Forum Search:
Forum.Brain-Cluster.com: Brain Cluster Technical Forum
Ultimate forum for Technical Discussions

Home » Microsoft » Windows Server » Active Directory » Cannot access ADUC on DC
Cannot access ADUC on DC [message #308579] Thu, 05 November 2009 06:34 Go to next message
Simon  is currently offline Simon  United Kingdom
Messages: 157
Registered: July 2009
Senior Member
Hi,
I have a customer with a small setup between two sites. I got a call
this morning saying they cannot access any network shares on the server
at one site (both Serer 2003). I was unable to RDP to the server either
as it will not authenticate the administrator user. Onsite today and
luckily the console isn't locked so I tried to access aduc from there
and get the message:
naming information cannot be located for the following reason server is
not operational. Looking about the internet points to dns problems but
all look good there, however there are numerous 4000,4007,4015 entries
in the event log of dns stating check AD is functioning and reload the zone.
The server at the other site seems fine.
Any ideas how to progress on this, I didn't want to reboot this server
in case I was unable to login after.
I normally only deal with SBS and have never come across this issue before.
Thanks for any replies.
Simon
Re: Cannot access ADUC on DC [message #308597 is a reply to message #308579] Thu, 05 November 2009 07:00 Go to previous messageGo to next message
meiweb  is currently offline meiweb  Germany
Messages: 2225
Registered: September 2009
Senior Member
Hello Simon,

Make sure DNS on all NICs is only configured to use domain internal DNS servers.
Please post an unedited ipconfig /all from the DC/DNS servers, so we can
exclude this.

Also run the support tools dcdiag /v, netdiag /v to check for errors.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Hi,
> I have a customer with a small setup between two sites. I got a call
> this morning saying they cannot access any network shares on the
> server
> at one site (both Serer 2003). I was unable to RDP to the server
> either
> as it will not authenticate the administrator user. Onsite today and
> luckily the console isn't locked so I tried to access aduc from there
> and get the message:
> naming information cannot be located for the following reason server
> is
> not operational. Looking about the internet points to dns problems but
> all look good there, however there are numerous 4000,4007,4015 entries
> in the event log of dns stating check AD is functioning and reload the
> zone.
> The server at the other site seems fine.
> Any ideas how to progress on this, I didn't want to reboot this server
> in case I was unable to login after.
> I normally only deal with SBS and have never come across this issue
> before.
> Thanks for any replies.
> Simon
Re: Cannot access ADUC on DC [message #308606 is a reply to message #308597] Thu, 05 November 2009 07:15 Go to previous messageGo to next message
Simon  is currently offline Simon  United Kingdom
Messages: 157
Registered: July 2009
Senior Member
Hi Meinholf

Thanks for the reply, I'm not on site now but can confirm that ipconfig
/all showed only this server and also the server at the other location
as dns servers. The server didn't have those tools installed so I
couldn't run them, I'll be back onsite tomorrow with my server CDs to
install these. Luckily the main app is sql and this is still running fine.
Simon

Meinolf Weber [MVP-DS] wrote:
> Hello Simon,
>
> Make sure DNS on all NICs is only configured to use domain internal DNS
> servers. Please post an unedited ipconfig /all from the DC/DNS servers,
> so we can exclude this.
>
> Also run the support tools dcdiag /v, netdiag /v to check for errors.
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>> Hi,
>> I have a customer with a small setup between two sites. I got a call
>> this morning saying they cannot access any network shares on the
>> server
>> at one site (both Serer 2003). I was unable to RDP to the server
>> either
>> as it will not authenticate the administrator user. Onsite today and
>> luckily the console isn't locked so I tried to access aduc from there
>> and get the message:
>> naming information cannot be located for the following reason server
>> is
>> not operational. Looking about the internet points to dns problems but
>> all look good there, however there are numerous 4000,4007,4015 entries
>> in the event log of dns stating check AD is functioning and reload the
>> zone.
>> The server at the other site seems fine.
>> Any ideas how to progress on this, I didn't want to reboot this server
>> in case I was unable to login after.
>> I normally only deal with SBS and have never come across this issue
>> before.
>> Thanks for any replies.
>> Simon
>
>
Re: Cannot access ADUC on DC [message #308613 is a reply to message #308606] Thu, 05 November 2009 07:37 Go to previous messageGo to next message
meiweb  is currently offline meiweb  Germany
Messages: 2225
Registered: September 2009
Senior Member
Hello Simon,

Running applications like SQL or Exchange on DCs is not recommended. DCs
should only do there basic job, AD/DNS/GC and maybe DHCP if no member server
exists.

Make sure that the DNS servers are not forwarding to themself, forwarders
should be configured to the ISPs DNS server. Also if not done create a reverse
lookup zone.

Additional see:
http://www.eventid.net/display.asp?eventid=4000&eventno= 296&source=DNS&phase=1

http://www.eventid.net/display.asp?eventid=4007&eventno= 4280&source=DNS&phase=1

http://www.eventid.net/display.asp?eventid=4015&eventno= 333&source=DNS&phase=1

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Hi Meinholf
>
> Thanks for the reply, I'm not on site now but can confirm that
> ipconfig
> /all showed only this server and also the server at the other location
> as dns servers. The server didn't have those tools installed so I
> couldn't run them, I'll be back onsite tomorrow with my server CDs to
> install these. Luckily the main app is sql and this is still running
> fine.
> Simon
> Meinolf Weber [MVP-DS] wrote:
>
>> Hello Simon,
>>
>> Make sure DNS on all NICs is only configured to use domain internal
>> DNS servers. Please post an unedited ipconfig /all from the DC/DNS
>> servers, so we can exclude this.
>>
>> Also run the support tools dcdiag /v, netdiag /v to check for errors.
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>> Hi,
>>> I have a customer with a small setup between two sites. I got a call
>>> this morning saying they cannot access any network shares on the
>>> server
>>> at one site (both Serer 2003). I was unable to RDP to the server
>>> either
>>> as it will not authenticate the administrator user. Onsite today and
>>> luckily the console isn't locked so I tried to access aduc from
>>> there
>>> and get the message:
>>> naming information cannot be located for the following reason server
>>> is
>>> not operational. Looking about the internet points to dns problems
>>> but
>>> all look good there, however there are numerous 4000,4007,4015
>>> entries
>>> in the event log of dns stating check AD is functioning and reload
>>> the
>>> zone.
>>> The server at the other site seems fine.
>>> Any ideas how to progress on this, I didn't want to reboot this
>>> server
>>> in case I was unable to login after.
>>> I normally only deal with SBS and have never come across this issue
>>> before.
>>> Thanks for any replies.
>>> Simon
Re: Cannot access ADUC on DC [message #308636 is a reply to message #308613] Thu, 05 November 2009 08:01 Go to previous messageGo to next message
Simon  is currently offline Simon  United Kingdom
Messages: 157
Registered: July 2009
Senior Member
Hi Meinolf,

