M
Matt Fleharty
Hi,
I've got such a small setup but so many problems. I'll describe first
what's going on and what I've tried, then at the bottom of this
message is all my output from dcdiag, netdiag, and ipconfig.
Setup: I've got 1 Domain Controller in 1 single-label Domain. The DC
is Windows 2000 Server SP4. This box is also the DNS server. It's
pointing to itself as the only DNS Server.
Problem: Based on the dcdiag and netdiag output, I'm assuming that
all the errors generated by those are the result of a DNS problem.
I'd like to fix those problems because eventually I want to transfer
all of AD to another machine so that I can upgrade the drives in the
machine currently running AD. The reason I need to get AD off the
machine first is so I can ghost the drives.
But if the problem is with DNS, I can't get my DNS to work correctly.
First, I can't get my subfolders to show up in my FLZ. I've deleted
everything DNS and started from scratch. I deleted the FLZ from DNS
and ADUC; I deleted domain.dns in /winnt/system32/dns and in /backup.
I deleted netlogon.dns and netlogon.dnb in /winnt/system32/config.
Then I re-created the FLZ, made it Standard Primary, set Allow Dynamic
Updates to Yes. Tried net stop netlogon and net start netlogon, then
ipconfig /registerdns. Didn't work. Promoted the FLZ to
AD-integrated and did the same process over again. Still didn't work.
I've added the UpdateTopLevelDomainZones registry key in
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
and rebooted (from MSKB 300684). My FLZ matches my domain name. I
have forwarders enabled and listed. Still, my subfolders don't show
up.
I'm assuming that if I can get DNS working, then I can successfully
run a dcdiag /fix; then I can successfully run DCPROMO on another
machine and transfer the FSMO roles (I tried DCPROMO on the 2nd box
but couldn't get the two machines to replicate), demote the server
we're talking about and ghost the drives!
I should also note that based on the dcdiag output, I thought maybe I
had an SPN problem. So I ran setspn -r nero and got the following
output:
Failed to crack name uspc\nero into the FQDN, (0) 1 0x2
Here's the rest of the output below. Thanks.
Matt
P.S.- Anyone know how to change the thermostat on a '99 Chevy
Cavalier? POSSIBLY a different discussion!
DC Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial non skippeable tests
Testing server: Default-First-Site-Name\NERO
Starting test: Connectivity
NERO's server GUID DNS name could not be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(a89f99bb-94e6-44e9-ba22-94c3a9fd7f10._msdcs.uspc) couldn't
be
resolved, the server name (nero.uspc) resolved to the IP
address
(192.168.1.3) and was pingable. Check that the IP address is
registered correctly with the DNS server.
......................... NERO failed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\NERO
Skipping all tests, because server NERO is
not responding to directory service requests
Running enterprise tests on : uspc
Starting test: Intersite
......................... uspc passed test Intersite
Starting test: FsmoCheck
......................... uspc passed test FsmoCheck
-------------------------------------------------------------
I got the same output w/ dcdiag /fix.
Next, I ran netdiag /fix. Here's that output:
......................................
Computer Name: NERO
DNS Host Name: nero.uspc
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 6 Model 8 Stepping 10, GenuineIntel
List of installed hotfixes :
KB820888
KB823182
KB823559
KB823980
KB824105
KB824141
KB824146
KB825119
KB826232
KB828028
KB828035
KB828741
KB828749
KB829558
KB830352
KB835732
KB837001
KB839643
KB839645
KB840315
KB841872
KB841873
KB842526
Q147222
Q295688
Q828026
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : nero.uspc
IP Address . . . . . . . . : 192.168.1.3
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.1.1
Dns Servers. . . . . . . . : 192.168.1.3
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
No remote names have been found.
WINS service test. . . . . : Skipped
There are no WINS servers configured for this interface.
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{E066912E-2F31-40F5-BBB1-A0120B51DA62}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for
the
'nero.uspc.'. [RCODE_SERVER_FAILURE]
The name 'nero.uspc.' may not be registered in DNS.
