BSModlin
asked on
AD Login Issues after DC demoted
Here is my environment. I had 1 2008 Domain Controller and 2 Server 2012 R2 DC's. All of the roles are on DC1 (2012 R2 Server). I just demoted the 2008 server and now login are taking forever, and users are having issues opening and saving documents to network drives. I checked DNS and all "seems" well. I run a repadmin /syncall and no errors are returned.
I saw errors in the event viewer regarding time... I then saw that the time server was the 2008 box..... I configured the 2012 R2 box to get the time from an external source... Now both of the DCs are syncing the time exactly the same.... I have also verified that the DHCP clients are poiinting to the correct DNS servers... both 2012 r2 boxes....
What am I missing.... please help!!
I saw errors in the event viewer regarding time... I then saw that the time server was the 2008 box..... I configured the 2012 R2 box to get the time from an external source... Now both of the DCs are syncing the time exactly the same.... I have also verified that the DHCP clients are poiinting to the correct DNS servers... both 2012 r2 boxes....
What am I missing.... please help!!
ASKER
All roles are on the 2012 R2 server DC1, as they should..... What else to check for the slow logins?
are the 2012 servers global catalogs?
ASKER
Yes
Have you raised the functional level of the domain?
Also, restart the KDC (Kerberos Key Distribution Center) service on both DC's
Best regards
Also, restart the KDC (Kerberos Key Distribution Center) service on both DC's
Best regards
have you run a dcdiag /v /e >c:dcdiag.txt
Are saving files to the network the only thing that is slow? how about user logins from their workstations?
Was your old server running WINS?
Are saving files to the network the only thing that is slow? how about user logins from their workstations?
Was your old server running WINS?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I've requested that this question be closed as follows:
Accepted answer: 0 points for BSModlin's comment #a40488903
Assisted answer: 167 points for Seth Simmons's comment #a40481197
Assisted answer: 167 points for Walter Padrón's comment #a40481554
Assisted answer: 166 points for compdigit44's comment #a40487801
for the following reason:
Found my own solution
Accepted answer: 0 points for BSModlin's comment #a40488903
Assisted answer: 167 points for Seth Simmons's comment #a40481197
Assisted answer: 167 points for Walter Padrón's comment #a40481554
Assisted answer: 166 points for compdigit44's comment #a40487801
for the following reason:
Found my own solution
select your own comment as the solution
nobody else gets points since not all details were provided and none of us would have known your NAS was a contributing factor
nobody else gets points since not all details were provided and none of us would have known your NAS was a contributing factor
if the roles are between those servers then the 2008 server was not the time server since clients get their time from the server with the PDC emulator role