domain client problem

[Hal Leemux]

Hi everybody,

Whilst trying to fix an unrelated problem I un-installed/reinstalled TCP/IP
on a windows 2000 client.

The client now doesn't want to join its old domain and gives the message
'the domain name "ABC" is either invalid or does not exist'. IPconfig gives
one of those wierd 169.254.xxx.xxx APIPA addresses.

The only way I have been able to fix this is by giving it a fixed IP instead
of using DCHP but now I get a different message 'interface is unknown'.

I would be so grateful if anyone thinks they know what is going on.

Yours Hopefully,

Hal Leemux

PS I've included the netsetup.log below of what is happening just incase
anyone understands them more than I do (not at all!!!)
NB Hera is the Client, Kronos is server



08/21
17:54:08 -----------------------------------------------------------------
08/21 17:54:08 NetpValidateName: checking to see if 'secure' is valid as
type 3 name
08/21 17:54:08 NetpCheckDomainNameIsValid [ Exists ] for 'secure' returned
0x0
08/21 17:54:08 NetpValidateName: name 'secure' is valid for type 3
08/21
17:54:19 -----------------------------------------------------------------
08/21 17:54:19 NetpDoDomainJoin
08/21 17:54:19 NetpMachineValidToJoin: 'HERA'
08/21 17:54:19 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:19 NetpMachineValidToJoin: status: 0x0
08/21 17:54:19 NetpJoinDomain
08/21 17:54:19 Machine: HERA
08/21 17:54:19 Domain: secure
08/21 17:54:19 MachineAccountOU: (NULL)
08/21 17:54:19 Account: secure\administrator
08/21 17:54:19 Options: 0x27
08/21 17:54:19 OS Version: 5.0
08/21 17:54:19 Build number: 2195
08/21 17:54:19 ServicePack: Service Pack 4
08/21 17:54:19 NetpValidateName: checking to see if 'secure' is valid as
type 3 name
08/21 17:54:19 NetpCheckDomainNameIsValid [ Exists ] for 'secure' returned
0x0
08/21 17:54:19 NetpValidateName: name 'secure' is valid for type 3
08/21 17:54:19 NetpDsGetDcName: trying to find DC in domain 'secure', flags:
0x1020
08/21 17:54:34 NetpDsGetDcName: failed to find a DC having account 'HERA$':
0x525
08/21 17:54:34 NetpDsGetDcName: found DC '\\KRONOS' in the specified domain
08/21 17:54:34 NetpJoinDomain: status of connecting to dc '\\KRONOS': 0x0
08/21 17:54:34 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:34 NetpLsaOpenSecret: status: 0xc0000034
08/21 17:54:34 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:34 NetpLsaOpenSecret: status: 0xc0000034
08/21 17:54:35 NetpManageMachineAccountWithSid: NetUserAdd on '\\KRONOS' for
'HERA$' failed: 0x8b0
08/21 17:54:35 NetpManageMachineAccountWithSid: status of attempting to set
password on '\\KRONOS' for 'HERA$': 0x0
08/21 17:54:35 NetpJoinDomain: status of creating account: 0x0
08/21 17:54:35 NetpJoinDomain: status of setting netlogon cache: 0x0
08/21 17:54:35 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:35 NetpSetLsaPrimaryDomain: for 'SECURE' status: 0x0
08/21 17:54:35 NetpJoinDomain: status of setting LSA pri. domain: 0x0
08/21 17:54:36 NetpJoinDomain: status of managing local groups: 0x0
08/21 17:54:36 NetpJoinDomain: status of setting
ComputerNamePhysicalDnsDomain to 'secure.otcscoop.com': 0x0
08/21 17:54:36 NetpJoinDomain: status of starting Netlogon: 0x0
08/21 17:54:36 NetpWaitForNetlogonSc: waiting for netlogon secure channel
setup...
08/21 17:56:36 NetpWaitForNetlogonSc: status: 0x6b5, sub-status: 0x0
08/21 17:56:36 NetpJoinDomain: initiaing a rollback due to earlier errors
08/21 17:56:37 NetpJoinDomain: rollback: status of disabling
netlogon+w32time: 0x0
08/21 17:56:37 NetpJoinDomain: rollback: local group management: 0x0
08/21 17:56:37 NetpSetLsaPrimaryDomain: for 'WORKGROUP' status: 0x0
08/21 17:56:37 NetpJoinDomain: rollback: status of setting NULL domain sid:
0x0
08/21 17:56:37 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:56:37 NetpManageMachineAccountWithSid: status of disabling account
'HERA$' on '\\KRONOS': 0x0
08/21 17:56:37 NetpJoinDomain: rollback: status of deleting computer
account: 0x0
08/21 17:56:37 NetpLsaOpenSecret: status: 0x0
08/21 17:56:37 NetpJoinDomain: rollback: status of deleting secret: 0x0
08/21 17:56:37 NetpJoinDomain: status of disconnecting from '\\KRONOS': 0x0
08/21 17:56:37 NetpDoDomainJoin: status: 0x6b5

