Windows 2003 DNS error 4010

  • Thread starter Thread starter D Daniele
  • Start date Start date
D

D Daniele

On a reboot or restart of the DNS service, the following
error is produced:
DNS server was unable to create a resource record for
dsaguid_msdcs.<forestdomain> in the zone <forestdomain>.
The Active Directory definition of this resource record is
corrupt or contains an invalid DNS name. The event data
contains the error: Event data <7b 00 00 00>.

The MS site has no reference to this error.

Replication is fully functional, and DCdiag, Netdiag and
DNSlint all report a clean environment.

Any suggestions on what the issue is and how to correct?
 
In
D Daniele said:
On a reboot or restart of the DNS service, the following
error is produced:
DNS server was unable to create a resource record for
dsaguid_msdcs.<forestdomain> in the zone <forestdomain>.
The Active Directory definition of this resource record is
corrupt or contains an invalid DNS name. The event data
contains the error: Event data <7b 00 00 00>.

The MS site has no reference to this error.

Replication is fully functional, and DCdiag, Netdiag and
DNSlint all report a clean environment.

Any suggestions on what the issue is and how to correct?
Click to expand...

First I need to ask are you pointing the DC to its own IP address for DNS,
Only?(no ISPs DNS should be used on any NIC in an AD domain)
 
Kevin,

The DC is pointing to the DNS service (on the same
machine). There are two DCs (each running DNS). DC1
points to itself and DC2 points to DC1 and a secondary to
DC2 (itself). There is no forwarder on these DNS servers
and no connectivity to the Internet.

I have attempted to delete the records called out in the
event log and let the system re-create. The error message
still occurs on re-start of DNS, also the records were
recreated.
 
In
D Daniele said:
Kevin,

The DC is pointing to the DNS service (on the same
machine). There are two DCs (each running DNS). DC1
points to itself and DC2 points to DC1 and a secondary to
DC2 (itself). There is no forwarder on these DNS servers
and no connectivity to the Internet.

I have attempted to delete the records called out in the
event log and let the system re-create. The error message
still occurs on re-start of DNS, also the records were
recreated.
Click to expand...
From your original post it describes the error:
corrupt or contains an invalid DNS name. The event data
Click to expand...
Does your machine name have an invalid character in its name?
Valid DNS names include:
a.. The letters a-z and A-Z.
b.. The numbers 0-9.
c.. The hyphen (-) character.
Host names may begin with a letter or a number and cannot be longer than 63
characters.
 
Kevin,

No, the names are valid. Host name starts with a letter
and is 14 characters in length, only letters and numbers.
Domain names are again valid, only letters and a hyphen.
 
In
D Daniele said:
Kevin,

No, the names are valid. Host name starts with a letter
and is 14 characters in length, only letters and numbers.
Domain names are again valid, only letters and a hyphen.
Click to expand...

Kevin, do you think it's maybe in the domain name?

D Daniele,
Is there an underscore in the domain name?
Is the domain name a single label name?

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Kevin &Ace,

The domain name doesn't contain an underscore (at least
the part I have control over). There is a hyphen in the
domain name structure. The entries in question are within
the dsaguid._msdcs.<forestdomain> zone.

It is a three part domain name: NNNNNN-MM.XX.CCC (actual
length and format)
The host name is 14 characters in length.

The error is generated at the startup of the DNS service.

There is also a child domain in the environment:
Domain name: aaa.nnnnnn-mm.xx.ccc

No errors occure within the child domain DNS and the zone
has been correctly replicated to all DNS services both in
the root and child domain.
 
In
D Daniele said:
Kevin &Ace,

The domain name doesn't contain an underscore (at least
the part I have control over). There is a hyphen in the
domain name structure. The entries in question are within
the dsaguid._msdcs.<forestdomain> zone.

It is a three part domain name: NNNNNN-MM.XX.CCC (actual
length and format)
The host name is 14 characters in length.

The error is generated at the startup of the DNS service.

There is also a child domain in the environment:
Domain name: aaa.nnnnnn-mm.xx.ccc

No errors occure within the child domain DNS and the zone
has been correctly replicated to all DNS services both in
the root and child domain.
Click to expand...
Can we see an unedited ipconfig /all for the DC(s) and the exact domain name
in AD Users & Computers
It is possible that the zone in AD is corrupted you can reinstall the Active
Directory zone to see if it clears this up. Here are the instructions for
that process, if you follow it exactly as described you will have a clean
install of the zone. I have had to do this once so I know if there is any
corrupted data it will clear it up.
294328 - How to Reinstall a Dynamic DNS Active Directory- Integrated Zone
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q294328&FR=1
 
Kevin,

I looked at the Q article...Since, there are no other
errors associated with DNS, except for the two event logs,
I am hesitant to totally remove and rebuild at this point.

Thank you for your feedback..
 
Back
Top