[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 8664
  • Last Modified:

DsBindWithCred to DomainNamingMaster failed with status 1722 (0x6ba):

Hello People.

we are conducting a domain rename of our AD and seem to be stuck somwhere in the process.
following the steps in the Microsoft "Domain Rename Procedure", we are up to STEP 5, where we are trying to run:
repadmin/syncall /d /e /P /q DomainNamingMaster

This generates the error below:

DsBindWithCred to DomainNamingMaster failed with status 1722 (0x6ba):
    Can't retrieve message string 1722 (0x6ba), error 1815.

this prompted us to run a netdiag which fails a dns test with the following error:

DNS test . . . . . . . . . . . . . : Failed
    [WARNING] The DNS entries for this DC are not registered correctly on
rver '192.168.10.2'. Please wait for 30 minutes for DNS server replicatio
    [WARNING] The DNS entries for this DC are not registered correctly on
rver '192.168.10.3'. Please wait for 30 minutes for DNS server replicatio
    [FATAL] No DNS servers have the DNS records for this DC registered.

so now, focus is changed to trying to resolve this as I think the repadmin error is citing a dns resolution fault b/w the DCs (we have 2).
having tried a netdiag /fix and getting the error below (by the way, the .local domain name is the domain we're renaming to - some bright spark named the original domain ctech.net, so resolution tries to use dns servers from the internet servers of ctech.net)
       
DNS test . . . . . . . . . . . . . : Failed
    [FIX] re-register DC DNS entry 'cnetechlan.local.' on DNS server '192.168.10
.2' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.cnetechlan.local.' on DNS server
'192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.Default-First-Site-Name._sites.cn
etechlan.local.' on DNS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.pdc._msdcs.cnetechlan.local.' on
DNS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.gc._msdcs.cnetechlan.local.' on D
NS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.Default-First-Site-Name._sites.gc
._msdcs.cnetechlan.local.' on DNS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.4e9a5b94-f4fa-4c7c-9b12-1c7f54005
85f.domains._msdcs.cnetechlan.local.' on DNS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry 'gc._msdcs.cnetechlan.local.' on DNS server '
192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '766e052d-3ea5-4af2-9315-52cf61ea4e01._msdcs.
cnetechlan.local.' on DNS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_kerberos._tcp.dc._msdcs.cnetechlan.local.'
on DNS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_kerberos._tcp.Default-First-Site-Name._site
s.dc._msdcs.cnetechlan.local.' on DNS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.dc._msdcs.cnetechlan.local.' on D
NS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.Default-First-Site-Name._sites.dc
._msdcs.cnetechlan.local.' on DNS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_kerberos._tcp.cnetechlan.local.' on DNS ser
ver '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_kerberos._tcp.Default-First-Site-Name._site
s.cnetechlan.local.' on DNS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_gc._tcp.cnetechlan.local.' on DNS server '1
92.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_gc._tcp.Default-First-Site-Name._sites.cnet
echlan.local.' on DNS server '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_kerberos._udp.cnetechlan.local.' on DNS ser
ver '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_kpasswd._tcp.cnetechlan.local.' on DNS serv
er '192.168.10.2' succeed.
    [FIX] re-register DC DNS entry '_kpasswd._udp.cnetechlan.local.' on DNS serv
er '192.168.10.2' succeed.
    FIX PASS - netdiag re-registered missing DNS entries for this DC successfull
y on DNS server '192.168.10.2'.
    [FATAL] No DNS servers have the DNS records for this DC registered.

everything's else "passed"  the netdiag and dcdiag isn't reporting any errrors.


I have deleted the dns zones and recreated them again meticulously to no avail.

all errors are still present.

can anyone help?

0
entuityadmin
Asked:
entuityadmin
1 Solution
 
Netman66Commented:
Something that isn't broadly documented is that occasionally, you have to manually change the DNS suffix on the servers - found in properties of My Computer>Computer Name>More.

You also recreated (in parallel) the new DNS Forward zone?  

Are all servers pointing to your own DNS servers (no ISP)?

0
 
entuityadminAuthor Commented:
Thanks for the tip.
creating a parallel dns forward zone sorted the netdiag error.
however on running epadmin/syncall /d /e /P /q DomainNamingMaster
still generates the error:
DsBindWithCred to DomainNamingMaster failed with status 1722 (0x6ba):
    Can't retrieve message string 1722 (0x6ba), error 1815.

we have decided to forgo the domain rename and instead utilise the dns resolution, so thanks for that suggestion anyway.

0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now