 

[Ace Fekay [MVP]]

In

Hi everybody,

Whilst trying to fix an unrelated problem I un-installed/reinstalled
TCP/IP on a windows 2000 client.

The client now doesn't want to join its old domain and gives the
message 'the domain name "ABC" is either invalid or does not exist'.
IPconfig gives one of those wierd 169.254.xxx.xxx APIPA addresses.

The only way I have been able to fix this is by giving it a fixed IP
instead of using DCHP but now I get a different message 'interface is
unknown'.

I would be so grateful if anyone thinks they know what is going on.

Yours Hopefully,

Hal Leemux

PS I've included the netsetup.log below of what is happening just
incase anyone understands them more than I do (not at all!!!)
NB Hera is the Client, Kronos is server



08/21
17:54:08
-----------------------------------------------------------------
08/21 17:54:08 NetpValidateName: checking to see if 'secure' is valid
as type 3 name 08/21 17:54:08 NetpCheckDomainNameIsValid [ Exists ]
for 'secure' returned 0x0
08/21 17:54:08 NetpValidateName: name 'secure' is valid for type 3
08/21
17:54:19
-----------------------------------------------------------------
08/21 17:54:19 NetpDoDomainJoin 08/21 17:54:19
NetpMachineValidToJoin: 'HERA' 08/21 17:54:19
NetpGetLsaPrimaryDomain: status: 0x0 08/21 17:54:19
NetpMachineValidToJoin: status: 0x0 08/21 17:54:19 NetpJoinDomain
08/21 17:54:19 Machine: HERA
08/21 17:54:19 Domain: secure
08/21 17:54:19 MachineAccountOU: (NULL)
08/21 17:54:19 Account: secure\administrator
08/21 17:54:19 Options: 0x27
08/21 17:54:19 OS Version: 5.0
08/21 17:54:19 Build number: 2195
08/21 17:54:19 ServicePack: Service Pack 4
08/21 17:54:19 NetpValidateName: checking to see if 'secure' is valid
as type 3 name
08/21 17:54:19 NetpCheckDomainNameIsValid [ Exists ] for 'secure'
returned 0x0
08/21 17:54:19 NetpValidateName: name 'secure' is valid for type 3
08/21 17:54:19 NetpDsGetDcName: trying to find DC in domain 'secure',
flags: 0x1020
08/21 17:54:34 NetpDsGetDcName: failed to find a DC having account
'HERA$': 0x525
08/21 17:54:34 NetpDsGetDcName: found DC '\\KRONOS' in the specified
domain 08/21 17:54:34 NetpJoinDomain: status of connecting to dc
'\\KRONOS': 0x0 08/21 17:54:34 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:34 NetpLsaOpenSecret: status: 0xc0000034
08/21 17:54:34 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:34 NetpLsaOpenSecret: status: 0xc0000034
08/21 17:54:35 NetpManageMachineAccountWithSid: NetUserAdd on
'\\KRONOS' for 'HERA$' failed: 0x8b0
08/21 17:54:35 NetpManageMachineAccountWithSid: status of attempting
to set password on '\\KRONOS' for 'HERA$': 0x0
08/21 17:54:35 NetpJoinDomain: status of creating account: 0x0
08/21 17:54:35 NetpJoinDomain: status of setting netlogon cache: 0x0
08/21 17:54:35 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:35 NetpSetLsaPrimaryDomain: for 'SECURE' status: 0x0
08/21 17:54:35 NetpJoinDomain: status of setting LSA pri. domain: 0x0
08/21 17:54:36 NetpJoinDomain: status of managing local groups: 0x0
08/21 17:54:36 NetpJoinDomain: status of setting
ComputerNamePhysicalDnsDomain to 'secure.otcscoop.com': 0x0
08/21 17:54:36 NetpJoinDomain: status of starting Netlogon: 0x0
08/21 17:54:36 NetpWaitForNetlogonSc: waiting for netlogon secure
channel setup...
08/21 17:56:36 NetpWaitForNetlogonSc: status: 0x6b5, sub-status: 0x0
08/21 17:56:36 NetpJoinDomain: initiaing a rollback due to earlier
errors 08/21 17:56:37 NetpJoinDomain: rollback: status of disabling
netlogon+w32time: 0x0
08/21 17:56:37 NetpJoinDomain: rollback: local group management: 0x0
08/21 17:56:37 NetpSetLsaPrimaryDomain: for 'WORKGROUP' status: 0x0
08/21 17:56:37 NetpJoinDomain: rollback: status of setting NULL
domain sid: 0x0
08/21 17:56:37 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:56:37 NetpManageMachineAccountWithSid: status of disabling
account 'HERA$' on '\\KRONOS': 0x0
08/21 17:56:37 NetpJoinDomain: rollback: status of deleting computer
account: 0x0
08/21 17:56:37 NetpLsaOpenSecret: status: 0x0
08/21 17:56:37 NetpJoinDomain: rollback: status of deleting secret:
0x0 08/21 17:56:37 NetpJoinDomain: status of disconnecting from
'\\KRONOS': 0x0 08/21 17:56:37 NetpDoDomainJoin: status: 0x6b5

