Advertisement

05.08.2008 at 11:16AM PDT, ID: 23387073
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
8.8

Unable to connect to the NETLOGON share

Zones: Windows 2003 Server, Active Directory, Domain Name Service (DNS)
Tags: Microsoft, Windows Server, 2003 standart
We have five domain controllers in our network and the last one recently added is reporting a problem when I run DCDIAG tool on it.  DCDIAG shows everythin good except the netlogon test.  This is the error:

    Starting test: NetLogons
   Unable to connect to the NETLOGON share! (\\SERVER\netlogon)
  [SERVER] An net use or LsaPolicy operation failed with error 1203, No
  network provider accepted the given network path..
         ......................... SERVER failed test NetLogons

I try to resolve this problems, running  "net stop" and "net start", and checking the dns server for any bad entry but situation is the same.  Can you please help me?


Start your free trial to view this solution
Question Stats
Zone: Networking
Question Asked By: A-MONTERO
Solution Provided By: ChiefIT
Participating Experts: 2
Solution Grade: B
Views: 46
Translate:
Loading Advertisement...
05.08.2008 at 10:10PM PDT, ID: 21530500
shniz123:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
05.09.2008 at 12:53AM PDT, ID: 21531000

Rank: Wizard

ChiefIT:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
05.10.2008 at 07:17AM PDT, ID: 21539115
A-MONTERO:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
05.10.2008 at 11:05AM PDT, ID: 21540005

Rank: Wizard

ChiefIT:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
05.12.2008 at 01:01PM PDT, ID: 21550075
A-MONTERO:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
05.16.2008 at 11:12PM PDT, ID: 21588151

Rank: Wizard

ChiefIT:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
05.30.2008 at 06:09AM PDT, ID: 21677342
A-MONTERO:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
Loading Advertisement...
Microsoft
  • Internet Protocols
  • Applications
  • Development
  • OS
  • Hardware
  • Windows Security
Apple
  • Operating Systems
  • Hardware
  • Programming
  • Networking
  • Software
Internet
  • Search Engines
  • File Sharing
  • WebTrends / Stats
  • Spy / Ad Blockers
  • Web Browsers
  • New Net Users
  • Web Development
  • Chat / IM
  • Anti Spam
  • Web Servers
  • Anti-Virus
  • Email Clients
Gamers
  • Tips
  • Online / MMORPG
  • Puzzle
  • Emulators
  • Action / Adventure
  • Role Playing
  • Consoles
  • Game Programming
  • Strategy
  • Sports
  • Misc
  • Computer Games
Digital Living
  • Hardware
  • New Net Users
  • New Users
  • Software
  • Digital Music
  • Gaming World
  • Home Security
  • Apple
  • Networking Hardware
Virus & Spyware
  • Vulnerabilities
  • IDS
  • Encryption
  • Anti-Virus
  • Operating Systems Security
  • Software Firewalls
  • WebApplications
  • Cell Phones
  • Operating Systems
  • Internet
  • Hardware Firewalls
Hardware
  • Handhelds / PDAs
  • Displays / Monitors
  • Components
  • Networking Hardware
  • Peripherals
  • Laptops/Notebooks
  • Storage
  • Servers
  • Desktops
  • New Users
  • Misc
  • Apple
Software
  • System Utilities
  • Industry Specific
  • Network Management
  • Photos / Graphics
  • Page Layout
  • VMWare
  • Misc
  • Web Development
  • OS
  • CYGWIN
  • Voice Recognition
  • Message Queue
  • Quality Assurance
  • Security
  • Firewalls
  • MultiMedia Applications
  • Development
  • Database
  • Office / Productivity
  • Business Management
  • OS/2 Apps
  • Server Software
  • Internet / Email
ITPro
  • OS
  • Storage
  • Encryption
  • Operating Systems Security
  • Apple Hardware
  • Laptops & Notebooks
  • Servers
  • Networking Hardware
  • Peripherals
  • Devices
  • Displays / Monitors
  • WebTrends / Stats
  • Search Engines
  • Firewalls
  • WebApplications
  • IDS
  • Vulnerabilities
  • Email Clients
  • File Sharing
  • Spy / Ad Blockers
  • Web Browsers
  • Web Servers
  • Networking
  • Anti-Virus
  • Chat / IM
  • Anti Spam
Developer
  • Web Servers
  • Web Browsers
  • Game Programming
  • Dev Tools
  • Industry Specific
  • Office / Productivity
  • Database
  • CYGWIN
  • Web Development
  • Search Engines
  • File Sharing
  • WebTrends / Stats
  • Programming
  • Content Management
  • Application Servers
  • Protocols
Storage
  • Removable Backup Media
  • Storage Technology
  • Servers
  • Grid
  • Remote Access
  • Backup / Restore
  • Misc
  • Hard Drives
OS
  • Miscellaneous
  • Security
  • Development
  • Linux
  • VMWare
  • MainFrame OS
  • Unix
  • Apple
  • OS / 2
  • AS / 400
  • BeOS
  • Microsoft
  • VMS / OpenVMS
Database
  • Oracle
  • Miscellaneous
  • MySQL
  • Software
  • Sybase
  • Contact Management
  • PostgreSQL
  • Data Manipulation
  • Clarion
  • InterSystems Cache
  • Siebel
  • MUMPS
  • OLAP
  • SQLBase
  • SAS
  • GIS & GPS
  • 4GL
  • Berkeley DB
  • DB2
  • Informix
  • Interbase / Firebird
  • FoxPro
  • Reporting
  • LDAP
  • Filemaker Pro
  • MS SQL Server
  • dBase
  • MS Access
Security
  • Misc
  • Web Browsers
  • Software Firewalls
  • Operating Systems Security
  • File Sharing
  • Spy / Ad Blockers
  • Vulnerabilities
  • WebApplications
  • IDS
  • Anti-Virus
  • Encryption
  • Anti Spam
  • Email Clients
  • VPN
  • Chat / IM
Programming
  • Editors IDEs
  • Installation
  • Handhelds / PDAs
  • Multimedia Programming
  • System / Kernel
  • Algorithms
  • Game
  • Signal Processing
  • Project Management
  • Open Source
  • Database
  • Misc
  • Languages
  • Processor Platforms
  • Theory
Web Development
  • Scripting
  • Blogs
  • Web Servers
  • Software
  • Search Engines
  • Web Graphics
  • Images
  • Internet Marketing
  • Images and Photos
  • Components
  • Document Imaging
  • Web Languages/Standards
  • Illustration
  • WebApplications
  • Fonts
  • WebTrends / Stats
  • Authoring
  • Digital Camera Software
  • Miscellaneous
Networking
  • Protocols
  • Apple Networking
  • Network Management
  • Message Queue
  • Application Servers
  • Content Management
  • File Servers
  • Email Servers
  • Misc
  • Java Editors & IDEs
  • Wireless
  • Networking Hardware
  • Backup / Restore
  • System Utilities
  • ISPs & Hosting
  • Web Servers
  • Storage Technology
  • Removable Backup Media
  • Servers
  • Broadband
  • Grid
  • OS / 2
  • Novell Netware
  • Unix Networking
  • Windows Networking
  • Security
  • Telecommunications
  • Operating Systems
  • Linux Networking
Other
  • Community Advisor
  • Lounge
  • Community Support
  • New Net Users
  • Philosophy / Religion
  • Math / Science
  • Miscellaneous
  • URLs
  • Expert Lounge
  • Politics
  • Puzzles / Riddles
Community Support
  • Suggestions
  • New to EE
  • New Topics
  • Community Advisor
  • CleanUp
  • Announcements
  • General
  • Feedback
  • Input
  • EE Bugs
 
