Active directory problems

i think i've gotten myself into some deep trouble.
when i got here (this company i work at)
there was this w2k sbs server set up.
i added an additional domain controller and thats when the mess started. Some stuff was badly configured and i only found out later (for example OWA didnt work properly, DHCP leases were set at 2 hours etc).
replication between the two domain controllers didnt go too well, and later on due to hardware failure the addiotional domain controller died.
since i was having more and more problems with the replication i decided to build up a new w2k server as member server instead of DC (it wouldnt even let me promote it as DC anymore).
since the computer wasnt properly removed from the domain it was still in AD sites and servers. and i cant get it removed from there.
the event logger is giving me massive errors, but the one that worries me the most now is this one
Error 8430(20ee) has occurred (Internal ID 20612ee).  Please contact Microsoft Product Support Services for assistance.
what to do ? (dont tell me to call microsoft, cus thats what i'll do when i cant fix this by myself or with help from you guys).
LVL 4
RazwerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

izwizCommented:
Try rebooting in Directory Services Restore mode on the DC.

Press F8 when the starting windows status bar appears. Select Directory Services Restore mode.

Once windows boots, try Start, Run: ntdsutil

then type: semantic data analysis
then: go fixup


0
izwizCommented:
Also, did you install SP4?

There is a problem/hotfix here:

http://support.microsoft.com/default.aspx?scid=kb;en-us;827531
0
RazwerAuthor Commented:
ok, i will try in the evening since i cant (Edited by Computer101)the server down during office hours (10.10 am now)
this problem doesnt really affect the users (luckaly) but i'm scared (Edited by Computer101) of a system crash.
0
Cloud Class® Course: Ruby Fundamentals

This course will introduce you to Ruby, as well as teach you about classes, methods, variables, data structures, loops, enumerable methods, and finishing touches.

izwizCommented:
Make sure you run a system state backup before you do any work on this.
0
RazwerAuthor Commented:
ok, worsed case scenario is that it all goes bad huh.
but how do i get the malicous domain controller removed from AD sites and servers? the name is just there but the computer field is empty.
i run indeed sp4, but this message is just from the past few days, and sp4 is already installed for like 3 months or so.
0
izwizCommented:
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
RazwerAuthor Commented:
good one mate. its giving good messages again, and my dns server isnt bitching either anymore.
still getting some failure audits and messages from me other server that it cant contact the licence server. any hints on where i can find something on that?
0
RazwerAuthor Commented:
it gives "service ticket request failed" in the event viewer of the remaining DC, even for itself.
0
izwizCommented:
Can you give the full log details, inc failure code?
0
RazwerAuthor Commented:
ok, one example is this
Service Ticket Request Failed:
       User Name:      FRIED-WK-010$
       User Domain:      FRIEDERICHS
       Service Name:      krbtgt/FRIEDERICHS
       Ticket Options:      0x2
       Failure Code:      0x20
       Client Address:      99.0.0.67
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

another one
Service Ticket Request Failed:
       User Name:      FRIED-DS-01$
       User Domain:      FRIEDERICHS
       Service Name:      krbtgt/FRIEDERICHS
       Ticket Options:      0x2
       Failure Code:      0x20
       Client Address:      127.0.0.1

-----
below is the error on the member server i got
Replication of license information failed because the License Logging Service on server \\FRIED-DS-01 could not be contacted.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0
RazwerAuthor Commented:
ok, i saw the licence logging service wasnt started so i started it (bit stupid i didnt look at that before) but still got another audit failure...
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows 2000

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.