Windows 2003 DNS error 4010

D

D Daniele

On a reboot or restart of the DNS service, the following
error is produced:
DNS server was unable to create a resource record for
dsaguid_msdcs.<forestdomain> in the zone <forestdomain>.
The Active Directory definition of this resource record is
corrupt or contains an invalid DNS name. The event data
contains the error: Event data <7b 00 00 00>.

The MS site has no reference to this error.

Replication is fully functional, and DCdiag, Netdiag and
DNSlint all report a clean environment.

Any suggestions on what the issue is and how to correct?
 
K

Kevin D. Goodknecht [MVP]

In
D Daniele said:
On a reboot or restart of the DNS service, the following
error is produced:
DNS server was unable to create a resource record for
dsaguid_msdcs.<forestdomain> in the zone <forestdomain>.
The Active Directory definition of this resource record is
corrupt or contains an invalid DNS name. The event data
contains the error: Event data <7b 00 00 00>.

The MS site has no reference to this error.

Replication is fully functional, and DCdiag, Netdiag and
DNSlint all report a clean environment.

Any suggestions on what the issue is and how to correct?
Click to expand...

First I need to ask are you pointing the DC to its own IP address for DNS,
Only?(no ISPs DNS should be used on any NIC in an AD domain)
 
D

D Daniele

Kevin,

The DC is pointing to the DNS service (on the same
machine). There are two DCs (each running DNS). DC1
points to itself and DC2 points to DC1 and a secondary to
DC2 (itself). There is no forwarder on these DNS servers
and no connectivity to the Internet.

I have attempted to delete the records called out in the
event log and let the system re-create. The error message
still occurs on re-start of DNS, also the records were
recreated.
 
K

Kevin D. Goodknecht [MVP]

In
D Daniele said:
Kevin,

The DC is pointing to the DNS service (on the same
machine). There are two DCs (each running DNS). DC1
points to itself and DC2 points to DC1 and a secondary to
DC2 (itself). There is no forwarder on these DNS servers
and no connectivity to the Internet.

I have attempted to delete the records called out in the
event log and let the system re-create. The error message
still occurs on re-start of DNS, also the records were
recreated.
Click to expand...
From your original post it describes the error:
corrupt or contains an invalid DNS name. The event data
Click to expand...
Does your machine name have an invalid character in its name?
Valid DNS names include:
a.. The letters a-z and A-Z.
b.. The numbers 0-9.
c.. The hyphen (-) character.
Host names may begin with a letter or a number and cannot be longer than 63
characters.
 
D

D Daniele

Kevin,

No, the names are valid. Host name starts with a letter
and is 14 characters in length, only letters and numbers.
Domain names are again valid, only letters and a hyphen.
 
A

Ace Fekay [MVP]

In
D Daniele said:
Kevin,

No, the names are valid. Host name starts with a letter
and is 14 characters in length, only letters and numbers.
Domain names are again valid, only letters and a hyphen.
Click to expand...

Kevin, do you think it's maybe in the domain name?

D Daniele,
Is there an underscore in the domain name?
Is the domain name a single label name?

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
D

D Daniele

Kevin &Ace,

The domain name doesn't contain an underscore (at least
the part I have control over). There is a hyphen in the
domain name structure. The entries in question are within
the dsaguid._msdcs.<forestdomain> zone.

It is a three part domain name: NNNNNN-MM.XX.CCC (actual
length and format)
The host name is 14 characters in length.

The error is generated at the startup of the DNS service.

There is also a child domain in the environment:
Domain name: aaa.nnnnnn-mm.xx.ccc

No errors occure within the child domain DNS and the zone
has been correctly replicated to all DNS services both in
the root and child domain.
 
K

Kevin D. Goodknecht [MVP]

In
D Daniele said:
Kevin &Ace,

The domain name doesn't contain an underscore (at least
the part I have control over). There is a hyphen in the
domain name structure. The entries in question are within
the dsaguid._msdcs.<forestdomain> zone.

It is a three part domain name: NNNNNN-MM.XX.CCC (actual
length and format)
The host name is 14 characters in length.

The error is generated at the startup of the DNS service.

There is also a child domain in the environment:
Domain name: aaa.nnnnnn-mm.xx.ccc

No errors occure within the child domain DNS and the zone
has been correctly replicated to all DNS services both in
the root and child domain.
Click to expand...
Can we see an unedited ipconfig /all for the DC(s) and the exact domain name
in AD Users & Computers
It is possible that the zone in AD is corrupted you can reinstall the Active
Directory zone to see if it clears this up. Here are the instructions for
that process, if you follow it exactly as described you will have a clean
install of the zone. I have had to do this once so I know if there is any
corrupted data it will clear it up.
294328 - How to Reinstall a Dynamic DNS Active Directory- Integrated Zone
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q294328&FR=1
 
G

Guest

Kevin,

I looked at the Q article...Since, there are no other
errors associated with DNS, except for the two event logs,
I am hesitant to totally remove and rebuild at this point.

Thank you for your feedback..
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Dns Error 4010 1
Event Viewer, Error 4010 1
4010 Error continue 3
DNS 4010 Errors 6
DNS Error 1
Error 4010 5
Loaded SP4, now have 4010 error, Unable to load RR (CNAME of SVR's 6
Event ID 4010 1

Top