Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Created additional domain. Cannot log in to it if main DC is down

Posted on 2004-11-23
9
Medium Priority
?
166 Views
Last Modified: 2011-09-20
I created an additional domain controller. Everything seems to have replicated fine.

to test the redundancy, I turned off my first domain controller. Only the additional domain controller was on.


I tried logging in to the domain with a client, and it says DOMAIN CANNOT BE FOUND


any ideas?
Thanks
0
Comment
Question by:dissolved
  • 5
  • 4
9 Comments
 
LVL 71

Expert Comment

by:Chris Dent
ID: 12657035

You need to do several more things to allow you to do that.

1. Create a second DNS Server - This is important because your clients need it to find the servers that allow log on.

So, inside DNS Manager add an Active Directory Integrated Forward Lookup zone for your domain. This should contain all the data from your existing DNS.

Then add the new servers IP as the Secondary DNS for all other clients and servers - so they know what to ask.

2. Make the server a Global Catalog. You can do this in Active Directory Sites and Services, select the server, then NTDS Settings and properties. Inside there is a little tick box to make the Server a Global Catalog.

That should fix it :)
0
 

Author Comment

by:dissolved
ID: 12657924
1. Please help explain step one a little further. I am confused.  You are saying I need to add a DNS server on to my ADDITIONAL domain controller right? This will make a total of 2 DNS servers in my network (one for each DC) What do I do from there? Will it replicate the DNS from my other (original) DC automatically?

<<Then add the new servers IP as the secondary DNS for all other clients and servers>>
Where do I do this at?

2. I have to make the server a global catalog in order for it process logons from clients right? I can have more than 1 global catalog on the domain?

Sorry for being so inquisitive, I am on a learning rampage.
Thanks
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 12658042

1. Yep. If you turn the other server off you won't have a DNS available on your network.

Active Directory requires DNS because it contains all the information about which servers can authenticate logons etc etc.

If you use Active Directory Integrated zones on both servers it will replicate everything between them as part of normal AD Replication so you should just need to add an AD Integrated (Forward Lookup) zone to the DNS Manager on your new server.

If you check in the IP Configuration for any of your PCs or Servers they probably have one DNS Server listed at the moment (your main DC), since that one won't be available (due to being turned off) you will also need to add in the address for the new server as a secondary DNS. Now when it fails to connect the first server it can try the second and look for the domain again.

You can view the current configuration with "ipconfig /all" from the command prompt.

2. You can have lots of Global Catalogs.

They handle Universal Group Membership and, because of that, are required on the network to allow logon.
0
Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 

Author Comment

by:dissolved
ID: 12658366
Ok, so I just install/configure DNS on my additoinal domain controller. And have the clients use it as a secondary. That simple right? I dont have to do any DNS configuration (right click > properties> add name server)?

I will also have to redo my DHCP server to include the IP of the second DNS serer right?  This way, the clients will have both?
0
 

Author Comment

by:dissolved
ID: 12658378
Sorry let me re write that last comment

Ok, so I just install/configure DNS on my additional domain controller. And have the clients use it as a secondary. That simple right? I dont have to do any DNS configuration on my domain controllers themselves do i (right click > properties> add name server)?

I will also have to redo my DHCP server to include the IP of the second DNS serer right?  This way, the clients will have both?
0
 
LVL 71

Accepted Solution

by:
Chris Dent earned 2000 total points
ID: 12658603

Yep that's all you have to do. Nice and easy huh? :)

And yep it's a good idea to add the information to the DHCP Scope.

Of course if your DHCP server is the main server, and the DHCP is offline then any clients that restart won't be able to get an IP address.
0
 

Author Comment

by:dissolved
ID: 12658732
thanks for the help.
Im going to try it when I get home.

Now the question is, when do you have to do any configurations to the DNS server? Because I now have 2 DNS servers.  Do I have to right click my DNS server and click "ADD DNS SERVER".  Or will all of this be automatically replicated if both DNS servers are AD integrated.

Thanks!
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 12658769

Add DNS Server to connect to the current server (or which ever one you want to set up).

Select Forward Lookup Zones and add a new zone. Make it Primary AD Integrated with the same domain name as the rest of your domain.

The contents will replicate from the other domain controller.
0
 

Author Comment

by:dissolved
ID: 12659137
thanks again
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
The article explains the process to deploy a Self-Service password reset portal I developed a few years ago. Hopefully, it will prove useful to someone.  Any comments, bug reports etc. are welcome...
Look below the covers at a subform control , and the form that is inside it. Explore properties and see how easy it is to aggregate, get statistics, and synchronize results for your data. A Microsoft Access subform is used to show relevant calcul…
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…

577 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question