Thanks again. This is a customer I inherited and never installed this
system. Not only is the DC used for sql etc it's also used as a
workstation by a vet in the practise where it is. I have told them many
times about this. I wouldn't allow one of my SBS sites to use their
server for anything but SBS related functions. I'll check out on those
links when I am onsite in the morning.
The system has been running for a couple of years as is so I am confused
why this issue would occur now.
Regards
Simon

Meinolf Weber [MVP-DS] wrote:
> Hello Simon,
>
> Running applications like SQL or Exchange on DCs is not recommended. DCs
> should only do there basic job, AD/DNS/GC and maybe DHCP if no member
> server exists.
>
> Make sure that the DNS servers are not forwarding to themself,
> forwarders should be configured to the ISPs DNS server. Also if not done
> create a reverse lookup zone.
>
> Additional see:
> http://www.eventid.net/display.asp?eventid=4000&eventno= 296&source=DNS&phase=1
>
>
> http://www.eventid.net/display.asp?eventid=4007&eventno= 4280&source=DNS&phase=1
>
>
> http://www.eventid.net/display.asp?eventid=4015&eventno= 333&source=DNS&phase=1
>
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>> Hi Meinholf
>>
>> Thanks for the reply, I'm not on site now but can confirm that
>> ipconfig
>> /all showed only this server and also the server at the other location
>> as dns servers. The server didn't have those tools installed so I
>> couldn't run them, I'll be back onsite tomorrow with my server CDs to
>> install these. Luckily the main app is sql and this is still running
>> fine.
>> Simon
>> Meinolf Weber [MVP-DS] wrote:
>>
>>> Hello Simon,
>>>
>>> Make sure DNS on all NICs is only configured to use domain internal
>>> DNS servers. Please post an unedited ipconfig /all from the DC/DNS
>>> servers, so we can exclude this.
>>>
>>> Also run the support tools dcdiag /v, netdiag /v to check for errors.
>>>
>>> Best regards
>>>
>>> Meinolf Weber
>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>> confers no rights.
>>> ** Please do NOT email, only reply to Newsgroups
>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>> Hi,
>>>> I have a customer with a small setup between two sites. I got a call
>>>> this morning saying they cannot access any network shares on the
>>>> server
>>>> at one site (both Serer 2003). I was unable to RDP to the server
>>>> either
>>>> as it will not authenticate the administrator user. Onsite today and
>>>> luckily the console isn't locked so I tried to access aduc from
>>>> there
>>>> and get the message:
>>>> naming information cannot be located for the following reason server
>>>> is
>>>> not operational. Looking about the internet points to dns problems
>>>> but
>>>> all look good there, however there are numerous 4000,4007,4015
>>>> entries
>>>> in the event log of dns stating check AD is functioning and reload
>>>> the
>>>> zone.
>>>> The server at the other site seems fine.
>>>> Any ideas how to progress on this, I didn't want to reboot this
>>>> server
>>>> in case I was unable to login after.
>>>> I normally only deal with SBS and have never come across this issue
>>>> before.
>>>> Thanks for any replies.
>>>> Simon
>
>
Re: Cannot access ADUC on DC [message #309730 is a reply to message #308636] Fri, 06 November 2009 08:42 Go to previous messageGo to next message
Simon  is currently offline Simon  United Kingdom
Messages: 157
Registered: July 2009
Senior Member
Hi,

I've been onsite again and got the tools installed, but ran out of time
on the server before consulting time began (yes I know using a server as
a workstation) I checked out the DC at the other location and this has
entries in the forward dns zone but nothing in the problem server ?
I can't get onto the server again until later tonight, although I have
remote access to it now as I installed VNC as rdp won't authenticate.
Thanks
Simon

Simon wrote:
> Hi Meinolf,
>
> Thanks again. This is a customer I inherited and never installed this
> system. Not only is the DC used for sql etc it's also used as a
> workstation by a vet in the practise where it is. I have told them many
> times about this. I wouldn't allow one of my SBS sites to use their
> server for anything but SBS related functions. I'll check out on those
> links when I am onsite in the morning.
> The system has been running for a couple of years as is so I am confused
> why this issue would occur now.
> Regards
> Simon
>
> Meinolf Weber [MVP-DS] wrote:
>> Hello Simon,
>>
>> Running applications like SQL or Exchange on DCs is not recommended.
>> DCs should only do there basic job, AD/DNS/GC and maybe DHCP if no
>> member server exists.
>>
>> Make sure that the DNS servers are not forwarding to themself,
>> forwarders should be configured to the ISPs DNS server. Also if not
>> done create a reverse lookup zone.
>>
>> Additional see:
>> http://www.eventid.net/display.asp?eventid=4000&eventno= 296&source=DNS&phase=1
>>
>>
>> http://www.eventid.net/display.asp?eventid=4007&eventno= 4280&source=DNS&phase=1
>>
>>
>> http://www.eventid.net/display.asp?eventid=4015&eventno= 333&source=DNS&phase=1
>>
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>
>>> Hi Meinholf
>>>
>>> Thanks for the reply, I'm not on site now but can confirm that
>>> ipconfig
>>> /all showed only this server and also the server at the other location
>>> as dns servers. The server didn't have those tools installed so I
>>> couldn't run them, I'll be back onsite tomorrow with my server CDs to
>>> install these. Luckily the main app is sql and this is still running
>>> fine.
>>> Simon
>>> Meinolf Weber [MVP-DS] wrote:
>>>
>>>> Hello Simon,
>>>>
>>>> Make sure DNS on all NICs is only configured to use domain internal
>>>> DNS servers. Please post an unedited ipconfig /all from the DC/DNS
>>>> servers, so we can exclude this.
>>>>
>>>> Also run the support tools dcdiag /v, netdiag /v to check for errors.
>>>>
>>>> Best regards
>>>>
>>>> Meinolf Weber
>>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>>> confers no rights.
>>>> ** Please do NOT email, only reply to Newsgroups
>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>> Hi,
>>>>> I have a customer with a small setup between two sites. I got a call
>>>>> this morning saying they cannot access any network shares on the
>>>>> server
>>>>> at one site (both Serer 2003). I was unable to RDP to the server
>>>>> either
>>>>> as it will not authenticate the administrator user. Onsite today and
>>>>> luckily the console isn't locked so I tried to access aduc from
>>>>> there
>>>>> and get the message:
>>>>> naming information cannot be located for the following reason server
>>>>> is
>>>>> not operational. Looking about the internet points to dns problems
>>>>> but
>>>>> all look good there, however there are numerous 4000,4007,4015
>>>>> entries
>>>>> in the event log of dns stating check AD is functioning and reload
>>>>> the
>>>>> zone.
>>>>> The server at the other site seems fine.
>>>>> Any ideas how to progress on this, I didn't want to reboot this
>>>>> server
>>>>> in case I was unable to login after.
>>>>> I normally only deal with SBS and have never come across this issue
>>>>> before.
>>>>> Thanks for any replies.
>>>>> Simon
>>
>>
Re: Cannot access ADUC on DC [message #309947 is a reply to message #309730] Fri, 06 November 2009 12:37 Go to previous messageGo to next message
meiweb  is currently offline meiweb  Germany
Messages: 2225
Registered: September 2009
Senior Member
Hello Simon,