[FATAL] Failed to fix: DC DNS entry uspc. re-registeration on DNS
serve
2.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.uspc.
re-registeration o
server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name.
s.uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.pdc._msdcs.uspc.
re-regi
tion on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.gc._msdcs.uspc.
re-regis
ion on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name.
s.gc._msdcs.uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.f60fb00c-4a9a-44c2-bb5a-
40fb52a.domains._msdcs.uspc. re-registeration on DNS server
'192.168.1.3' f
..
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry gc._msdcs.uspc.
re-registeration on
server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
a89f99bb-94e6-44e9-ba22-94c3a9fd7f1
dcs.uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.dc._msdcs.uspc.
re-r
eration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-N
sites.dc._msdcs.uspc. re-registeration on DNS server '192.168.1.3'
failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.dc._msdcs.uspc.
re-regis
ion on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name.
s.dc._msdcs.uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.uspc.
re-registerati
DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-N
sites.uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _gc._tcp.uspc.
re-registeration on
erver '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_gc._tcp.Default-First-Site-Name._s
uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.uspc.
re-registerati
DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.uspc.
re-registeratio
DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.uspc.
re-registeratio
DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Fix Failed: netdiag failed to re-register missing DNS
entries f
is DC on DNS server '192.168.1.3'.
[FATAL] No DNS servers have the DNS records for this DC
registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{E066912E-2F31-40F5-BBB1-A0120B51DA62}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{E066912E-2F31-40F5-BBB1-A0120B51DA62}
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Passed
IPSec policy service is active, but no policy is assigned.
The command completed successfully
..................................................................
ipconfig /all
Windows 2000 IP Configuration
Host Name . . . . . . . . . . . . : nero
Primary DNS Suffix . . . . . . . : uspc
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : uspc
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . : uspc
Description . . . . . . . . . . . : Intel(R) PRO/10
Physical Address. . . . . . . . . : 00-B0-D0-F9-A5-
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.1.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.3
I've got such a small setup but so many problems. I'll describe first
what's going on and what I've tried, then at the bottom of this
message is all my output from dcdiag, netdiag, and ipconfig.
Setup: I've got 1 Domain Controller in 1 single-label Domain. The DC
is Windows 2000 Server SP4. This box is also the DNS server. It's
pointing to itself as the only DNS Server.
Problem: Based on the dcdiag and netdiag output, I'm assuming that
all the errors generated by those are the result of a DNS problem.
I'd like to fix those problems because eventually I want to transfer
all of AD to another machine so that I can upgrade the drives in the
machine currently running AD. The reason I need to get AD off the
machine first is so I can ghost the drives.
But if the problem is with DNS, I can't get my DNS to work correctly.
First, I can't get my subfolders to show up in my FLZ. I've deleted
everything DNS and started from scratch. I deleted the FLZ from DNS
and ADUC; I deleted domain.dns in /winnt/system32/dns and in /backup.
I deleted netlogon.dns and netlogon.dnb in /winnt/system32/config.
Then I re-created the FLZ, made it Standard Primary, set Allow Dynamic
Updates to Yes. Tried net stop netlogon and net start netlogon, then
ipconfig /registerdns. Didn't work. Promoted the FLZ to
AD-integrated and did the same process over again. Still didn't work.
I've added the UpdateTopLevelDomainZones registry key in
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
and rebooted (from MSKB 300684). My FLZ matches my domain name. I
have forwarders enabled and listed. Still, my subfolders don't show
up.
I'm assuming that if I can get DNS working, then I can successfully
run a dcdiag /fix; then I can successfully run DCPROMO on another
machine and transfer the FSMO roles (I tried DCPROMO on the 2nd box
but couldn't get the two machines to replicate), demote the server
we're talking about and ghost the drives!
I should also note that based on the dcdiag output, I thought maybe I
had an SPN problem. So I ran setspn -r nero and got the following
output:
Failed to crack name uspc\nero into the FQDN, (0) 1 0x2
Here's the rest of the output below. Thanks.
Matt
P.S.- Anyone know how to change the thermostat on a '99 Chevy
Cavalier? POSSIBLY a different discussion!