Sounds like something is corrupted. See my response to your other post about
this same error.

Also, since you gave us a little more info, it apparently seems that you
have a single label domain name, called "Secure" and not in the form of:
secure.com
secure.net
secure.local
secure.hal
etc.

Can you confirm this? This can be a bad issue with AD. I'll post more info
upon confirmation.

As for the 169.254.x.x issue, that means that it is not getting an IP
address from the DHCP server. Most likely reason is that either the DHCP
server is down, ran out of addresses, the client's NIC is misoncigured,
conflicting drivers on the client, corrupted NIC installation, lose wire,
etc. What was it that you just "fixed" or dealt with prior to this? Was this
machine working on the network before?

As for a DNS issue, which would or would not relate to the single label
name:
You may also probably have your ISP's DNS server address in the machine's IP
properties. Can you confirm that you do not?

When adding to a domain (and a thousand other AD tasks) it queries DNS to
"look" for the domain, but needs to query ONLY your internal DNS server(s).
This is because AD stores ALL of it's resource and service locations in DNS,
specifically your internal DNS server. If the ISP's is in there, it's asking
it, and it does not have the answer.

Recommended setup with DNS configuration of clients and DCs:
1. Point ALL your internal machines ONLY to your internal DNS server.
2. For efficient Internet resolution, setup a forwarder. If the option is
grayed out, delete the Root zone. This article shows you how to do both of
these:
http://support.microsoft.com/?id=300202

Here's a little more info on AD and it's DNS requirements:
http://support.microsoft.com/?id=291382


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Levi Patrick II]

Hello,


Post a dump of the "ipconfig /all" command at a command prompt. It looks
like the names you want, herra and kronnos, are not what you configured.

Can you ping 127.0.0.1, the PCs IP and the DHCP server?

Levi
www.TheITDoctor.com

Hi everybody,

Whilst trying to fix an unrelated problem I un-installed/reinstalled TCP/IP
on a windows 2000 client.

The client now doesn't want to join its old domain and gives the message
'the domain name "ABC" is either invalid or does not exist'. IPconfig gives
one of those wierd 169.254.xxx.xxx APIPA addresses.

The only way I have been able to fix this is by giving it a fixed IP instead
of using DCHP but now I get a different message 'interface is unknown'.

I would be so grateful if anyone thinks they know what is going on.