05.08.2008 at 10:10PM PDT, ID: 21530500
shniz123:
http://support.microsoft.com/kb/887303

I think you should read this link over. I believe it's related and contains a few possible resolutions. If not DNS it's probably related to SMB signing.
 
05.09.2008 at 12:53AM PDT, ID: 21531000

Rank: Wizard

ChiefIT:
Sounds like you have some hosed SRV records in DNS:

Here is how to verify your SRV records.
http://support.microsoft.com/?kbid=241515

When the netlogon service is restarted it will register the SRV records in DNS. However, if you have a Multihomed domain controller, there is a quirk in a 2003 server service pack that will register the SRV records of both NICs regardless of the option to prevent one NIC from registering the SRV records. If both NICs have SRV records in DNS, the server can confuse the logon/authentication process.

To prevent this from happening, there is a patch to this as well.
 -- http://support.microsoft.com/?id=832478

Plausible solutions to your problem:
What you might have to do is:
1) apply the 2003 server hotfix that prevents both NICs from registering SRV records regardless of the option to disable the registration
2) disable one nic from registering the SRV records
3) remove the SRV records that don't belong

_____________________________________________________

For further troubleshooting, can you answer a couple questions:

How many DC's do you have and what are their OS?
Can you provide a DCdiag report?


 
05.10.2008 at 07:17AM PDT, ID: 21539115
A-MONTERO:
I tried these methods but without any result. Here I am presenting the results the dcdiag on the server.

additional information, is that this server was prepared in a location other than where you are today. now was moved from location where is visisbles are  all servers.
1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
69:
70:
71:
72:
73:
74:
75:
76:
77:
78:
79:
80:
81:
82:
83:
84:
85:
86:

omain Controller Diagnosis
 
Performing initial setup:
   Done gathering initial info.
 
