Reset_
asked on
There are currently no logon servers available to service the logon request
i have one root domain conaining two domain controllers, and one sub domain containing 2 domian controllers, 3 citrix servers and 1 DB servers. I am currently getting the error message written below on all servers except DC's.
I get the same error on:
Citrix srv 1, Citrix srv 2, Citrix srv 3 and the DB server. All (4) DC does not get the error message.
The error message is:
Type: Warning
Source: LSASRV
Category: SPNEGO
EventID: 40960
The Security System detected an authentication error for the server DNS/0-asp-dco01.domain.com . The failure code from authentication protocol Kerberos was "There are currently no logon servers available to service the logon request.
(0xc000005e)".
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
I get the same error on:
Citrix srv 1, Citrix srv 2, Citrix srv 3 and the DB server. All (4) DC does not get the error message.
The error message is:
Type: Warning
Source: LSASRV
Category: SPNEGO
EventID: 40960
The Security System detected an authentication error for the server DNS/0-asp-dco01.domain.com
(0xc000005e)".
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Check the DNS Settings. All clients need to have your Windows DNS server set as the Primary DNS Server since they need to locate the LDAP SRV record in order to identify the domain controller.
your RPC service may have timed out on the root DC's as well (If not DNS related)
ASKER
Jay_Jay70, that sounds like it could be it, how do i check that, and what can i do to fix it? Sorry for the low point on this one, i only have 90 left :)
points are nothing my friend :) Check the RPC service on the DC's, also check the time service on each DC and see whats failing if anything
ASKER
:) glad to hear, i really appreciate the effort
The RPC service was started on all dc's. I had a hunch this could be dns related earlier, but i thought i had tried it all. Everyone has only internal dns servers (offcourse).
But i tried something else and it seemes like it sorted the problem. On the ROOT DC, i set the DNS to:
Allow dynamic updates: None (i was a little quick on the trigger, because in my mind i thought i set non secure, wich is an option on the server.) I went to bed, and this morning i had no errors in my eventlogs. I looked at the DC's and there were an error complaining that the dns server did not allow dynamic updates. I went back to the root dc, and could see that i had set the "NONE" meaning no updates instead of the "non secure". I then set the both secure and non secure option in the root DC dns. i then tried to reboot ctrix 1 citrix2 citrix 3 and dba 1, and now i didnt get any errors after reboot.
comments?
The RPC service was started on all dc's. I had a hunch this could be dns related earlier, but i thought i had tried it all. Everyone has only internal dns servers (offcourse).
But i tried something else and it seemes like it sorted the problem. On the ROOT DC, i set the DNS to:
Allow dynamic updates: None (i was a little quick on the trigger, because in my mind i thought i set non secure, wich is an option on the server.) I went to bed, and this morning i had no errors in my eventlogs. I looked at the DC's and there were an error complaining that the dns server did not allow dynamic updates. I went back to the root dc, and could see that i had set the "NONE" meaning no updates instead of the "non secure". I then set the both secure and non secure option in the root DC dns. i then tried to reboot ctrix 1 citrix2 citrix 3 and dba 1, and now i didnt get any errors after reboot.
comments?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.