What kind of DNS zones are configured on the main site or is that one complete
empty now in forward lookup zone? Which kind of zone is used on the second
DNS server?

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Hi,
>
> I've been onsite again and got the tools installed, but ran out of
> time
> on the server before consulting time began (yes I know using a server
> as
> a workstation) I checked out the DC at the other location and this has
> entries in the forward dns zone but nothing in the problem server ?
> I can't get onto the server again until later tonight, although I have
> remote access to it now as I installed VNC as rdp won't authenticate.
> Thanks
> Simon
> Simon wrote:
>
>> Hi Meinolf,
>>
>> Thanks again. This is a customer I inherited and never installed this
>> system. Not only is the DC used for sql etc it's also used as a
>> workstation by a vet in the practise where it is. I have told them
>> many
>> times about this. I wouldn't allow one of my SBS sites to use their
>> server for anything but SBS related functions. I'll check out on
>> those
>> links when I am onsite in the morning.
>> The system has been running for a couple of years as is so I am
>> confused
>> why this issue would occur now.
>> Regards
>> Simon
>> Meinolf Weber [MVP-DS] wrote:
>>
>>> Hello Simon,
>>>
>>> Running applications like SQL or Exchange on DCs is not recommended.
>>> DCs should only do there basic job, AD/DNS/GC and maybe DHCP if no
>>> member server exists.
>>>
>>> Make sure that the DNS servers are not forwarding to themself,
>>> forwarders should be configured to the ISPs DNS server. Also if not
>>> done create a reverse lookup zone.
>>>
>>> Additional see:
>>> http://www.eventid.net/display.asp?eventid=4000&eventno= 296&source=D
>>> NS&phase=1
>>> http://www.eventid.net/display.asp?eventid=4007&eventno= 4280&source=
>>> DNS&phase=1
>>>
>>> http://www.eventid.net/display.asp?eventid=4015&eventno= 333&source=D
>>> NS&phase=1
>>>
>>> Best regards
>>>
>>> Meinolf Weber
>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>> confers no rights.
>>> ** Please do NOT email, only reply to Newsgroups
>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>> Hi Meinholf
>>>>
>>>> Thanks for the reply, I'm not on site now but can confirm that
>>>> ipconfig
>>>> /all showed only this server and also the server at the other
>>>> location
>>>> as dns servers. The server didn't have those tools installed so I
>>>> couldn't run them, I'll be back onsite tomorrow with my server CDs
>>>> to
>>>> install these. Luckily the main app is sql and this is still
>>>> running
>>>> fine.
>>>> Simon
>>>> Meinolf Weber [MVP-DS] wrote:
>>>>> Hello Simon,
>>>>>
>>>>> Make sure DNS on all NICs is only configured to use domain
>>>>> internal DNS servers. Please post an unedited ipconfig /all from
>>>>> the DC/DNS servers, so we can exclude this.
>>>>>
>>>>> Also run the support tools dcdiag /v, netdiag /v to check for
>>>>> errors.
>>>>>
>>>>> Best regards
>>>>>
>>>>> Meinolf Weber
>>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>>> and
>>>>> confers no rights.
>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>> Hi,
>>>>>> I have a customer with a small setup between two sites. I got a
>>>>>> call
>>>>>> this morning saying they cannot access any network shares on the
>>>>>> server
>>>>>> at one site (both Serer 2003). I was unable to RDP to the server
>>>>>> either
>>>>>> as it will not authenticate the administrator user. Onsite today
>>>>>> and
>>>>>> luckily the console isn't locked so I tried to access aduc from
>>>>>> there
>>>>>> and get the message:
>>>>>> naming information cannot be located for the following reason
>>>>>> server
>>>>>> is
>>>>>> not operational. Looking about the internet points to dns
>>>>>> problems
>>>>>> but
>>>>>> all look good there, however there are numerous 4000,4007,4015
>>>>>> entries
>>>>>> in the event log of dns stating check AD is functioning and
>>>>>> reload
>>>>>> the
>>>>>> zone.
>>>>>> The server at the other site seems fine.
>>>>>> Any ideas how to progress on this, I didn't want to reboot this
>>>>>> server
>>>>>> in case I was unable to login after.
>>>>>> I normally only deal with SBS and have never come across this
>>>>>> issue
>>>>>> before.
>>>>>> Thanks for any replies.
>>>>>> Simon
Re: Cannot access ADUC on DC [message #310322 is a reply to message #309947] Sat, 07 November 2009 00:00 Go to previous messageGo to next message
Simon  is currently offline Simon  United Kingdom
Messages: 157
Registered: July 2009
Senior Member
Hi The site working has 2 forward zones:

_msdcs.internal.castlevetsltd.co.uk
and
internal.castlevetsltd.co.uk

Whereas the failing site has no entries at all.

