dkraut
asked on
Swap IP address of Domain Controllers?
Attempted to change the IP address of a domain controller at remote site. This site currently has (2) DC’s and both are running AD integrated DNS and pointing to their self as primary DNS and the DNS server at HQ for secondary. I changed the IP address on DC1 and then ran ipconfig /flushdns followed by ipconfig /registerdns. I then ran dcdiag /fix but received the following error.
LDAP search failed with error 58,
The specified server cannot perform the requested operation..
***Error: The machine, DC1 could not be contacted, because of a bad net response. Check to make sure that this machine is a domain controller.
Also tried net stop netlogon > net start netlogon, but that did not help
Ultimately we’re just trying to replace DC1 with DC2, but since some apps have been hardcoded to use the IP address of DC1, we need DC2 to assume DC1’s IP address. Is there a better way to get there? ¿
LDAP search failed with error 58,
The specified server cannot perform the requested operation..
***Error: The machine, DC1 could not be contacted, because of a bad net response. Check to make sure that this machine is a domain controller.
Also tried net stop netlogon > net start netlogon, but that did not help
Ultimately we’re just trying to replace DC1 with DC2, but since some apps have been hardcoded to use the IP address of DC1, we need DC2 to assume DC1’s IP address. Is there a better way to get there? ¿
Member_2_4940386
Make sure all DNS entries are correct. DNS is crucial for DCs to replicate and authenticate properly. You can always add a second IP address to the DC and let it assume both it's own IP and the old DC's IP.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
If you change back to its originally IP, do you get the same errors? (dcdiag)
Btw. "dcdiag /fix" is not neccesary to run if you change the IP of a DC.
Btw. "dcdiag /fix" is not neccesary to run if you change the IP of a DC.
It all depends on what version of Windows snusqubben - Windows 2003 requires a DCDIAG /FIX to sort out an IP change (as per Microsoft guidelines).
That technet article is wrong. The dcdiag /fix command does nothing else besides writing back the computer account's AD replication SPN (and SPN's are not mapped towards an IP but the hostname/FQDN).
It should have said netdiag /fix, or restart the netlogon service to register the SRV records.
It should have said netdiag /fix, or restart the netlogon service to register the SRV records.
ASKER
Guys, both DC's are Windows 2008 and I did follow the link above. Maybe I should ask how to configure DNS in this scenario. Currently both DC's are running AD Integrated DNS and both point to themselves as primary and to our DNS server in HQ as secondary.
Also, yes, changing the IP address back to its original address resolves the DCDIAG error.
llarmeu, I cannot add a second IP address since I need to essentially swap the current address between DC1 and DC2. For example, here's a sample of my current setup at that site.
DC1 has the following settings >
IP = 10.2.2.10
DG = 10.2.2.1
DNS = 10.2.2.10, 10.5.5.10
DC2 has the following settings >
IP = 10.2.2.11
DG = 10.2.2.1
DNS = 10.2.2.11, 10.5.5.10
I simply need to make DC2 = 10.2.2.10 and remove DC1 from the domain.
Also, yes, changing the IP address back to its original address resolves the DCDIAG error.
llarmeu, I cannot add a second IP address since I need to essentially swap the current address between DC1 and DC2. For example, here's a sample of my current setup at that site.
DC1 has the following settings >
IP = 10.2.2.10
DG = 10.2.2.1
DNS = 10.2.2.10, 10.5.5.10
DC2 has the following settings >
IP = 10.2.2.11
DG = 10.2.2.1
DNS = 10.2.2.11, 10.5.5.10
I simply need to make DC2 = 10.2.2.10 and remove DC1 from the domain.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You could also do it manually by changing the IP manually and editing the DNS configration manually, but I don't suggest that method unless all else fails.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks! completed and working fine now.
Does that link https://technet.microsoft.com/en-us/library/cc758579%28WS.10%29.aspx?f=255 still applicable to Win 2012 R2 ?