Eventid 5788 & 5789

  • Thread starter Thread starter Adrian Hirst
  • Start date Start date
A

Adrian Hirst

Hi,

I would very much appreciate it if someone could help me with the following
problems

I promoted a new Server to a DC and tried adding another server which is
going to be a mail server but unfortunately it failed with two events to do
with NETLOGON (5788 & 5789), when I do a DCDIAG on the DC it passes fine.

I have looked up various issues to do with these two DNS issues but
unfortunately everyone I come across talks about access denied errors which
is not the case with this.

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5789
Date: 22/06/2006
Time: 12:55:28
User: N/A
Computer: MAIL
Description:
Attempt to update DNS Host Name of the computer object in Active Directory
failed. The updated value was 'mail.codemonkeys.local'. The following error
occurred:
Cannot complete this function.
Data:
0000: eb 03 00 00 ë...

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5788
Date: 22/06/2006
Time: 12:55:28
User: N/A
Computer: MAIL
Description:
Attempt to update HOST Service Principal Names (SPNs) of the computer object
in Active Directory failed. The updated values were
'HOST/mail.codemonkeys.local' and 'HOST/MAIL'. The following error occurred:
Cannot complete this function.
Data:
0000: eb 03 00 00 ë...

When I run a NETDIAG on the mail server I get the following issues which I'm
guessing are somehow related


Kerberos test. . . . . . . . . . . : Failed
[FATAL] Kerberos does not have a ticket for MAIL$.


LDAP test. . . . . . . . . . . . . : Failed
[FATAL] Cannot do NTLM authenticated ldap_bind to 'server.codem
: Invalid Credentials.
[FATAL] Cannot do Negotiate authenticated ldap_bind to 'server.
ocal': Authentication Method Not Supported.
[WARNING] Failed to query SPN registration on DC 'server.codemo

[FATAL] No LDAP servers work in the domain 'THECODEMONKEYS'.

Can anyone help with this problem?

Best Regards

Ade.
 
Sounds like your MAIL server has no permissions to write its DNS records in
Active Directory (A.D. integrated zone) or authenticate.
Is your MAIL server a member of this domain? You may have to remove it from
the domain and rejoin it if it is supposed to be a member.
 
Hi,

Thankyou I have tried both these without success

Adrian


Peter Demeyer said:
Sounds like your MAIL server has no permissions to write its DNS records
in Active Directory (A.D. integrated zone) or authenticate.
Is your MAIL server a member of this domain? You may have to remove it
from the domain and rejoin it if it is supposed to be a member.

Adrian Hirst said:
Hi,

I would very much appreciate it if someone could help me with the
following problems

I promoted a new Server to a DC and tried adding another server which is
going to be a mail server but unfortunately it failed with two events to
do with NETLOGON (5788 & 5789), when I do a DCDIAG on the DC it passes
fine.

I have looked up various issues to do with these two DNS issues but
unfortunately everyone I come across talks about access denied errors
which is not the case with this.

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5789
Date: 22/06/2006
Time: 12:55:28
User: N/A
Computer: MAIL
Description:
Attempt to update DNS Host Name of the computer object in Active
Directory failed. The updated value was 'mail.codemonkeys.local'. The
following error occurred:
Cannot complete this function.
Data:
0000: eb 03 00 00 ë...

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5788
Date: 22/06/2006
Time: 12:55:28
User: N/A
Computer: MAIL
Description:
Attempt to update HOST Service Principal Names (SPNs) of the computer
object in Active Directory failed. The updated values were
'HOST/mail.codemonkeys.local' and 'HOST/MAIL'. The following error
occurred:
Cannot complete this function.
Data:
0000: eb 03 00 00 ë...

When I run a NETDIAG on the mail server I get the following issues which
I'm guessing are somehow related


Kerberos test. . . . . . . . . . . : Failed
[FATAL] Kerberos does not have a ticket for MAIL$.


LDAP test. . . . . . . . . . . . . : Failed
[FATAL] Cannot do NTLM authenticated ldap_bind to 'server.codem
: Invalid Credentials.
[FATAL] Cannot do Negotiate authenticated ldap_bind to 'server.
ocal': Authentication Method Not Supported.
[WARNING] Failed to query SPN registration on DC 'server.codemo

[FATAL] No LDAP servers work in the domain 'THECODEMONKEYS'.

Can anyone help with this problem?

Best Regards

Ade.
Click to expand...
Click to expand...
 
check:
http://www.eventid.net/display.asp?eventid=5789&eventno=343&source=NETLOGON&phase=1
http://www.eventid.net/display.asp?eventid=5788&eventno=350&source=NETLOGON&phase=1


--
I hope that the information above helps you

Good Luck
Jorge Silva
MCSA
Systems Administrator

Adrian Hirst said:
Hi,

Thankyou I have tried both these without success

Adrian


Peter Demeyer said:
Sounds like your MAIL server has no permissions to write its DNS records
in Active Directory (A.D. integrated zone) or authenticate.
Is your MAIL server a member of this domain? You may have to remove it
from the domain and rejoin it if it is supposed to be a member.

Adrian Hirst said:
Hi,

I would very much appreciate it if someone could help me with the
following problems

I promoted a new Server to a DC and tried adding another server which is
going to be a mail server but unfortunately it failed with two events to
do with NETLOGON (5788 & 5789), when I do a DCDIAG on the DC it passes
fine.

I have looked up various issues to do with these two DNS issues but
unfortunately everyone I come across talks about access denied errors
which is not the case with this.

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5789
Date: 22/06/2006
Time: 12:55:28
User: N/A
Computer: MAIL
Description:
Attempt to update DNS Host Name of the computer object in Active
Directory failed. The updated value was 'mail.codemonkeys.local'. The
following error occurred:
Cannot complete this function.
Data:
0000: eb 03 00 00 ë...

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5788
Date: 22/06/2006
Time: 12:55:28
User: N/A
Computer: MAIL
Description:
Attempt to update HOST Service Principal Names (SPNs) of the computer
object in Active Directory failed. The updated values were
'HOST/mail.codemonkeys.local' and 'HOST/MAIL'. The following error
occurred:
Cannot complete this function.
Data:
0000: eb 03 00 00 ë...

When I run a NETDIAG on the mail server I get the following issues which
I'm guessing are somehow related


Kerberos test. . . . . . . . . . . : Failed
[FATAL] Kerberos does not have a ticket for MAIL$.


LDAP test. . . . . . . . . . . . . : Failed
[FATAL] Cannot do NTLM authenticated ldap_bind to 'server.codem
: Invalid Credentials.
[FATAL] Cannot do Negotiate authenticated ldap_bind to 'server.
ocal': Authentication Method Not Supported.
[WARNING] Failed to query SPN registration on DC 'server.codemo

[FATAL] No LDAP servers work in the domain 'THECODEMONKEYS'.

Can anyone help with this problem?

Best Regards

Ade.
Click to expand...
Click to expand...
Click to expand...
 
Back
Top