Thanks Simon
Meinolf Weber [MVP-DS] wrote:
> Hello Simon,
>
> What kind of DNS zones are configured on the main site or is that one
> complete empty now in forward lookup zone? Which kind of zone is used on
> the second DNS server?
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>> Hi,
>>
>> I've been onsite again and got the tools installed, but ran out of
>> time
>> on the server before consulting time began (yes I know using a server
>> as
>> a workstation) I checked out the DC at the other location and this has
>> entries in the forward dns zone but nothing in the problem server ?
>> I can't get onto the server again until later tonight, although I have
>> remote access to it now as I installed VNC as rdp won't authenticate.
>> Thanks
>> Simon
>> Simon wrote:
>>
>>> Hi Meinolf,
>>>
>>> Thanks again. This is a customer I inherited and never installed this
>>> system. Not only is the DC used for sql etc it's also used as a
>>> workstation by a vet in the practise where it is. I have told them
>>> many
>>> times about this. I wouldn't allow one of my SBS sites to use their
>>> server for anything but SBS related functions. I'll check out on
>>> those
>>> links when I am onsite in the morning.
>>> The system has been running for a couple of years as is so I am
>>> confused
>>> why this issue would occur now.
>>> Regards
>>> Simon
>>> Meinolf Weber [MVP-DS] wrote:
>>>
>>>> Hello Simon,
>>>>
>>>> Running applications like SQL or Exchange on DCs is not recommended.
>>>> DCs should only do there basic job, AD/DNS/GC and maybe DHCP if no
>>>> member server exists.
>>>>
>>>> Make sure that the DNS servers are not forwarding to themself,
>>>> forwarders should be configured to the ISPs DNS server. Also if not
>>>> done create a reverse lookup zone.
>>>>
>>>> Additional see:
>>>> http://www.eventid.net/display.asp?eventid=4000&eventno= 296&source=D
>>>> NS&phase=1
>>>> http://www.eventid.net/display.asp?eventid=4007&eventno= 4280&source=
>>>> DNS&phase=1
>>>>
>>>> http://www.eventid.net/display.asp?eventid=4015&eventno= 333&source=D
>>>> NS&phase=1
>>>>
>>>> Best regards
>>>>
>>>> Meinolf Weber
>>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>>> confers no rights.
>>>> ** Please do NOT email, only reply to Newsgroups
>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>> Hi Meinholf
>>>>>
>>>>> Thanks for the reply, I'm not on site now but can confirm that
>>>>> ipconfig
>>>>> /all showed only this server and also the server at the other
>>>>> location
>>>>> as dns servers. The server didn't have those tools installed so I
>>>>> couldn't run them, I'll be back onsite tomorrow with my server CDs
>>>>> to
>>>>> install these. Luckily the main app is sql and this is still
>>>>> running
>>>>> fine.
>>>>> Simon
>>>>> Meinolf Weber [MVP-DS] wrote:
>>>>>> Hello Simon,
>>>>>>
>>>>>> Make sure DNS on all NICs is only configured to use domain
>>>>>> internal DNS servers. Please post an unedited ipconfig /all from
>>>>>> the DC/DNS servers, so we can exclude this.
>>>>>>
>>>>>> Also run the support tools dcdiag /v, netdiag /v to check for
>>>>>> errors.
>>>>>>
>>>>>> Best regards
>>>>>>
>>>>>> Meinolf Weber
>>>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>>>> and
>>>>>> confers no rights.
>>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>>> Hi,
>>>>>>> I have a customer with a small setup between two sites. I got a
>>>>>>> call
>>>>>>> this morning saying they cannot access any network shares on the
>>>>>>> server
>>>>>>> at one site (both Serer 2003). I was unable to RDP to the server
>>>>>>> either
>>>>>>> as it will not authenticate the administrator user. Onsite today
>>>>>>> and
>>>>>>> luckily the console isn't locked so I tried to access aduc from
>>>>>>> there
>>>>>>> and get the message:
>>>>>>> naming information cannot be located for the following reason
>>>>>>> server
>>>>>>> is
>>>>>>> not operational. Looking about the internet points to dns
>>>>>>> problems
>>>>>>> but
>>>>>>> all look good there, however there are numerous 4000,4007,4015
>>>>>>> entries
>>>>>>> in the event log of dns stating check AD is functioning and
>>>>>>> reload
>>>>>>> the
>>>>>>> zone.
>>>>>>> The server at the other site seems fine.
>>>>>>> Any ideas how to progress on this, I didn't want to reboot this
>>>>>>> server
>>>>>>> in case I was unable to login after.
>>>>>>> I normally only deal with SBS and have never come across this
>>>>>>> issue
>>>>>>> before.
>>>>>>> Thanks for any replies.
>>>>>>> Simon
>
>
Re: Cannot access ADUC on DC [message #310324 is a reply to message #310322] Sat, 07 November 2009 00:13 Go to previous messageGo to next message
meiweb  is currently offline meiweb  Germany
Messages: 2225
Registered: September 2009
Senior Member
Hello Simon,

Please post an unedited ipconfig /all form both machines. Also run repadmin
/showrepl and post the output here. Do you use AD integrated zones?

