event ID: 5774

  • Thread starter Thread starter Wes Murphy
  • Start date Start date
W

Wes Murphy

I have been getting the error message " Regitration
of the DNS record'_idap_tcp.DEfault-first-site-
name. _sites.garich.com. 600 IN SRV 0 100 389
GARICH.GARICH.COM. failed with the following error
DNS operation refused. This message is showing
up a lot in the log. The server itself runs ok
for a few days and then everyone starts getting
very slow responses with they are trying to
access there data on the server. I reboot the
server and then they are ok for a while and
this error is the only thing I sent in the log
that might be causes it. If someone could give me
a fix for this error or tell me if it could be
causing the slow down it would be very helpful.
Thanks!

Wes
 
David Botham said:
You made no mention, so, I will offer it up: Have you seen this:

Domain Controller Generates a Netlogon Error Event ID 5774
The information in this article applies to:
a.. Microsoft Windows Server 2003, Enterprise Edition
b.. Microsoft Windows Server 2003, Datacenter Edition
c.. Microsoft Windows 2000 Server
d.. Microsoft Windows 2000 Advanced Server
e.. Microsoft Windows 2000 Datacenter Server
This article was previously published under Q284963
SYMPTOMS
On a Windows 2000-based or Windows Server 2003-based domain controller that
has Domain Name System (DNS) installed and integrated with Active Directory
to allow secure dynamic updates, you may find that Event Viewer records the
Netlogon error Event ID 5774 approximately every 70 seconds.
CAUSE
This behavior can occur when the DNS server that is authoritative for the
Active Directory domain name is not listed on the DNS tab of the Advanced
TCP/IP Settings dialog box.
RESOLUTION
To resolve this behavior, add the Internet Protocol (IP) address of the DNS
server that is authoritative for the Active Directory domain name to the IP
Protocol (TCP/IP) Properties, and then move it to the top of the list:


1.. On the desktop, right-click My Network Places, and then click
Properties.
2.. Right-click the appropriate connection object, and then click
Properties.
3.. Click Internet Protocol (TCP/IP), and then click Properties.
4.. Click Advanced.
5.. Click DNS.
6.. Click Add, type the IP address of the DNS server in the DNS server
box, and then click Add.
7.. Click the arrows to move the IP address of the Active Directory DNS
server to the top of the list.
8.. Click OK in the open dialog boxes to close them and save the new
settings.
9.. Stop and then restart the Netlogon Service. The Event ID 5774 error
messages should no longer occur.
Click to expand...

I'm running AD only - not integrated. I'm seeing 5774 "DNS server not
authoritaive for zone". It's referring to my root domain.
I don't see them all the time, but maybe once or twice a day.
Any ideas ?
 
In
Wes Murphy said:
I have been getting the error message " Regitration
of the DNS record'_idap_tcp.DEfault-first-site-
name. _sites.garich.com. 600 IN SRV 0 100 389
GARICH.GARICH.COM. failed with the following error
DNS operation refused. This message is showing
up a lot in the log. The server itself runs ok
for a few days and then everyone starts getting
very slow responses with they are trying to
access there data on the server. I reboot the
server and then they are ok for a while and
this error is the only thing I sent in the log
that might be causes it. If someone could give me
a fix for this error or tell me if it could be
causing the slow down it would be very helpful.
Thanks!

Wes
Click to expand...

Operation refused usually means that you have an ISP's DNS server listed in
your IP properties and that server is refusing the update operations, which
is normal for ISP's to not allow this stuff. AD stores it;s stuff in DNS,
and if you are using your ISP;s in your IP properties (probably for Internet
resolution), you'll get a ton of errors with AD.

If this is true, remove that and only use your own internal DNS server. Use
a forwarder on your DNS server (DNS properties, Forwarder's tab, type in the
ISP's in there). If it's grayed out, delete the Root zone, then refresh and
try again. Those instructions on how to are given step by step in this
article:
http://support.microsoft.com/?id=300202

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
In Ace Fekay [MVP] <PleaseSubstituteMyActualFirstName&[email protected]>
posted their thoughts, then I offered my

Sorry for the double response.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Back
Top