Problems with DNS and Active Directory

[Jens]

We have a Small Business Server 2000 as our Primary Domain Controller.

After a virus attack our workstations can no longer log on to the domain
called "ntdomain.dk". Active directory can not find the domain.

I think it has to do with a DNS problem. When we restart the server it takes
about 5 minuttes to prepare network connection. In the DNS setup I can se
the zone ntdomain.dk but here under I can not se the server as a host. If I
create the host "server" the server will not start up. I have looked under
C:\winnt\system32\dns and there is no zone-file called ntdomain.dk.dns only
cache.dns.

The zone ntdomain.dk is integrated with AD. Can I delete it and create a new
one?

Regards
Jens

 

[Simon Geary]

Are you sure you have completely removed the virus?
The three main entries you should have in DNS are an SOA record, an NS
record for the DNS server and a Host record for the DNS server. If there is
no host record for the DNS server this will cause numerous problems and if
you cannot add one that is unusual. Do you have an AD backup from before the
virus hit?

With AD integrated DNS it is normal not to have a zonename.dns file as the
info is stored in AD. If you converted to a standard primary zone one would
be created automatically.
If you were to delete the zone and recreate it you would also have to run
netdiag /fix to recreate AD records and of course you would lose all your
current host records.

 

[Jens]

I'm pretty sure to have removed the virus.
I can add a host record for the DNS server, but then the server won't start.
I have a mounth old backup which I tried to restore, but it did not help.
I did not restore systemstate because I was not sure about it.
All in all we have 7 hosts so I would be no problem to create them again.

What would you suggest.

Thank you

Jens

 

[Simon Geary]

What do you mean when you say the server will not start when you create a
host record for it? Dou you just mean the DNS service will not start or the
server itself does not boot up? Either scenario is strange and may be
indicative of a deeper problem.

First thing to do is make a complete backup of your server and of System
State (you should back up more often than once a month).

Next, I would try converting the DNS zones from AD integrated to Standard
Primary and try to add the server record again. This might bypass any
problem with a corruption in AD as the zonename.dns file would be used
instead.

 

[Jens]

Thank you for your answer.

I meant that the DNS service wouln't start. After I have tried to fix DNS og
AD I have now formattet the server and reinstalled SBS 2000. Everything
works now.

The XP clients were in the domain, but now they are not. How can I reassign
the clients to the domain?

Regards
Jens

 

[Ace Fekay [MVP]]

In

Thank you for your answer.

I meant that the DNS service wouln't start. After I have tried to fix
DNS og AD I have now formattet the server and reinstalled SBS 2000.
Everything works now.

The XP clients were in the domain, but now they are not. How can I
reassign the clients to the domain?

Regards
Jens

The clients would have to be re-joined.
I believe SBS 2000 has a wizard to help you out with this? Or it can be done
manually by going to My Computer, Properties, Network ID tab, and select the
domain name in the bottom and supply the admin user/pass when prompted.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Jens]

"Ace Fekay [MVP]"

In

The clients would have to be re-joined.
I believe SBS 2000 has a wizard to help you out with this? Or it can be done
manually by going to My Computer, Properties, Network ID tab, and select the
domain name in the bottom and supply the admin user/pass when prompted.

Thank you.

Regards
Jens

 

[Ace Fekay [MVP]]

In

"Ace Fekay [MVP]"


Thank you.

Regards
Jens

No prob!

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory