Solved

How to interpret DCDIAG results

Posted on 2008-06-18
1
809 Views
Last Modified: 2012-05-05
Hello All,
We have a total of 4 Domain Controllers, all running Windows Server 2003, SP2. I ran DCDIAG on all of them, and only 1 DC displays an error. The other 3 are completely clean.

Here is the error:
Test: frssysvol
There are errors after SYSVOL has been shared

The error is to 1 DC

We're also getting a lot of KDC errors in the application log on this DC, which could explain why our Cisco Secure ACS is not authenticating wireless or VPN users through this DC. This DC is acting as a RADIUS server.

The KDC error event ID are 7 and 20.

The only real issue we're having is with this Cisco Secure ACS authentication via RADIUS. Everyone else authenticates OK.

If anyone can help, it would be much appreciated.
Thanks!
John
0
Comment
Question by:lyon-it
1 Comment
 
LVL 3

Accepted Solution

by:
GlobalStrata earned 500 total points
ID: 21816601
Most of the issues of dcdiag are DNS records configuration.   Microsoft has a free webcast that explains a bit about using DCdiag for troubleshooting DNS: http://support.microsoft.com/kb/905900

Also, the following articles will help you read the output:

http://technet2.microsoft.com/windowsserver/en/library/5237db58-a1e8-40cd-ae8a-7f52848a90f21033.mspx?mfr=true

http://technet2.microsoft.com/windowsserver/en/library/824f106c-a90b-421b-aa44-ebc1403c8b4c1033.mspx?mfr=true

cheers,

Gladys I. Rodriguez
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question