DNS server netlogon.dns file invalid entried

Posted on 2008-06-11
Last Modified: 2008-06-13
Hi all
I am running server 2003 ent edition domain.  My netdiag was failing over dns test with "DNS test . . . . . . . . . . . . . : Failed
       [FATAL] File \config\netlogon.dns contains invalid DNS entries.       [FA
TAL] File \config\netlogon.dns contains invalid DNS entries.       [FATAL] File
\config\netlogon.dns contains invalid DNS entries.       [FATAL] File \config\ne
tlogon.dns contains invalid DNS entries.    [FATAL] No DNS servers have the DNS
records for this DC registered.

I looked at this file and found that it takes lots of values of our OLD DOmain name.  Can I remove those entries or simply rename this file? if not whats the easist way to fix this issue.
Question by:amanzoor
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
LVL 71

Expert Comment

by:Chris Dent
ID: 21767227

Used the Domain Rename tool?

You might find you can get away with Find / Replace in the netlogon.dns file to correct the entries.


Author Comment

ID: 21768591
I backed up the copy of this netlogon.dns and removed all entries of our old domain name.  did ipconfig /flushdns, restarted dns and then ipconfig /registerdns.  Looked at the file and the old domain name came back.  I wonder where this file is getting the entries from, is it adsiedit??
Help plz
LVL 71

Accepted Solution

Chris Dent earned 500 total points
ID: 21768678

Nope, that would be too easy. Did you try replacing the entries with entries for the new domain? Or does it have duplicates in there?

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.


Author Comment

ID: 21768822
Running dcdiag /test:dns gave me:   Help how to fix it?

C:\Documents and Settings\Administrator.mydomain>dcdiag /test:dns

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests

   Testing server: Oak\SERV01
      Starting test: Connectivity
         ......................... SERV01 passed test Connectivity

Doing primary tests

   Testing server: Oak\SERV01

DNS Tests are running and not hung. Please wait a few minutes...

   Running partition tests on : ForestDnsZones

   Running partition tests on : DomainDnsZones

   Running partition tests on : Schema

   Running partition tests on : Configuration

   Running partition tests on : domainname

   Running enterprise tests on :
      Starting test: DNS
         Test results for domain controllers:


               TEST: Forwarders/Root hints (Forw)
                  Error: Root hints list has invalid root hint server: l.root-se (

         Summary of test results for DNS servers used by the above domain contro

            DNS server: (
               1 test failure on this DNS server
               This is not a valid DNS server. PTR record query for the failed on the DNS server

         ......................... passed test DNS


Author Comment

ID: 21768828
I completly removed the entries of my old domain name.

Author Comment

ID: 21775272
As you said, I renamed the entries in netlogon.dns and now the DNS test in netdiag is passed and all NICS are properly registered.
LVL 71

Expert Comment

by:Chris Dent
ID: 21776822

Good stuff, glad it worked out :)


Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question