Doing initial required tests
 
   Testing server: Default-First-Site-Name\W2KAAS1
      Starting test: Connectivity
         ......................... W2KAAS1 passed test Connectivity
 
Doing primary tests
 
   Testing server: Default-First-Site-Name\W2KAAS1
      Starting test: Replications
         ......................... W2KAAS1 passed test Replications
      Starting test: NCSecDesc
         ......................... W2KAAS1 passed test NCSecDesc
      Starting test: NetLogons
         Unable to connect to the NETLOGON share! (\\W2KAAS1\netlogon)
         [W2KAAS1] An net use or LsaPolicy operation failed with error 1203, No
network provider accepted the given network path..
         ......................... W2KAAS1 failed test NetLogons
      Starting test: Advertising
         ......................... W2KAAS1 passed test Advertising
      Starting test: KnowsOfRoleHolders
         ......................... W2KAAS1 passed test KnowsOfRoleHolders
      Starting test: RidManager
         ......................... W2KAAS1 passed test RidManager
      Starting test: MachineAccount
         ......................... W2KAAS1 passed test MachineAccount
      Starting test: Services
         ......................... W2KAAS1 passed test Services
      Starting test: ObjectsReplicated
         ......................... W2KAAS1 passed test ObjectsReplicated
      Starting test: frssysvol
         ......................... W2KAAS1 passed test frssysvol
      Starting test: frsevent
         ......................... W2KAAS1 passed test frsevent
      Starting test: kccevent
         ......................... W2KAAS1 passed test kccevent
      Starting test: systemlog
         An Error Event occured.  EventID: 0x0000164A
            Time Generated: 05/10/2008   09:51:20
            Event String: The Netlogon service could not create server
         ......................... W2KAAS1 failed test systemlog
      Starting test: VerifyReferences
         ......................... W2KAAS1 passed test VerifyReferences
 
   Running partition tests on : ForestDnsZones
      Starting test: CrossRefValidation
         ......................... ForestDnsZones passed test CrossRefValidation
 
      Starting test: CheckSDRefDom
         ......................... ForestDnsZones passed test CheckSDRefDom
 
   Running partition tests on : DomainDnsZones
      Starting test: CrossRefValidation
         ......................... DomainDnsZones passed test CrossRefValidation
 
      Starting test: CheckSDRefDom
         ......................... DomainDnsZones passed test CheckSDRefDom
 
   Running partition tests on : Schema
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom
 
   Running partition tests on : Configuration
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom
 
   Running partition tests on : AACXA
      Starting test: CrossRefValidation
         ......................... AACXA passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... AACXA passed test CheckSDRefDom
 
   Running enterprise tests on : AACXA.LOCAL
      Starting test: Intersite
         ......................... AACXA.LOCAL passed test Intersite
      Starting test: FsmoCheck
         ......................... AACXA.LOCAL passed test FsmoCheck
Open in New Window
 
05.10.2008 at 11:05AM PDT, ID: 21540005

Rank: Wizard

ChiefIT:
Now that you have prevented your multihomed NIC from registering its SRV records, your ready for the second stage to this fix. Follow the fix to this post and you should have your issues resolved.

You just brought up a new server and need to straighten out DNS in order to communicate with it. This includes communicating with itself.

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2003_Server/Q_23356031.html

NOTE: Don't forget to force replicate FROM your PDCe TO this server. How to is found in the discussion following the solution provided.

PDCe = PDC emulator.


IN YOUR CASE:
Not being able to connect to a netlogon share means your Host A record can't resolve to the server.

It can also mean the netlogon share is in a subdirectory of itself.

Example:

%system32%netlogon\netlogon

I have seen both.

If this doesn't resolve the problem, I would go to the command prompt and Ping the server by name to see what IP it is trying to resolve. If no reply, DNS is still not resolving the server.

 
05.12.2008 at 01:01PM PDT, ID: 21550075
A-MONTERO:
and I realize these procedures but without results. that is exactly what I do with this root:

%system32%netlogon\netlogon

the dns resolve  and ping the server.
 
05.16.2008 at 11:12PM PDT, ID: 21588151

Rank: Wizard

ChiefIT:
You may be in a journal wrap situation.

Can you check your event logs ON ALL domain controllers to see if you have File replication errors?
Accepted Solution
 
05.30.2008 at 06:09AM PDT, ID: 21677342
A-MONTERO:
thank everyone , I review the event in the EventViewer, and the server was trying to find a policy folder sysvol not existed,I to re-create the folder which tried to find and immediately stop receiving this error.
 
 
20080236-EE-VQP-29 / EE_QW_2_20070628