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Hi The site working has 2 forward zones:
>
> _msdcs.internal.castlevetsltd.co.uk
> and
> internal.castlevetsltd.co.uk
> Whereas the failing site has no entries at all.
>
> Thanks Simon
> Meinolf Weber [MVP-DS] wrote:
>> Hello Simon,
>>
>> What kind of DNS zones are configured on the main site or is that one
>> complete empty now in forward lookup zone? Which kind of zone is used
>> on the second DNS server?
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>> Hi,
>>>
>>> I've been onsite again and got the tools installed, but ran out of
>>> time
>>> on the server before consulting time began (yes I know using a
>>> server
>>> as
>>> a workstation) I checked out the DC at the other location and this
>>> has
>>> entries in the forward dns zone but nothing in the problem server ?
>>> I can't get onto the server again until later tonight, although I
>>> have
>>> remote access to it now as I installed VNC as rdp won't
>>> authenticate.
>>> Thanks
>>> Simon
>>> Simon wrote:
>>>> Hi Meinolf,
>>>>
>>>> Thanks again. This is a customer I inherited and never installed
>>>> this
>>>> system. Not only is the DC used for sql etc it's also used as a
>>>> workstation by a vet in the practise where it is. I have told them
>>>> many
>>>> times about this. I wouldn't allow one of my SBS sites to use their
>>>> server for anything but SBS related functions. I'll check out on
>>>> those
>>>> links when I am onsite in the morning.
>>>> The system has been running for a couple of years as is so I am
>>>> confused
>>>> why this issue would occur now.
>>>> Regards
>>>> Simon
>>>> Meinolf Weber [MVP-DS] wrote:
>>>>> Hello Simon,
>>>>>
>>>>> Running applications like SQL or Exchange on DCs is not
>>>>> recommended. DCs should only do there basic job, AD/DNS/GC and
>>>>> maybe DHCP if no member server exists.
>>>>>
>>>>> Make sure that the DNS servers are not forwarding to themself,
>>>>> forwarders should be configured to the ISPs DNS server. Also if
>>>>> not done create a reverse lookup zone.
>>>>>
>>>>> Additional see:
>>>>> http://www.eventid.net/display.asp?eventid=4000&eventno= 296&source
>>>>> =D NS&phase=1
>>>>> http://www.eventid.net/display.asp?eventid=4007&eventno= 4280&sourc
>>>>> e= DNS&phase=1
>>>>>
>>>>> http://www.eventid.net/display.asp?eventid=4015&eventno= 333&source
>>>>> =D NS&phase=1
>>>>>
>>>>> Best regards
>>>>>
>>>>> Meinolf Weber
>>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>>> and
>>>>> confers no rights.
>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>> Hi Meinholf
>>>>>>
>>>>>> Thanks for the reply, I'm not on site now but can confirm that
>>>>>> ipconfig
>>>>>> /all showed only this server and also the server at the other
>>>>>> location
>>>>>> as dns servers. The server didn't have those tools installed so I
>>>>>> couldn't run them, I'll be back onsite tomorrow with my server
>>>>>> CDs
>>>>>> to
>>>>>> install these. Luckily the main app is sql and this is still
>>>>>> running
>>>>>> fine.
>>>>>> Simon
>>>>>> Meinolf Weber [MVP-DS] wrote:
>>>>>>> Hello Simon,
>>>>>>>
>>>>>>> Make sure DNS on all NICs is only configured to use domain
>>>>>>> internal DNS servers. Please post an unedited ipconfig /all from
>>>>>>> the DC/DNS servers, so we can exclude this.
>>>>>>>
>>>>>>> Also run the support tools dcdiag /v, netdiag /v to check for
>>>>>>> errors.
>>>>>>>
>>>>>>> Best regards
>>>>>>>
>>>>>>> Meinolf Weber
>>>>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>>>>> and
>>>>>>> confers no rights.
>>>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>>>> ** HELP us help YOU!!!
>>>>>>> http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>>>> Hi,
>>>>>>>> I have a customer with a small setup between two sites. I got a
>>>>>>>> call
>>>>>>>> this morning saying they cannot access any network shares on
>>>>>>>> the
>>>>>>>> server
>>>>>>>> at one site (both Serer 2003). I was unable to RDP to the
>>>>>>>> server
>>>>>>>> either
>>>>>>>> as it will not authenticate the administrator user. Onsite
>>>>>>>> today
>>>>>>>> and
>>>>>>>> luckily the console isn't locked so I tried to access aduc from
>>>>>>>> there
>>>>>>>> and get the message:
>>>>>>>> naming information cannot be located for the following reason
>>>>>>>> server
>>>>>>>> is
>>>>>>>> not operational. Looking about the internet points to dns
>>>>>>>> problems
>>>>>>>> but
>>>>>>>> all look good there, however there are numerous 4000,4007,4015
>>>>>>>> entries
>>>>>>>> in the event log of dns stating check AD is functioning and
>>>>>>>> reload
>>>>>>>> the
>>>>>>>> zone.
>>>>>>>> The server at the other site seems fine.
>>>>>>>> Any ideas how to progress on this, I didn't want to reboot this
>>>>>>>> server
>>>>>>>> in case I was unable to login after.
>>>>>>>> I normally only deal with SBS and have never come across this
>>>>>>>> issue
>>>>>>>> before.
>>>>>>>> Thanks for any replies.
>>>>>>>> Simon
Re: Cannot access ADUC on DC [message #311043 is a reply to message #310324] Sun, 08 November 2009 02:15 Go to previous messageGo to next message
Simon  is currently offline Simon  United Kingdom
Messages: 157
Registered: July 2009
Senior Member
Hi,
I hae another problem now, the serer screen is locked and not accepting
logins. What are my options now ? I will be onsite tomorrow morning.
Thanks
Simon
Meinolf Weber [MVP-DS] wrote:
> Hello Simon,
>
> Please post an unedited ipconfig /all form both machines. Also run
> repadmin /showrepl and post the output here. Do you use AD integrated