Yours Hopefully,

Hal Leemux

PS I've included the netsetup.log below of what is happening just incase
anyone understands them more than I do (not at all!!!)
NB Hera is the Client, Kronos is server



08/21
17:54:08 -----------------------------------------------------------------
08/21 17:54:08 NetpValidateName: checking to see if 'secure' is valid as
type 3 name
08/21 17:54:08 NetpCheckDomainNameIsValid [ Exists ] for 'secure' returned
0x0
08/21 17:54:08 NetpValidateName: name 'secure' is valid for type 3
08/21
17:54:19 -----------------------------------------------------------------
08/21 17:54:19 NetpDoDomainJoin
08/21 17:54:19 NetpMachineValidToJoin: 'HERA'
08/21 17:54:19 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:19 NetpMachineValidToJoin: status: 0x0
08/21 17:54:19 NetpJoinDomain
08/21 17:54:19 Machine: HERA
08/21 17:54:19 Domain: secure
08/21 17:54:19 MachineAccountOU: (NULL)
08/21 17:54:19 Account: secure\administrator
08/21 17:54:19 Options: 0x27
08/21 17:54:19 OS Version: 5.0
08/21 17:54:19 Build number: 2195
08/21 17:54:19 ServicePack: Service Pack 4
08/21 17:54:19 NetpValidateName: checking to see if 'secure' is valid as
type 3 name
08/21 17:54:19 NetpCheckDomainNameIsValid [ Exists ] for 'secure' returned
0x0
08/21 17:54:19 NetpValidateName: name 'secure' is valid for type 3
08/21 17:54:19 NetpDsGetDcName: trying to find DC in domain 'secure', flags:
0x1020
08/21 17:54:34 NetpDsGetDcName: failed to find a DC having account 'HERA$':
0x525
08/21 17:54:34 NetpDsGetDcName: found DC '\\KRONOS' in the specified domain
08/21 17:54:34 NetpJoinDomain: status of connecting to dc '\\KRONOS': 0x0
08/21 17:54:34 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:34 NetpLsaOpenSecret: status: 0xc0000034
08/21 17:54:34 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:34 NetpLsaOpenSecret: status: 0xc0000034
08/21 17:54:35 NetpManageMachineAccountWithSid: NetUserAdd on '\\KRONOS' for
'HERA$' failed: 0x8b0
08/21 17:54:35 NetpManageMachineAccountWithSid: status of attempting to set
password on '\\KRONOS' for 'HERA$': 0x0
08/21 17:54:35 NetpJoinDomain: status of creating account: 0x0
08/21 17:54:35 NetpJoinDomain: status of setting netlogon cache: 0x0
08/21 17:54:35 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:54:35 NetpSetLsaPrimaryDomain: for 'SECURE' status: 0x0
08/21 17:54:35 NetpJoinDomain: status of setting LSA pri. domain: 0x0
08/21 17:54:36 NetpJoinDomain: status of managing local groups: 0x0
08/21 17:54:36 NetpJoinDomain: status of setting
ComputerNamePhysicalDnsDomain to 'secure.otcscoop.com': 0x0
08/21 17:54:36 NetpJoinDomain: status of starting Netlogon: 0x0
08/21 17:54:36 NetpWaitForNetlogonSc: waiting for netlogon secure channel
setup...
08/21 17:56:36 NetpWaitForNetlogonSc: status: 0x6b5, sub-status: 0x0
08/21 17:56:36 NetpJoinDomain: initiaing a rollback due to earlier errors
08/21 17:56:37 NetpJoinDomain: rollback: status of disabling
netlogon+w32time: 0x0
08/21 17:56:37 NetpJoinDomain: rollback: local group management: 0x0
08/21 17:56:37 NetpSetLsaPrimaryDomain: for 'WORKGROUP' status: 0x0
08/21 17:56:37 NetpJoinDomain: rollback: status of setting NULL domain sid:
0x0
08/21 17:56:37 NetpGetLsaPrimaryDomain: status: 0x0
08/21 17:56:37 NetpManageMachineAccountWithSid: status of disabling account
'HERA$' on '\\KRONOS': 0x0
08/21 17:56:37 NetpJoinDomain: rollback: status of deleting computer
account: 0x0
08/21 17:56:37 NetpLsaOpenSecret: status: 0x0
08/21 17:56:37 NetpJoinDomain: rollback: status of deleting secret: 0x0
08/21 17:56:37 NetpJoinDomain: status of disconnecting from '\\KRONOS': 0x0
08/21 17:56:37 NetpDoDomainJoin: status: 0x6b5