----- Ace Fekay [MVP] wrote: ----
In Eric <
[email protected]> posted their thoughts, then
offered min
<snip
Sorry to hear that didn't work. Kind of at wits end on what's going on. I
it's not advertising and you'r still getting the Event log errors, then whe
the netlogon service intializes, it's not getting that data from AD, henc
why they're not registering
Can you remember when this first started happening? If so, can you remembe
what was changed, installed or anything happened prior to that? Are ther
any services that conflict with port 88 or anything else on the machine tha
may be in someway conflicting with the KDC services
The only thing that was changed was installing service pack 4 but it was working ok but one day it just would'nt start the KDC service and DNS was not working properly so I had to reinstall DNS. No services conflict with port 88 or the KDC services
Are any services disabled on the system, such as the DHCP client Service o
the TCP/IP NetBIOS Helper service? How about the MS Client or the F&
Serices on the NIC? Those mentioned are actually required dependenc
services (whether DHCP or not) for proper registration, DNS resolution
among other functionality
All the services mention above are started ok
Do you possibly have a backup to restore it? If this is one of more DCs i
that domain, maybe a demotion and re-promotion will fix it up for yo
without losing any domain info (users or groups)
I have a full backup to restore it if needed. This will be my last option to demote and re-promote the DC. It just gets messy because the DC is over a 32k/64k link to our hub site. We normally DCPROMO in our hub site and ship it to the branch site, move it to the correct site, change IP address, etc etc..
Here are some links that may help or may not, but thought I would suppl
them for you. Maybe we can enable error logging and such. Hope these help
but I'm starting to lean on demoting that DC and re-promoting it, unless w
can find what it is
Thanks for all your help
262177 - HOW TO Enable Kerberos Event Logging
http://support.microsoft.com/?id=26217
Kerberos Error Failure Codes (lists ports used as well)
http://www.windowsitlibrary.com/Content/617/06/7.html#
Description of Common Kerberos-Related Errors in Windows 2000 (Q230476)
http://support.microsoft.com/?id=23047
314980 - HOW TO Configure Active Directory Diagnostic Event Logging i
Windows 2000
http://support.microsoft.com/?kbid=31498
Chapter 10 - Active Directory Diagnostics, Troubleshooting, and Recover
[Including LDAP]
http://www.microsoft.com/resources/...server/reskit/en-us/distsys/part1/dsgch10.msp
305837 - DNS, Intersite Messaging, Global Catalog, NTFRS, and Invali
Credentials Error Messages on Domain Controller
http://support.microsoft.com/?id=30583
--
Regards
Ac
Please direct all replies to the newsgroup so all can benefit
This posting is provided "AS-IS" with no warranties and confers n
rights
Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MV
Microsoft Windows MVP - Active Director