> zones?
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>> Hi The site working has 2 forward zones:
>>
>> _msdcs.internal.castlevetsltd.co.uk
>> and
>> internal.castlevetsltd.co.uk
>> Whereas the failing site has no entries at all.
>>
>> Thanks Simon
>> Meinolf Weber [MVP-DS] wrote:
>>> Hello Simon,
>>>
>>> What kind of DNS zones are configured on the main site or is that one
>>> complete empty now in forward lookup zone? Which kind of zone is used
>>> on the second DNS server?
>>>
>>> Best regards
>>>
>>> Meinolf Weber
>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>> confers no rights.
>>> ** Please do NOT email, only reply to Newsgroups
>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>> Hi,
>>>>
>>>> I've been onsite again and got the tools installed, but ran out of
>>>> time
>>>> on the server before consulting time began (yes I know using a
>>>> server
>>>> as
>>>> a workstation) I checked out the DC at the other location and this
>>>> has
>>>> entries in the forward dns zone but nothing in the problem server ?
>>>> I can't get onto the server again until later tonight, although I
>>>> have
>>>> remote access to it now as I installed VNC as rdp won't
>>>> authenticate.
>>>> Thanks
>>>> Simon
>>>> Simon wrote:
>>>>> Hi Meinolf,
>>>>>
>>>>> Thanks again. This is a customer I inherited and never installed
>>>>> this
>>>>> system. Not only is the DC used for sql etc it's also used as a
>>>>> workstation by a vet in the practise where it is. I have told them
>>>>> many
>>>>> times about this. I wouldn't allow one of my SBS sites to use their
>>>>> server for anything but SBS related functions. I'll check out on
>>>>> those
>>>>> links when I am onsite in the morning.
>>>>> The system has been running for a couple of years as is so I am
>>>>> confused
>>>>> why this issue would occur now.
>>>>> Regards
>>>>> Simon
>>>>> Meinolf Weber [MVP-DS] wrote:
>>>>>> Hello Simon,
>>>>>>
>>>>>> Running applications like SQL or Exchange on DCs is not
>>>>>> recommended. DCs should only do there basic job, AD/DNS/GC and
>>>>>> maybe DHCP if no member server exists.
>>>>>>
>>>>>> Make sure that the DNS servers are not forwarding to themself,
>>>>>> forwarders should be configured to the ISPs DNS server. Also if
>>>>>> not done create a reverse lookup zone.
>>>>>>
>>>>>> Additional see:
>>>>>> http://www.eventid.net/display.asp?eventid=4000&eventno= 296&source
>>>>>> =D NS&phase=1
>>>>>> http://www.eventid.net/display.asp?eventid=4007&eventno= 4280&sourc
>>>>>> e= DNS&phase=1
>>>>>>
>>>>>> http://www.eventid.net/display.asp?eventid=4015&eventno= 333&source
>>>>>> =D NS&phase=1
>>>>>>
>>>>>> Best regards
>>>>>>
>>>>>> Meinolf Weber
>>>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>>>> and
>>>>>> confers no rights.
>>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>>> Hi Meinholf
>>>>>>>
>>>>>>> Thanks for the reply, I'm not on site now but can confirm that
>>>>>>> ipconfig
>>>>>>> /all showed only this server and also the server at the other
>>>>>>> location
>>>>>>> as dns servers. The server didn't have those tools installed so I
>>>>>>> couldn't run them, I'll be back onsite tomorrow with my server
>>>>>>> CDs
>>>>>>> to
>>>>>>> install these. Luckily the main app is sql and this is still
>>>>>>> running
>>>>>>> fine.
>>>>>>> Simon
>>>>>>> Meinolf Weber [MVP-DS] wrote:
>>>>>>>> Hello Simon,
>>>>>>>>
>>>>>>>> Make sure DNS on all NICs is only configured to use domain
>>>>>>>> internal DNS servers. Please post an unedited ipconfig /all from
>>>>>>>> the DC/DNS servers, so we can exclude this.
>>>>>>>>
>>>>>>>> Also run the support tools dcdiag /v, netdiag /v to check for
>>>>>>>> errors.
>>>>>>>>
>>>>>>>> Best regards
>>>>>>>>
>>>>>>>> Meinolf Weber
>>>>>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>>>>>> and
>>>>>>>> confers no rights.
>>>>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>>>>> ** HELP us help YOU!!!
>>>>>>>> http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>>>>> Hi,
>>>>>>>>> I have a customer with a small setup between two sites. I got a
>>>>>>>>> call
>>>>>>>>> this morning saying they cannot access any network shares on
>>>>>>>>> the
>>>>>>>>> server
>>>>>>>>> at one site (both Serer 2003). I was unable to RDP to the
>>>>>>>>> server
>>>>>>>>> either
>>>>>>>>> as it will not authenticate the administrator user. Onsite
>>>>>>>>> today
>>>>>>>>> and
>>>>>>>>> luckily the console isn't locked so I tried to access aduc from
>>>>>>>>> there
>>>>>>>>> and get the message:
>>>>>>>>> naming information cannot be located for the following reason
>>>>>>>>> server
>>>>>>>>> is
>>>>>>>>> not operational. Looking about the internet points to dns
>>>>>>>>> problems
>>>>>>>>> but
>>>>>>>>> all look good there, however there are numerous 4000,4007,4015
>>>>>>>>> entries
>>>>>>>>> in the event log of dns stating check AD is functioning and
>>>>>>>>> reload
>>>>>>>>> the
>>>>>>>>> zone.
>>>>>>>>> The server at the other site seems fine.
>>>>>>>>> Any ideas how to progress on this, I didn't want to reboot this
>>>>>>>>> server
>>>>>>>>> in case I was unable to login after.
>>>>>>>>> I normally only deal with SBS and have never come across this
>>>>>>>>> issue
>>>>>>>>> before.
>>>>>>>>> Thanks for any replies.
>>>>>>>>> Simon
>
>
Re: Cannot access ADUC on DC [message #311070 is a reply to message #311043] Sun, 08 November 2009 03:48 Go to previous messageGo to next message
meiweb  is currently offline meiweb  Germany
Messages: 2225
Registered: September 2009
Senior Member
Hello Simon,

