DNS client service fails

  • Thread starter Thread starter jhayes
  • Start date Start date
J

jhayes

Windows XP sp1 machine logging into a domain, I am a domain admin. I
noticed that from my AD users & computers snap in I could not view
group policies anymore. Checking event viewer I see a ton of event
1030 and 1058 errors (can't access gp.ini from sysvol), checking the
services mmc I see that DNS client service, which is set to automatic,
is not started. Attempting to start this service gives me 'access
denied'. Also, I can't ipconfig /flushdns or /registerdns or any ot
those commands, however, nslookup works and all other browsing works
just fine.

I can browse to the sysvol share containing gp.ini on any of the 6
domain controllers we have. Reading about this problem suggests that
the issue may be with DNS running on a domain controller, but I have
not been able to find any issues there and my machine is the only one
on the network with this problem, suggesting it's a local issue.

I've gotten nowhere so far and my next two options are 1) run a repair
install (which I really don't want to do for a multitude of bad
reasons) and 2) change the logon for the dns client service from
'network service' to 'local system' (not sure about this as I don't
know the pw for network service so I could never get it back after the
change).

So, anyone seen this or have any suggestions for things to try? Thanks
in advance.

jhayes
 
jhayes said:
Windows XP sp1 machine logging into a domain, I am a domain admin. I
noticed that from my AD users & computers snap in I could not view
group policies anymore. Checking event viewer I see a ton of event
1030 and 1058 errors (can't access gp.ini from sysvol), checking the
services mmc I see that DNS client service, which is set to automatic,
is not started. Attempting to start this service gives me 'access
denied'. Also, I can't ipconfig /flushdns or /registerdns or any ot
those commands, however, nslookup works and all other browsing works
just fine.

I can browse to the sysvol share containing gp.ini on any of the 6
domain controllers we have. Reading about this problem suggests that
the issue may be with DNS running on a domain controller, but I have
not been able to find any issues there and my machine is the only one
on the network with this problem, suggesting it's a local issue.

I've gotten nowhere so far and my next two options are 1) run a repair
install (which I really don't want to do for a multitude of bad
reasons) and 2) change the logon for the dns client service from
'network service' to 'local system' (not sure about this as I don't
know the pw for network service so I could never get it back after the
change).

So, anyone seen this or have any suggestions for things to try?
Thanks in advance.

jhayes
Click to expand...

Is the workstation set to use a DNS server installed on a domain contoller?
Is the DNS server that it is set to running?

Kerry
 
DNS on this machine is set to use one of the two DCs sitting in the
room with me (primary, second is the dc up a level from me, 3rd is the
other DC in the room with me). Yes, all 3 of the DNS servers are up
and running with no errors.

jhayes
 
jhayes said:
DNS on this machine is set to use one of the two DCs sitting in the
room with me (primary, second is the dc up a level from me, 3rd is the
other DC in the room with me). Yes, all 3 of the DNS servers are up
and running with no errors.

jhayes
Click to expand...

Was just checking the obvious. I can't see anything other than to try the
local system account. If that fails then something has gone wrong with the
files, possibly a unregistered dll or something.

Kerry
 
Thanks. I'm pretty much at the end of the rope and wanted to make sure
I didn't have other options before trying something drastic.

jhayes
 
Just wanted to say I changed the logon to use local system and was able
to restart the DNS Client service. I can /flushdns (and other related
commands) from the command line, however, I'm still not able to view GP
objects from AD Users & Computers and I'm still getting the 1030 & 1058
msgs in Event Viewer. <sigh> I'll just use remote desktop to another
machine until I figure out what's happening.

jhayes
 
jhayes said:
Just wanted to say I changed the logon to use local system and was
able to restart the DNS Client service. I can /flushdns (and other
related commands) from the command line, however, I'm still not able
to view GP objects from AD Users & Computers and I'm still getting
the 1030 & 1058 msgs in Event Viewer. <sigh> I'll just use remote
desktop to another machine until I figure out what's happening.

jhayes
Click to expand...

It sounds like permissions are messed up somewhere on this machine. It may
be quicker just to bite the bullet and rebuild it.

Kerry
 
Back
Top