Solved

Exchange loss of connectivity when Domain Controller Restarts..

Posted on 2007-04-03
8
414 Views
Last Modified: 2010-03-17
We are running an Exchange 2003 server on a Windows 2003 server and are having the following problem:
Everytime we restart our domain controller we lose access to our mailboxes even though we have another DC locally and one out of state.  Our DC's also act as our internal DNS servers as well.  We are pretty much stumpped as to why this happens or how to remedy it.  Any help or nudge in the right direction would be greatly appreciated.

Thanks in advance,
Joe
0
Comment
Question by:techsfefcu
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
8 Comments
 
LVL 9

Expert Comment

by:robjeeves
ID: 18847447
G'day mate

Exchange needs a Global Catalog to funtion.  My guess would be the 2003 Server hosting Exchange isn't a GC.  So just checking you mean there is the 2003 with Exchange and another DC that gets rebooted and you loose your mailboxes? I'd suggest making the DC with Exchange a GC by following these instructions.  

http://support.microsoft.com/kb/313994

Also where does the 2003 point to for DNS? Itself?

Rob
0
 
LVL 104

Expert Comment

by:Sembee
ID: 18847631
Exchange requires constant access to a domain controller. When that domain controller goes away, it does not fail over to another DC immediately. Exchange will not go looking for another DC for at least 30 minutes. During that time Exchange and Outlook is close to useless.

The fix? Don't reboot domain controllers during the day. I only reboot my domain controllers when I have to - I have just rebooted them in the last hour (it is gone midnight here) because of an update. Otherwise they are not rebooted.
The Exchange server was rebooted at the same time and the DC was up first, so when Exchange came online, its DCs were there.

Simon.
0
 

Author Comment

by:techsfefcu
ID: 18934490
Sembee,
I tried your recommendation and it didn't provided the results that I was looking for.  I have multiple GC's and multiple DC's.  I shut down the DC and waited for about 1 hour to see if Exchange would go looking for another DC and GC but, it didn't.  Not to mention that there has to be some kind of way for this to work.  I can't imagine that if my DC was FUBAR that we would lose all email capability. I guess that I'll just keep looking to see if there is a solution to this problem.
Thanks,

-Joe
0
Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

 
LVL 104

Expert Comment

by:Sembee
ID: 18935682
The solution is to restart the Exchange services.
I said it will not go looking for another DC for at least 35 minutes. That is the shortest time. It can take longer than that.
I would hope that in the event of a DC failure you would know about it and would take action.

Simon.
0
 

Author Comment

by:techsfefcu
ID: 18938493
OK...  I'm going to try restarting the Exchange services and se what happens..  

Thanks,

-Joe
0
 

Author Comment

by:techsfefcu
ID: 19052741
OK Here you go...  I can't take credit for this..  My Systems Administrator solved the problem with the loss of connectivity to Exchange via Outlook.  I am posting his resolution as he posted it in our knowledge base..  We worked this way for over a week without incident.

=========
1. We transfer FSMO roles to a new domain controller and set it as a GC.


2. Per the output of the policytest tool, the "Manage auditing and security log" permission for the Exchange Enterprise Servers group is missing from backup domain controllers. Without this permission, the two GC servers cannot be used by Outlook when primary domain controller is offline.


3. We run Setup/domainprep to fix the permission issue, which resolves our issue eventually. After shutting down the primary domain controller, outlook no longer loses connection with Exchange and use other domain controllers for directory and authentication services.
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 21216362
PAQed with points refunded (500)

Computer101
EE Admin
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
how to add IIS SMTP to handle application/Scanner relays into office 365.

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question