What error message do you get, make sure that capslock is not enabled and
also that you didn't change hte keyboard language. I had this problem some
time ago that with Remote desktop the keyboard language was changed, what
i didn't realized at the beginning.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Hi,
> I hae another problem now, the serer screen is locked and not
> accepting
> logins. What are my options now ? I will be onsite tomorrow morning.
> Thanks
> Simon
> Meinolf Weber [MVP-DS] wrote:
>> Hello Simon,
>>
>> Please post an unedited ipconfig /all form both machines. Also run
>> repadmin /showrepl and post the output here. Do you use AD integrated
>> zones?
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>> Hi The site working has 2 forward zones:
>>>
>>> _msdcs.internal.castlevetsltd.co.uk
>>> and
>>> internal.castlevetsltd.co.uk
>>> Whereas the failing site has no entries at all.
>>> Thanks Simon
>>> Meinolf Weber [MVP-DS] wrote:
>>>> Hello Simon,
>>>>
>>>> What kind of DNS zones are configured on the main site or is that
>>>> one complete empty now in forward lookup zone? Which kind of zone
>>>> is used on the second DNS server?
>>>>
>>>> Best regards
>>>>
>>>> Meinolf Weber
>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>> and
>>>> confers no rights.
>>>> ** Please do NOT email, only reply to Newsgroups
>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>> Hi,
>>>>>
>>>>> I've been onsite again and got the tools installed, but ran out of
>>>>> time
>>>>> on the server before consulting time began (yes I know using a
>>>>> server
>>>>> as
>>>>> a workstation) I checked out the DC at the other location and this
>>>>> has
>>>>> entries in the forward dns zone but nothing in the problem server
>>>>> ?
>>>>> I can't get onto the server again until later tonight, although I
>>>>> have
>>>>> remote access to it now as I installed VNC as rdp won't
>>>>> authenticate.
>>>>> Thanks
>>>>> Simon
>>>>> Simon wrote:
>>>>>> Hi Meinolf,
>>>>>>
>>>>>> Thanks again. This is a customer I inherited and never installed
>>>>>> this
>>>>>> system. Not only is the DC used for sql etc it's also used as a
>>>>>> workstation by a vet in the practise where it is. I have told
>>>>>> them
>>>>>> many
>>>>>> times about this. I wouldn't allow one of my SBS sites to use
>>>>>> their
>>>>>> server for anything but SBS related functions. I'll check out on
>>>>>> those
>>>>>> links when I am onsite in the morning.
>>>>>> The system has been running for a couple of years as is so I am
>>>>>> confused
>>>>>> why this issue would occur now.
>>>>>> Regards
>>>>>> Simon
>>>>>> Meinolf Weber [MVP-DS] wrote:
>>>>>>> Hello Simon,
>>>>>>>
>>>>>>> Running applications like SQL or Exchange on DCs is not
>>>>>>> recommended. DCs should only do there basic job, AD/DNS/GC and
>>>>>>> maybe DHCP if no member server exists.
>>>>>>>
>>>>>>> Make sure that the DNS servers are not forwarding to themself,
>>>>>>> forwarders should be configured to the ISPs DNS server. Also if
>>>>>>> not done create a reverse lookup zone.
>>>>>>>
>>>>>>> Additional see:
>>>>>>> http://www.eventid.net/display.asp?eventid=4000&eventno= 296&sour
>>>>>>> ce =D NS&phase=1
>>>>>>> http://www.eventid.net/display.asp?eventid=4007&eventno= 4280&sou
>>>>>>> rc e= DNS&phase=1
>>>>>>>
>>>>>>> http://www.eventid.net/display.asp?eventid=4015&eventno= 333&sour
>>>>>>> ce =D NS&phase=1
>>>>>>>
>>>>>>> Best regards
>>>>>>>
>>>>>>> Meinolf Weber
>>>>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>>>>> and
>>>>>>> confers no rights.
>>>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>>>> ** HELP us help YOU!!!
>>>>>>> http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>>>> Hi Meinholf
>>>>>>>>
>>>>>>>> Thanks for the reply, I'm not on site now but can confirm that
>>>>>>>> ipconfig
>>>>>>>> /all showed only this server and also the server at the other
>>>>>>>> location
>>>>>>>> as dns servers. The server didn't have those tools installed so
>>>>>>>> I
>>>>>>>> couldn't run them, I'll be back onsite tomorrow with my server
>>>>>>>> CDs
>>>>>>>> to
>>>>>>>> install these. Luckily the main app is sql and this is still
>>>>>>>> running
>>>>>>>> fine.
>>>>>>>> Simon
>>>>>>>> Meinolf Weber [MVP-DS] wrote:
>>>>>>>>> Hello Simon,
>>>>>>>>>
>>>>>>>>> Make sure DNS on all NICs is only configured to use domain
>>>>>>>>> internal DNS servers. Please post an unedited ipconfig /all
>>>>>>>>> from the DC/DNS servers, so we can exclude this.
>>>>>>>>>
>>>>>>>>> Also run the support tools dcdiag /v, netdiag /v to check for
>>>>>>>>> errors.
>>>>>>>>>
>>>>>>>>> Best regards
>>>>>>>>>
>>>>>>>>> Meinolf Weber
>>>>>>>>> Disclaimer: This posting is provided "AS IS" with no
>>>>>>>>> warranties,
>>>>>>>>> and
>>>>>>>>> confers no rights.
>>>>>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>>>>>> ** HELP us help YOU!!!
>>>>>>>>> http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>>>>>> Hi,
>>>>>>>>>> I have a customer with a small setup between two sites. I got
>>>>>>>>>> a
>>>>>>>>>> call
>>>>>>>>>> this morning saying they cannot access any network shares on
>>>>>>>>>> the
>>>>>>>>>> server
>>>>>>>>>> at one site (both Serer 2003). I was unable to RDP to the
>>>>>>>>>> server
>>>>>>>>>> either
>>>>>>>>>> as it will not authenticate the administrator user. Onsite
>>>>>>>>>> today
>>>>>>>>>> and
>>>>>>>>>> luckily the console isn't locked so I tried to access aduc
>>>>>>>>>> from
>>>>>>>>>> there
>>>>>>>>>> and get the message:
>>>>>>>>>> naming information cannot be located for the following reason
>>>>>>>>>> server
>>>>>>>>>> is
>>>>>>>>>> not operational. Looking about the internet points to dns
>>>>>>>>>> problems
>>>>>>>>>> but
>>>>>>>>>> all look good there, however there are numerous
>>>>>>>>>> 4000,4007,4015
>>>>>>>>>> entries
>>>>>>>>>> in the event log of dns stating check AD is functioning and
>>>>>>>>>> reload
>>>>>>>>>> the
>>>>>>>>>> zone.
>>>>>>>>>> The server at the other site seems fine.
>>>>>>>>>> Any ideas how to progress on this, I didn't want to reboot
>>>>>>>>>> this
>>>>>>>>>> server
>>>>>>>>>> in case I was unable to login after.
>>>>>>>>>> I normally only deal with SBS and have never come across this
>>>>>>>>>> issue
>>>>>>>>>> before.
>>>>>>>>>> Thanks for any replies.
>>>>>>>>>> Simon
Re: Cannot access ADUC on DC [message #311384 is a reply to message #311070] Sun, 08 November 2009 11:59 Go to previous message
Simon  is currently offline Simon  United Kingdom
Messages: 157
Registered: July 2009
Senior Member
Hi Meinolf,

