What is a function of a secondary DC

[pupo]

Hi
i have a domain with 2 server (primary and secondary DC) for hardware crash
primary DC don't work and i have problem to authenticate my users. My
secondary DC seem not work, can help me? Pheraps i mistake initial
installation? somethings i forgot?
Tia Pupo

 

[Hank Arnold]

Do both servers have DNS installed?

Are both DCs a GC?

Are your users' workstations set up with both servers in the DNS section
of the TCP/IP setup?

Regards,
Hank Arnold

 

[Jorge de Almeida Pinto [MVP]]

are both hosting DNS and GC role?

are all clients and servers pointing to both servers for DNS?

--

Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)

# Jorge de Almeida Pinto # MVP Windows Server - Directory Services

BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx

 

[pupo]

After i add server to domain and lunch dcpromo to add dc, no other is done.
I think we don't make a correct installation.



"Jorge de Almeida Pinto [MVP]"

 

[Burtsev Dmitry]

Hi.
As I can see, problem in your DNS configuration.
You need set up your second DC as DNS server and configure clients to point
on two DNS servers.
Don't forget to set second DC to became global catalog (from Active
directory Sites and Services snap-in).

 

[Jorge Silva]

Hi

install support tools from windows cd, and run from command prompt
dcdiag /d /c /v >dcdiag.log
and
netdiag /debug >netdiag.log

post here the results for these tests.
--
I hope that the information above helps you

Good Luck
Jorge Silva
MCSA
Systems Administrator

 

[Paul Bergson]

I don't see where the info provided points to a DNS issue nor is there the
absolute requirement that this DC be a DNS server. Specifics you bring up
are all good but this doesn't mean this has anything to do with the problem
defined.

In the other post from Jorge brings up the running of debug info which could
help provide needed info.

I would do similar to what Jorge has defined:

Try running netdiag, repadmin and dcdiag. Look for fail, error and warning
errors.

If you don't have the tools installed load them from your install disk.

d:\i386\adminpak.msi (Server tools for remote management of servers)
d:\support\tools\setup.exe (Server Utilities)

Copy the following to a cmd file and run look for error, fail and warn
within the reports. Post any errors you can't figure out. make sure you
modify DC_Name to the name of a dc in your domain.

@echo off

c:
cd \
cd "program files\support tools"

del c:\dcdiag.log
dcdiag /e /c /v /sC_Name /f:c:\dcdiag.log
start c:\dcdiag.log

netdiag.exe /v > c:\netdiag.log
start c:\netdiag.log

repadmin.exe /showrepl dc* /verbose /all /intersite > c:\repl.txt
start c:\repl.txt


See for more details

http://www.microsoft.com/technet/pr...Ref/1d4ce93c-54f2-4069-a708-251509c38837.mspx

--
Paul Bergson MCT, MCSE, MCSA, Security+, CNE, CNA, CCA
http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup

This posting is provided "AS IS" with no warranties, and confers no rights.

 

[Jorge Silva]

I like Paul's batch file very efficient.
--
I hope that the information above helps you

Good Luck
Jorge Silva
MCSA
Systems Administrator

 

[metahugh]

I don't see where the info provided points to a DNS issue nor is there the
absolute requirement that this DC be a DNS server. Specifics you bring up
are all good but this doesn't mean this has anything to do with the problem
defined.

AD requires DNS to function. Maybe this is why the others are asking
if it was installed? A DNS server that supports Active Directory DNS
entries (SRV records) must be present for Active Directory to function
properly.

Hugh
MCSE / MCP+I

 

[Paul Bergson]

Not on every dc. A dc has a network card that can point to a remote dns
server, it doesn't have to reside locally.

--
Paul Bergson MCT, MCSE, MCSA, Security+, CNE, CNA, CCA
http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup

This posting is provided "AS IS" with no warranties, and confers no rights.

 

[Jorge Silva]

Hi

AD requires DNS to function. Maybe this is why the others are asking
if it was installed? A DNS server that supports Active Directory DNS
entries (SRV records) must be present for Active Directory to function
properly.

Sorry but... DNS server role doesn't have to be installed on the AD DC,
doesn't event have to be Windows DNS server.

--
I hope that the information above helps you

Good Luck
Jorge Silva
MCSA
Systems Administrator

 

[metahugh]

What if in Jorge's case his only DNS server with the AD zones in it was
his primary DC?

Hugh
MCSE / MCP+I

 

[metahugh]

Also,

If he only had one DNS server DNS lookups will fail except for cached
lookups.

Hugh
MCSE / MCP+I

 

[Paul Bergson]

DNS could reside on a Linux box as long as the bind is current enough to
update for services. I can;t remember the bind number, but you can google
it to determine that easy enough.

--
Paul Bergson MCT, MCSE, MCSA, Security+, CNE, CNA, CCA
http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup

This posting is provided "AS IS" with no warranties, and confers no rights.

 

[kj]

Actually I recall it only required support for SRV records, not necessarily
"dynamic updates", and I think it was Bind 9 dot something.

Really ugly without dynamic updates as I had one client who insisted upon on
NON MS DNS and NON Dynamic one at that.