swing migration

If anyone is familure with SBSMigration.com, Weve completed the  migration from the "originalDC" to the tempDC and everything seems good accept we have a couple problems in event logs that need to be resolved before we move on to the finalDC. They are as follows:

1.       Event ID: 13
a.       Source: Auto Enrollment
b.       Description:
i.      Automatic certificate enrollment for local system failed to enroll from one Domain Controller Certificate 0x800706ba The RPC server is unavailable

2.     Event ID 10009
a.     Source: DCOM
b.     Description:
i.      DCOM was unable to communicate with the computer originalDC.local using any of the configured protocols

3.     Event ID 40960
a.     Category: SPNego
b.     Description:
i.      The security system detected an authentication error for the server LDAP/Localhost. The failure code from authentication protocol Kerberos was there are currently no logon servers available to service the logon request.

We have searched the entire "tempDC" machine and can't find any entries pointing to the "originalDC" machine. Can anyone help.

Who is Participating?
cnmgtConnect With a Mentor Author Commented:
The TempDC was pointing DNS to itself, The FinalDC was pointing to the TempDC until the replication was complete. Both windows firewalls were disabled in services. Everything was great and then I started getting event log errors the DNS suffered a critical error. I removed the Global Catalog and DNS from the FinalDC and then reapplied them and then the error was gone but it broke stuff in the TempDC. So starting over is my best solution. Once I reinstall the TempDC, I'm not sure how the OriginalDC will like having the TempDC attached to it again because the records are still there. I think I should name it something else besides TempDC otherwise I should probably clean up the originalDC.
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
Please use the SBSMigration forums as per the SwingIT kit terms.
Check your firewall settings ... turn it off.

Check to make sure secure channel of DC is fine
Try to ping as well as access resources of both dc's by name as well as ip address
hopefully problem is with secure channel
let me know..
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

cnmgtAuthor Commented:
Hardeep, What do you mean by "secured channels"
Hi ..
For Secure Channel : Check>>  http://msdn.microsoft.com/en-us/library/aa380123(VS.85).aspx

Did u try to ping as well as access resources of both dc's by name as well as ip address??
and if yes, did it worked or u got any error? error may be like : target account name incorrect?

Let me know..
Hardeep Saluja
cnmgtAuthor Commented:
MPECSInc I didn't realize SwingIt had a forum I'll check it out. No! I still have the errors. However, DNS crashed after moving to the final DC. I have to start over. Thanks for your help though. Have a great day.
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
Two things will precipitate a crash like that:
 DNS pointers were incorrect on your NICs during the various stages.
 TempDC and NewSBS have their firewalls on instead of disabled.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.