Problem Adding 2nd DC to domain

K

kp

W2003 Enterprise Domain Controller
using Simple DNS plus

Attempting to add 2nd W2003 DC to domain
using DCPROMO get to enter user password to add server to domain get
following error

An Active Directory Domain controller for the domain xyz.xxx could not be
contacted.

In the help window is the following
DNS was successfully queried. for the service location (SRV) resource record
used to locate a domain controller for domain xyz.xxx

All the A records SOA and SRV records are correct on the DC.
nslookup shows correct dns resolution of DC to ip address
set q=a resolves correct FQDN
both servers can ping the FQDN of each other

I cannot install Active Directory on the 2nd DC or join the domain

Any help is appreciated.

Kevin Paulus, CCNA, MCP
 
P

Paul Bergson

I believe it is looking at the DNS you have supplied and is unable to find
the AD service records. Are you pointing to the same DNS server as the
current dc is pointing to?

--


Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA

This posting is provided "AS IS" with no warranties, and confers no rights.
 
K

kp

The DC is pointing to itself as DNS, as it is on a nat subnet and does not
resolve traffice to my ISP. I forward the zones to my ISP to resolve one
machine that is on a DMZ port on my firewall.

The 2nd DC is pointing to the DC for DNS.

Kevin
 
K

kp

In the DNS log on the DC, when trying to join the domain the following entry
is given when replying to requesting client.

No A - records available for xyz.xxx (domain)

Kevin
 
P

Paul Bergson

You should have a xyz.com domain with the following for sure:


_msdcs sub-domain
_sites sub-domain
_tcp sub-domain
_udp sub-domain

DomainDnsZones (2003)
ForestDnsZones (2003)

The above contain the service records for your AD

Type = Start Of Authority DCxx.xyz.com
Type= Name Server (NS) DCxx.xyz.com
Host(A) = ip address of your DNS server that Holds the Dc

All your host records for your xyz.com domain

There are either problems on your current DNS that hosts your dc (You could
try netdiag /fix but I doubt this is the problem) or there is a
communication problem/configuration error. Is there a firewall problem
between the two?

--


Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA

This posting is provided "AS IS" with no warranties, and confers no rights.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

can't join a computer to domain when 2000 DC offine, while 2003 DC 6
cannot join WinXP to Windows 2000 domain 14
Can not add second DC to active directory domain 3
joining domain 4
HELP - Cannot add DC to existing domain... 2
Only DC crashed, best way to restore 8
DNS Server 2008 r2 cant add comp to domain error 7
Jorge --- Re: root forest AD DC crashed 9

Top