Solved

NETDIAG DNS ERROR

Posted on 2004-09-27
1
1,118 Views
Last Modified: 2008-01-09
Installed WINDOWS 2000 Support tools for sp4 and ran a netdiag -v on DC server. here is the following error.

DNS test . . . . . . . . . . . . . : Failed
      Interface {B21BF725-2833-4014-8F9B-A709B41961DE}
        DNS Domain: test.com
        DNS Servers: 10.12.0.3
        IP Address: 10.12.0.3
        The DNS registration is disabled for this interface
Check the DNS registration for DCs entries on DNS server '10.12.0.3'
Query for DC DNS entry _ldap._tcp.test.com. on DNS server 10.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _ldap._tcp.Main-Office._sites.test.com. on DNS server
10.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _ldap._tcp.pdc._msdcs.test.com. on DNS server 10.12.0.
3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _ldap._tcp.gc._msdcs.test.com. on DNS server 10.12.0.3
 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _ldap._tcp.Main-Office._sites.gc._msdcs.test.com. on D
NS server 10.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _ldap._tcp.0cb3a4de-6d64-47eb-9adc-669c4e40709c.domains._
msdcs.test.com. on DNS server 10.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry gc._msdcs.test.com. on DNS server 10.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry ab67c958-2e35-485d-9320-7b28fafecaeb._msdcs.test.com.
on DNS server 10.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _kerberos._tcp.dc._msdcs.test.com. on DNS server 10.12
.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _kerberos._tcp.Main-Office._sites.dc._msdcs.test.com.
on DNS server 10.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _ldap._tcp.dc._msdcs.test.com. on DNS server 10.12.0.3
 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _ldap._tcp.Main-Office._sites.dc._msdcs.test.com. on D
NS server 10.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _kerberos._tcp.test.com. on DNS server 10.12.0.3 faile
d.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _kerberos._tcp.Main-Office._sites.test.com. on DNS ser
ver 10.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _gc._tcp.test.com. on DNS server 10.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _gc._tcp.Main-Office._sites.test.com. on DNS server 10
.12.0.3 failed.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _kerberos._udp.test.com. on DNS server 10.12.0.3 faile
d.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _kpasswd._tcp.test.com. on DNS server 10.12.0.3 failed
.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry _kpasswd._udp.test.com. on DNS server 10.12.0.3 failed
.
DNS Error code: DNS_ERROR_RCODE_NAME_ERROR (Name does not exist on DNS server)
Query for DC DNS entry test.com. on DNS server 10.12.0.3 failed.
DNS Error code: 0x0000251D
    [WARNING] The DNS entries for this DC are not registered correctly on DNS se
rver '10.12.0.3'. Please wait for 30 minutes for DNS server replication.
    [FATAL] No DNS servers have the DNS records for this DC registered.

THERE ARE NO EVENT ID ERRORS ON MACHINE.

** SOMETHING TO NOTE**
SOME HOW THE AD WAS EVEN THOUGH THERE WAS NOT AD DNS IN THE NETWORK... IT WAS POINTED TO A UNIX DNS.  I TOOK THE LIBERTY TO INSTALL AD DNS ON THIS MACHINE AND THEN CREATE FORWARDING TABS TO TO POINT TO THE UNIX DNS> THERE IS NO DOCUEMENTATION ON HOW THE NETWORK WAS UPGRADED.
0
Comment
Question by:cogit
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 3

Accepted Solution

by:
rmullins earned 500 total points
ID: 12164357
It sounds like this machine is not successfully registering itself in DNS (using Dynamic DNS). Active Directory NEEDS some DNS records to funtion properly.

Most likely causes for this are:
1) Systems is not set to register itself with DNS servers
2) DNS Server isn't allowing dynamic updates from clients (registering themself in DNS).

Refer to the following:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;237675

To check #1, note the section under 'Configure TCP/IP'

If there is no real reason for having DNS on this system (since you are only forwarding requests), I'd remove it and point the system back at the UNIX DNS system, since the only thing this gets you is some caching of DNS entries (which will be undesired for your process of troubleshooting).

#2, check with the administrator of the UNIX system to see that Dynamic Updates are being allowed. AD needs a bunch of entries to work properly, including Service Resource Records. These are automatically added by the AD system but the DNS server needs to allow the dynamic updates.

In short, the UNIX DNS Server must support the following:
    SRV RR (RFC 2052).
    Dynamic update protocol (RFC 2136).
Note: BIND versions 8.1.2 and later support these requirements

If your DNS server meets these requirements, dynamic updates simply need to be enabled.

Alternatively, you can create the records manually in the DNS Server, but it is tedious as there are lots of long, tricky entries and the entries need to be exact. It is a pain to maintain and you would need to add new records for every DC and make updates if IP's ever change, etc.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
This article was initially published on Monitis Blog, you can read it here . When it comes to deciding which approach to website performance monitoring is best for your business, unfortunately, like so many options in life . . . it depends. In t…
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question