DC Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial non skippeable tests
Testing server: Default-First-Site-Name\NERO
Starting test: Connectivity
NERO's server GUID DNS name could not be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(a89f99bb-94e6-44e9-ba22-94c3a9fd7f10._msdcs.uspc) couldn't
be
resolved, the server name (nero.uspc) resolved to the IP
address
(192.168.1.3) and was pingable. Check that the IP address is
registered correctly with the DNS server.
......................... NERO failed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\NERO
Skipping all tests, because server NERO is
not responding to directory service requests
Running enterprise tests on : uspc
Starting test: Intersite
......................... uspc passed test Intersite
Starting test: FsmoCheck
......................... uspc passed test FsmoCheck
-------------------------------------------------------------
I got the same output w/ dcdiag /fix.
Next, I ran netdiag /fix. Here's that output:
......................................
Computer Name: NERO
DNS Host Name: nero.uspc
System info : Windows 2000 Server (Build 2195)
Processor : x86 Family 6 Model 8 Stepping 10, GenuineIntel
List of installed hotfixes :
KB820888
KB823182
KB823559
KB823980
KB824105
KB824141
KB824146
KB825119
KB826232
KB828028
KB828035
KB828741
KB828749
KB829558
KB830352
KB835732
KB837001
KB839643
KB839645
KB840315
KB841872
KB841873
KB842526
Q147222
Q295688
Q828026
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : nero.uspc
IP Address . . . . . . . . : 192.168.1.3
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.1.1
Dns Servers. . . . . . . . : 192.168.1.3
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
No remote names have been found.
WINS service test. . . . . : Skipped
There are no WINS servers configured for this interface.
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{E066912E-2F31-40F5-BBB1-A0120B51DA62}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for
the
'nero.uspc.'. [RCODE_SERVER_FAILURE]
The name 'nero.uspc.' may not be registered in DNS.
[FATAL] Failed to fix: DC DNS entry uspc. re-registeration on DNS
serve
2.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.uspc.
re-registeration o
server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name.
s.uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.pdc._msdcs.uspc.
re-regi
tion on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.gc._msdcs.uspc.
re-regis
ion on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name.
s.gc._msdcs.uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.f60fb00c-4a9a-44c2-bb5a-
40fb52a.domains._msdcs.uspc. re-registeration on DNS server
'192.168.1.3' f
..
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry gc._msdcs.uspc.
re-registeration on
server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
a89f99bb-94e6-44e9-ba22-94c3a9fd7f1
dcs.uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.dc._msdcs.uspc.
re-r
eration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-N
sites.dc._msdcs.uspc. re-registeration on DNS server '192.168.1.3'
failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.dc._msdcs.uspc.
re-regis
ion on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_ldap._tcp.Default-First-Site-Name.
s.dc._msdcs.uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.uspc.
re-registerati
DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_kerberos._tcp.Default-First-Site-N
sites.uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _gc._tcp.uspc.
re-registeration on
erver '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry
_gc._tcp.Default-First-Site-Name._s
uspc. re-registeration on DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.uspc.
re-registerati
DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.uspc.
re-registeratio
DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.uspc.
re-registeratio
DNS server '192.168.1.3' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAILURE
[FATAL] Fix Failed: netdiag failed to re-register missing DNS
entries f
is DC on DNS server '192.168.1.3'.
[FATAL] No DNS servers have the DNS records for this DC
registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{E066912E-2F31-40F5-BBB1-A0120B51DA62}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{E066912E-2F31-40F5-BBB1-A0120B51DA62}
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Passed
IPSec policy service is active, but no policy is assigned.
The command completed successfully
..................................................................
ipconfig /all
Windows 2000 IP Configuration
Host Name . . . . . . . . . . . . : nero
Primary DNS Suffix . . . . . . . : uspc
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : uspc
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . : uspc
Description . . . . . . . . . . . : Intel(R) PRO/10
Physical Address. . . . . . . . . : 00-B0-D0-F9-A5-
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.1.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.3