I've never been able to get in via rdp since this happened (normal
windows authentication error message). But when I was in there Friday
the server screen was locked but the password got me in fine. I got the
call Saturday that they can't log in now on the server, if it's not a
keyboard setting then what are my options ?
I will be there tomorrow.
Thanks
Simon

Meinolf Weber [MVP-DS] wrote:
> Hello Simon,
>
> What error message do you get, make sure that capslock is not enabled
> and also that you didn't change hte keyboard language. I had this
> problem some time ago that with Remote desktop the keyboard language was
> changed, what i didn't realized at the beginning.
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>> Hi,
>> I hae another problem now, the serer screen is locked and not
>> accepting
>> logins. What are my options now ? I will be onsite tomorrow morning.
>> Thanks
>> Simon
>> Meinolf Weber [MVP-DS] wrote:
>>> Hello Simon,
>>>
>>> Please post an unedited ipconfig /all form both machines. Also run
>>> repadmin /showrepl and post the output here. Do you use AD integrated
>>> zones?
>>>
>>> Best regards
>>>
>>> Meinolf Weber
>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>> confers no rights.
>>> ** Please do NOT email, only reply to Newsgroups
>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>> Hi The site working has 2 forward zones:
>>>>
>>>> _msdcs.internal.castlevetsltd.co.uk
>>>> and
>>>> internal.castlevetsltd.co.uk
>>>> Whereas the failing site has no entries at all.
>>>> Thanks Simon
>>>> Meinolf Weber [MVP-DS] wrote:
>>>>> Hello Simon,
>>>>>
>>>>> What kind of DNS zones are configured on the main site or is that
>>>>> one complete empty now in forward lookup zone? Which kind of zone
>>>>> is used on the second DNS server?
>>>>>
>>>>> Best regards
>>>>>
>>>>> Meinolf Weber
>>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>>> and
>>>>> confers no rights.
>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>> Hi,
>>>>>>
>>>>>> I've been onsite again and got the tools installed, but ran out of
>>>>>> time
>>>>>> on the server before consulting time began (yes I know using a
>>>>>> server
>>>>>> as
>>>>>> a workstation) I checked out the DC at the other location and this
>>>>>> has
>>>>>> entries in the forward dns zone but nothing in the problem server
>>>>>> ?
>>>>>> I can't get onto the server again until later tonight, although I
>>>>>> have
>>>>>> remote access to it now as I installed VNC as rdp won't
>>>>>> authenticate.
>>>>>> Thanks
>>>>>> Simon
>>>>>> Simon wrote:
>>>>>>> Hi Meinolf,
>>>>>>>
>>>>>>> Thanks again. This is a customer I inherited and never installed
>>>>>>> this
>>>>>>> system. Not only is the DC used for sql etc it's also used as a
>>>>>>> workstation by a vet in the practise where it is. I have told
>>>>>>> them
>>>>>>> many
>>>>>>> times about this. I wouldn't allow one of my SBS sites to use
>>>>>>> their
>>>>>>> server for anything but SBS related functions. I'll check out on
>>>>>>> those
>>>>>>> links when I am onsite in the morning.
>>>>>>> The system has been running for a couple of years as is so I am
>>>>>>> confused
>>>>>>> why this issue would occur now.
>>>>>>> Regards
>>>>>>> Simon
>>>>>>> Meinolf Weber [MVP-DS] wrote:
>>>>>>>> Hello Simon,
>>>>>>>>
>>>>>>>> Running applications like SQL or Exchange on DCs is not
>>>>>>>> recommended. DCs should only do there basic job, AD/DNS/GC and
>>>>>>>> maybe DHCP if no member server exists.
>>>>>>>>
>>>>>>>> Make sure that the DNS servers are not forwarding to themself,
>>>>>>>> forwarders should be configured to the ISPs DNS server. Also if
>>>>>>>> not done create a reverse lookup zone.
>>>>>>>>
>>>>>>>> Additional see:
>>>>>>>> http://www.eventid.net/display.asp?eventid=4000&eventno= 296&sour
>>>>>>>> ce =D NS&phase=1
>>>>>>>> http://www.eventid.net/display.asp?eventid=4007&eventno= 4280&sou
>>>>>>>> rc e= DNS&phase=1
>>>>>>>>
>>>>>>>> http://www.eventid.net/display.asp?eventid=4015&eventno= 333&sour
>>>>>>>> ce =D NS&phase=1
>>>>>>>>
>>>>>>>> Best regards
>>>>>>>>
>>>>>>>> Meinolf Weber
>>>>>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>>>>>> and
>>>>>>>> confers no rights.
>>>>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>>>>> ** HELP us help YOU!!!
>>>>>>>> http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>>>>> Hi Meinholf
>>>>>>>>>
>>>>>>>>> Thanks for the reply, I'm not on site now but can confirm that
>>>>>>>>> ipconfig
>>>>>>>>> /all showed only this server and also the server at the other
>>>>>>>>> location
>>>>>>>>> as dns servers. The server didn't have those tools installed so
>>>>>>>>> I
>>>>>>>>> couldn't run them, I'll be back onsite tomorrow with my server
>>>>>>>>> CDs
>>>>>>>>> to
>>>>>>>>> install these. Luckily the main app is sql and this is still
>>>>>>>>> running
>>>>>>>>> fine.
>>>>>>>>> Simon
>>>>>>>>> Meinolf Weber [MVP-DS] wrote:
>>>>>>>>>> Hello Simon,
>>>>>>>>>>
>>>>>>>>>> Make sure DNS on all NICs is only configured to use domain
>>>>>>>>>> internal DNS servers. Please post an unedited ipconfig /all
>>>>>>>>>> from the DC/DNS servers, so we can exclude this.
>>>>>>>>>>
>>>>>>>>>> Also run the support tools dcdiag /v, netdiag /v to check for
>>>>>>>>>> errors.
>>>>>>>>>>
>>>>>>>>>> Best regards
>>>>>>>>>>
>>>>>>>>>> Meinolf Weber
>>>>>>>>>> Disclaimer: This posting is provided "AS IS" with no
>>>>>>>>>> warranties,
>>>>>>>>>> and
>>>>>>>>>> confers no rights.
>>>>>>>>>> ** Please do NOT email, only reply to Newsgroups
>>>>>>>>>> ** HELP us help YOU!!!
>>>>>>>>>> http://www.blakjak.demon.co.uk/mul_crss.htm
>>>>>>>>>>> Hi,
>>>>>>>>>>> I have a customer with a small setup between two sites. I got
>>>>>>>>>>> a
>>>>>>>>>>> call
>>>>>>>>>>> this morning saying they cannot access any network shares on
>>>>>>>>>>> the
>>>>>>>>>>> server
>>>>>>>>>>> at one site (both Serer 2003). I was unable to RDP to the
>>>>>>>>>>> server
>>>>>>>>>>> either
>>>>>>>>>>> as it will not authenticate the administrator user. Onsite
>>>>>>>>>>> today
>>>>>>>>>>> and
>>>>>>>>>>> luckily the console isn't locked so I tried to access aduc
>>>>>>>>>>> from
>>>>>>>>>>> there
>>>>>>>>>>> and get the message:
>>>>>>>>>>> naming information cannot be located for the following reason
>>>>>>>>>>> server
>>>>>>>>>>> is
>>>>>>>>>>> not operational. Looking about the internet points to dns
>>>>>>>>>>> problems
>>>>>>>>>>> but
>>>>>>>>>>> all look good there, however there are numerous
>>>>>>>>>>> 4000,4007,4015
>>>>>>>>>>> entries
>>>>>>>>>>> in the event log of dns stating check AD is functioning and
>>>>>>>>>>> reload
>>>>>>>>>>> the
>>>>>>>>>>> zone.
>>>>>>>>>>> The server at the other site seems fine.
>>>>>>>>>>> Any ideas how to progress on this, I didn't want to reboot
>>>>>>>>>>> this
>>>>>>>>>>> server
>>>>>>>>>>> in case I was unable to login after.
>>>>>>>>>>> I normally only deal with SBS and have never come across this
>>>>>>>>>>> issue
>>>>>>>>>>> before.
>>>>>>>>>>> Thanks for any replies.
>>>>>>>>>>> Simon
>
>
Previous Topic:Upgrading to Windows 2008 R2
Next Topic:public and local domain MX records
Goto Forum:
  


Current Time: Wed Jan 17 05:45:57 MST 2018

Total time taken to generate the page: 0.03989 seconds
.:: Contact :: Home ::Sitemap::.

Powered by: FUDforum 3.0.0RC2.
Copyright ©2001-2009 FUDforum Bulletin Board Software