?
Solved

Netlogon Event ID: 5719 - domain communication issue

Posted on 2008-10-08
4
Medium Priority
?
3,174 Views
Last Modified: 2012-06-27
A Windows 2003 server is in a remote office connecting over a separate Cisco hardware based VPN on a PIX through an ADSL circuit.   After working fine for months, all of the sudden the server has communication problems in finding the domain across the WAN and authenticating.  The result is that it cannot connect to any device outside of the local subnet and in turn, this server cannot be accessed remotely in any way outside of the local subnet (ping, RD, file share, etc).   It is possible to login locally to the server , but domain based login is not possible.  Rebooting has no effect and repowering other devices has no effect.  This server can communicate with other devices at the remote office on the same LAN and other devices at the remote office can communicate successfully with either this local server, to the internet or or across the vpn without a problem and there are no errors logged on the ipsec VPN.   It appears as if policies have locked down the server from anything outside of its 192.168.91.0 subnet because it can't connect to the domain.

I've looked at this ms kb:
Cannot connect to domain controller and cannot apply Group Policy with Gigabit Ethernet devices
http://support.microsoft.com/kb/326152/en-us 

but this is a 10/100 switch and NIC and shouldn't have anything to do with a Gigabit Ethernet device.

==============================
This kb has more promise, How to force Kerberos to use TCP instead of UDP in Windows Server 2003, in Windows XP, and in Windows 2000
http://support.microsoft.com/kb/244474 

but why would this occur all of the sudden?  I may be be able to adjust the vpn settings not to fragment instead.
==============================

Any advice?

this is the event id:
Event Type:      Error
Event Source:      NETLOGON
Event Category:      None
Event ID:      5719
Date:            10/8/2008
Time:            12:29:31 PM
User:            N/A
Computer:      <MYSERVER>
Description:
This computer was not able to set up a secure session with a domain controller in domain CORP due to the following:
There are currently no logon servers available to service the logon request.  
This may lead to authentication problems. Make sure that this computer is connected to the network. If the problem persists, please contact your domain administrator.  

ADDITIONAL INFO
If this computer is a domain controller for the specified domain, it sets up the secure session to the primary domain controller emulator in the specified domain. Otherwise, this computer sets up the secure session to any domain controller in the specified domain.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 5e 00 00 c0    
 
0
Comment
Question by:thefumbler
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22672689
This event id will occur mainly because it may be out of buffer space in the NetBT datagram buffer. check this page for the details and the link i am giving you is very good direction of solving this problem.This aricle

http://www.chicagotech.net/wineventid.htm#Event%20ID%205719%20-%20The%20system%20cannot%20log%20you%20on%20now%20because%20the%20domain%20name%20is%20not%20available.

http://www.eventid.net/display.asp?eventid=5719&eventno=104&source=NETLOGON&phase=1
0
 
LVL 1

Accepted Solution

by:
thefumbler earned 0 total points
ID: 22680127
sk_raja_raja, adding the NetBT registry entry had no effect.  

I tried updating the Intel network drivers from 2005 drivers to the latest 2007 drivers.  Its an older Dell server using an Intel Pro/100 S Server Adapter but also has a 2nd disabled Intel Pro/100 Network Connection.   The installation automatically re-enabled the 2nd NIC card and by default it was set to DHCP.  The 2nd NIC retrieved a DHCP address from its own server and I was briefly able to gain outside network access to the server for a brief period apparently with that 2nd NIC card.  However, I changed the 2nd NIC IP to a static IP and it immediately stopped working again.  I changed back to DHCP and it did not work immediately, but coming back to it to do further troubleshooting about 60 minutes later, it did work.  

Not only that but the primary adapter is now working.   Since I can't have 2 adapters with the same NetBios name forever, I'll need to resolve by disabling NetBeui on one.  I'm waiting to reboot the server to see if it still works first, then make that change.  

NetBIOS Name Conflicts When NetBEUI Used on Multiple NICs
http://support.microsoft.com/kb/103470 

Any idea what's happening here?
0
 
LVL 1

Author Comment

by:thefumbler
ID: 22799248
bump
0
 
LVL 2

Expert Comment

by:brian_appliedcpu
ID: 25861199
Possible easy solution that worked for me...
In the DHCP config in our firewall (end point of the vpn) we added
dchpd wins xxx.xxx.xxx.xxx
where the ip was the ip address of our dns server.
We are NOT running wins on the DC but upon reboot of the workstation all the errors went away.
We confirmed this on another customers network and it worked the same way.
Not quite sure why but it works.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…
Suggested Courses

800 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question