Link to home
Start Free TrialLog in
Avatar of ImraneA
ImraneA

asked on

Cannot join Windows 2003 Server box to a domain

Hi there

Background :-

2 windows 2003 server boxes (1 PDC, another webserver)
Using Linksys ADSL Gateway Wireless G(ADSL Modem, Router, 4-port switch, firewall + Access Point) (192.168.101.254)

Setup first server (192.168.101.2)
Steps
1.Install wind 2003 server
2.Disk Mangement
3.Page File
4.Router setup
5.TCP/IP
6.DHCP
7.DNS+AD
8.Treminal Services
9.Windows Update + Anti-virus

Checks
Ping from PDC to Router --> ok
Ping from client to PDC --> ok
Internet access --> ok

Second Server (Webserver) (192.168.101.3)
1.Installed Windows 2003 server
2.Tried to join Domain --> did not see domain

Checks
Ping from Webserver to Router --> ok
Ping from Webserver to PDC --> no
Ping from PDC to Webserver --> no
Internet access --> ok

Firewall Rules
Opened Ports 110,1433 & 1434 --> POP3, SQL TCP & SQL UDP

I believe the problem is to do with ports i.e. opening them.

I think I need to create Inbound Services Rules :-
Any (TCP) Allow always 192.168.101.2 Any Wan Users --> do not know port no ?
Any (UDP) Allow always 192.168.101.2 Any Wan Users --> do not know port no ?

Any others ?

Thus, welcome any ideas ?

Thanks...


Avatar of WeHe
WeHe
Flag of Romania image

you have to configure 192.168.101.2 as DNS server (in tcpip settings) on the webserver.
then it will find the domain.
Hello,
Im not sure what firewall rule would have to do with your problem.. Both IP's are within the LAN zone. The firewall rules apply when your are leaving the subnet and talking to other machines outside (internet).

On the webserver, point the primary DNS in TCP to 192.168.101.2. Type this in CMD>
1. ipconfig /flushdns
2. ipconfig /registerdns
3. Ping first servername  (did it reply with the FQDN in AD for first server?)
-Try to join the domain.
Avatar of ImraneA
ImraneA

ASKER

Check it tonight and get back to you...
Avatar of ImraneA

ASKER

Set DNS Server as PDC.  Still did not work.

So, added connection for both PDC + Webserver - wireless connection.  Can ping both sides now BUT, connection keeps dropping every 10 mins or so.  Need to manaully connect it back.

Checked web, based on keywords "linksys WAG54G dropped connection" at google search.

Checked PDC by adding a client to domain, no problems.

When I do get a stable connection, I get the following error, when trying to join webserver to domain.

The following error occurred when DNS was queried for the service location (SRV) resource record used to locate a domain controller for domain Acker.org.uk:

The error was: "DNS name does not exist."
(error code 0x0000232B RCODE_NAME_ERROR)

The query was for the SRV record for _ldap._tcp.dc._msdcs.Acker.org.uk

Common causes of this error include the following:

- The DNS SRV records required to locate a domain controller for the domain are not registered in DNS. These records are registered with a DNS server automatically when a domain controller is added to a domain. They are updated by the domain controller at set intervals. This computer is configured to use DNS servers with following IP addresses:

192.168.101.2
212.159.13.150
212.159.11.150

- One or more of the following zones do not include delegation to its child zone:

Website...
org.uk
uk
. (the root zone)

I used dcpromo to create DNS etc..  Can't figure out what's going on.

Question :-  Is the problems a result of dopped connections causing the above errors indirectly ? or another problem ?

Any ideas...


Avatar of ImraneA

ASKER

bad spelling --> dropped
ASKER CERTIFIED SOLUTION
Avatar of Housenet
Housenet
Flag of Canada image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of ImraneA

ASKER

Hi Housenet

Thanks for comments.  Usually I try to avoid DNS, and get dcpromo to do most of work.  So not familar  about DNS !

Can you explain in step-by-step your steps.(where do i look !!!)

Point A - "The DNS server properties should have forwarders enabled " 

Point B - "Also, if your domain name is mycorp.lan, you should enter mycorp.lan as the domain suffix for your LAN NIC configurationation in DNS."

Point C - "At the time you are trying to join the domain, you pc will query mycorp.lan for a SRV record in the AD DNS zone mycorp.lan. "

Point D - "should have a couple of DNS zones which contain several folders "

Point E - "Do you have the records in DNS the error indicates are not present in the zone?"

The DNS server was unable to complete directory service enumeration of zone Acker.org.uk.  This DNS server is configured to use information obtained from Active Directory for this zone and is unable to load the zone without it.  Check that the Active Directory is functioning properly and repeat enumeration of the zone. The extended error debug information (which may be empty) is "". The event data contains the error.

Prefer to stick to AD to " resolve a domain controller when joining a domain".

No problems increasing points....

Regards





Avatar of ImraneA

ASKER

Hi there

http://www.microsoft.com/windows2000/dns/tshoot/dns_tshoot2A.asp

Your comments have been most helpful.  This url from ms provide detailed troubleshoot approach.

One of going threw it ...