Solved

Active directory problems

Posted on 2003-11-18
11
1,648 Views
Last Modified: 2011-09-20
i think i've gotten myself into some deep trouble.
when i got here (this company i work at)
there was this w2k sbs server set up.
i added an additional domain controller and thats when the mess started. Some stuff was badly configured and i only found out later (for example OWA didnt work properly, DHCP leases were set at 2 hours etc).
replication between the two domain controllers didnt go too well, and later on due to hardware failure the addiotional domain controller died.
since i was having more and more problems with the replication i decided to build up a new w2k server as member server instead of DC (it wouldnt even let me promote it as DC anymore).
since the computer wasnt properly removed from the domain it was still in AD sites and servers. and i cant get it removed from there.
the event logger is giving me massive errors, but the one that worries me the most now is this one
Error 8430(20ee) has occurred (Internal ID 20612ee).  Please contact Microsoft Product Support Services for assistance.
what to do ? (dont tell me to call microsoft, cus thats what i'll do when i cant fix this by myself or with help from you guys).
0
Comment
Question by:Razwer
  • 6
  • 5
11 Comments
 
LVL 3

Expert Comment

by:izwiz
ID: 9769716
Try rebooting in Directory Services Restore mode on the DC.

Press F8 when the starting windows status bar appears. Select Directory Services Restore mode.

Once windows boots, try Start, Run: ntdsutil

then type: semantic data analysis
then: go fixup


0
 
LVL 3

Expert Comment

by:izwiz
ID: 9769724
Also, did you install SP4?

There is a problem/hotfix here:

http://support.microsoft.com/default.aspx?scid=kb;en-us;827531
0
 
LVL 4

Author Comment

by:Razwer
ID: 9769726
ok, i will try in the evening since i cant (Edited by Computer101)the server down during office hours (10.10 am now)
this problem doesnt really affect the users (luckaly) but i'm scared (Edited by Computer101) of a system crash.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 3

Expert Comment

by:izwiz
ID: 9769731
Make sure you run a system state backup before you do any work on this.
0
 
LVL 4

Author Comment

by:Razwer
ID: 9769744
ok, worsed case scenario is that it all goes bad huh.
but how do i get the malicous domain controller removed from AD sites and servers? the name is just there but the computer field is empty.
i run indeed sp4, but this message is just from the past few days, and sp4 is already installed for like 3 months or so.
0
 
LVL 3

Accepted Solution

by:
izwiz earned 500 total points
ID: 9769754
0
 
LVL 4

Author Comment

by:Razwer
ID: 9772155
good one mate. its giving good messages again, and my dns server isnt bitching either anymore.
still getting some failure audits and messages from me other server that it cant contact the licence server. any hints on where i can find something on that?
0
 
LVL 4

Author Comment

by:Razwer
ID: 9772165
it gives "service ticket request failed" in the event viewer of the remaining DC, even for itself.
0
 
LVL 3

Expert Comment

by:izwiz
ID: 9777110
Can you give the full log details, inc failure code?
0
 
LVL 4

Author Comment

by:Razwer
ID: 9777398
ok, one example is this
Service Ticket Request Failed:
       User Name:      FRIED-WK-010$
       User Domain:      FRIEDERICHS
       Service Name:      krbtgt/FRIEDERICHS
       Ticket Options:      0x2
       Failure Code:      0x20
       Client Address:      99.0.0.67
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

another one
Service Ticket Request Failed:
       User Name:      FRIED-DS-01$
       User Domain:      FRIEDERICHS
       Service Name:      krbtgt/FRIEDERICHS
       Ticket Options:      0x2
       Failure Code:      0x20
       Client Address:      127.0.0.1

-----
below is the error on the member server i got
Replication of license information failed because the License Logging Service on server \\FRIED-DS-01 could not be contacted.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0
 
LVL 4

Author Comment

by:Razwer
ID: 9777575
ok, i saw the licence logging service wasnt started so i started it (bit stupid i didnt look at that before) but still got another audit failure...
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Migrate DHCP from server 2000 to 2008 1 628
website 1 309
Windows 7 / Windows 8 casual users can't connect to Win 2000 SBS shares 6 311
Migrating from IIS5 to IIS8.5 3 177
NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
This article outlines why you need to choose a backup solution that protects your entire environment – including your VMware ESXi and Microsoft Hyper-V virtualization hosts – not just your virtual machines.
This tutorial gives a high-level tour of the interface of Marketo (a marketing automation tool to help businesses track and engage prospective customers and drive them to purchase). You will see the main areas including Marketing Activities, Design …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question