[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 874
  • Last Modified:

How to interpret DCDIAG results

Hello All,
We have a total of 4 Domain Controllers, all running Windows Server 2003, SP2. I ran DCDIAG on all of them, and only 1 DC displays an error. The other 3 are completely clean.

Here is the error:
Test: frssysvol
There are errors after SYSVOL has been shared

The error is to 1 DC

We're also getting a lot of KDC errors in the application log on this DC, which could explain why our Cisco Secure ACS is not authenticating wireless or VPN users through this DC. This DC is acting as a RADIUS server.

The KDC error event ID are 7 and 20.

The only real issue we're having is with this Cisco Secure ACS authentication via RADIUS. Everyone else authenticates OK.

If anyone can help, it would be much appreciated.
Thanks!
John
0
lyon-it
Asked:
lyon-it
1 Solution
 
GlobalStrataCommented:
Most of the issues of dcdiag are DNS records configuration.   Microsoft has a free webcast that explains a bit about using DCdiag for troubleshooting DNS: http://support.microsoft.com/kb/905900

Also, the following articles will help you read the output:

http://technet2.microsoft.com/windowsserver/en/library/5237db58-a1e8-40cd-ae8a-7f52848a90f21033.mspx?mfr=true

http://technet2.microsoft.com/windowsserver/en/library/824f106c-a90b-421b-aa44-ebc1403c8b4c1033.mspx?mfr=true

cheers,

Gladys I. Rodriguez
0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now