not responding to directory service requests
Running enterprise tests on : CONSARCDG
Starting test: Intersite
......................... CONSARCDG passed test Intersite
Starting test: FsmoCheck
......................... CONSARCDG passed test FsmoCheck
Ace Fekay said:Seems like you may have a single label name, which is NOT good, but need to
confirm this. Can you post an ipconfig /all to confirm this? If you can,
please don't edit the result and just copy and paste it in your reply to
help give us a start in diagnosis.
--
Regards,
Ace
Please direct all replies to the newsgroup so all can benefit.
Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
--
=================================
couldn'tAzz said:Thanks Ace,
but the key is not there. So now what ?
The DCs are not replicating and DCDIAG on DC2 is not correct.
Here's the sample:
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\BDC
Starting test: Connectivity
BDC's server GUID DNS name could not be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(b2b1a235-a813-4691-b5b1-12d99cd079de._msdcs.CONSARCDG)him,be
resolved, the server name (bdc.CONSARCDG) resolved to the IP
address
(192.0.0.6) and was pingable. Check that the IP address is
registered
correctly with the DNS server.
......................... BDC failed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\BDC
Skipping all tests, because server BDC is
not responding to directory service requests
Running enterprise tests on : CONSARCDG
Starting test: Intersite
......................... CONSARCDG passed test Intersite
Starting test: FsmoCheck
......................... CONSARCDG passed test FsmoCheck
Ace Fekay said:Thanks for posting that info.
Actually (unofrtunately), I would worry about it. Hate to be the
bearer of bad news, but single label names don't play well with DNS
and goes against the DNS RFCs. The names need to be in the form of a
domain and it's TLD, such as, domain.com and not just domain. That's
just a simple DNS RFC rule. Hence the errors in DCDIAG, since AD
requires DNS and it follows the DNS rules.
So to fix the DNS problems, you actually need to address this issue,
since AD requires DNS and soley works off of it.
What is your Active Directory domain name? Is it in the form of
"domain.com" or is it the same as your Primary DNS Suffix, which is,
from the ipconfig output:
If the AD name is a normal domain.com name, such as consarcdg.com,
then I have a script that will fix the Primary DNS Suffix.
FYI: The way AD works, and what it relies on for proper
functionality, the Primary DNS, *needs* to be the exact same name as
the AD domain name and the zone name in DNS. They all need to be
exactly the same and not a single label name.
There is a reg entry to force DNS to accept single label names, but
in the long run as you grow and expand, it will cause problems.
It's not recommended by any engineer (MS, MVP, etc), to do it this
way, but it's a pseudo fix. Here's the article about it:
http://support.microsoft.com/?id=300684
Let me know about the AD name, the zone name if they are the same or
not to determine if the script will help.
As for SP4 and 5781 errors, there have been recent issues about it,
but haven't heard anything definitive on it, which I'm curious as to
why myself. But for your case, the problem is deeper, unfortunately.
--
Regards,
Ace
Please direct all replies to the newsgroup so all can benefit.
Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
a re-install without losing accounts, if not, hmm... can export them using
CSVDE, rebuild it from scratch, and then reimport them into after some
modification.