Solved

Additional Domain Controller either does not exist or could not be contacted.

Posted on 2008-06-16
7
235 Views
Last Modified: 2010-04-18
Hello,
We have a problem with Windows 2003 SP2 Domain Controller. On booting, it gave the following error message:
"lsass.exe-system error: Security Accounts Manager initialization failed" error message and event ID 1168 is logged when you restart a Windows Server 2003 domain controller.
We boot the system to Active Directory restore mode but we cannot logon to the system so the only option left is to restore from Backup using Symantec Backup Exec.
We did a full restore including the system state; but on reboot the system came up with the same error message
"lsass.exe-system error: Security Accounts Manager initialization failed"
So we decided to seize the entire five roles on the Domain Controller unto the additional Domain Controller. After seizing all the roles, we experience the following problems:
1.      Users cannot logon to the domain
2.      The additional domain controller cannot be connected to from the network using remote desktop
3.      Exchange services did not start

How can I get this additional domain controller to work so that at least my domain can come up and work can continue in my office while I battle with initial error?
Please help!!!
0
Comment
Question by:BABAJIDEFET
  • 2
  • 2
7 Comments
 
LVL 51

Expert Comment

by:Netman66
ID: 21798660
Make the other (remaining) DC a Global Catalog.
0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 21801221
There are known issues with 2003 server SP2:
Maybe this will help.
http://www.lan-2-wan.com/2003-SP2.htm
0
 

Author Comment

by:BABAJIDEFET
ID: 21803178
the machine is already a global catalog server but its not working, it does not authenticate users and its generally invisible on the network.
0
 
LVL 51

Accepted Solution

by:
Netman66 earned 250 total points
ID: 21804409
Check DNS to be sure the SRV record exists in _msdcs.

You may need to change the NIC settings to point only to itself for DNS and restart the Netlogon service to register properly.
0
 
LVL 38

Assisted Solution

by:ChiefIT
ChiefIT earned 250 total points
ID: 21806587
I totally agree with what netman just sated:
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2003_Server/Q_23356031.html
______________________________________________________________________
If the above doesn't work:
The netlogon service and browser service share a couple things in common.

Both use Netbios. Both use Netbios ports 137,138, and 139

Here, this will back me up on this claim:
http://www.microsoft.com/smallbusiness/support/articles/ref_net_ports_ms_prod.mspx

Make sure Netbios over TCP/IP is enabled on the server.
Make sure Netbios ports are available between the clients and server. You can do this by performing a telnet connection to those ports.

If this is set up in a VPN scenario, you may have to use WINS. Netbios broadcasts will not propogate over NAT and a VPN tunnel.


0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
Learn about cloud computing and its benefits for small business owners.
With the power of JIRA, there's an unlimited number of ways you can customize it, use it and benefit from it. With that in mind, there's bound to be things that I wasn't able to cover in this course. With this summary we'll look at some places to go…
Hi friends,  in this video  I'll show you how new windows 10 user can learn the using of windows 10. Thank you.

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now