Solved

_msdcs Zones missing from DNS Server

Posted on 2008-10-09
13
1,416 Views
Last Modified: 2009-06-14
I have an SBS 2003 server. The dns structure with the content of pdc, gp, DC etc that is normally under the _MSDCS folder < under the DOMAIN.local> Folder is missing. There is a higher level folder _MSDCS.Domain.local folder in the zone that does contain the msdcs folder structure. In attempts to recreate the _msdcs folder under the domain.local folder I have deleted it and recreated it by redoing the deligation and stopping and starting the net logon service, checking the network tcp IP dns register setting and enabling dynamic updates, ipconfig /registerdns. None of these has recreted the substructure. If I do DCDiag tests to test DNS it passes all testes and only complains abount the KCC. netdiag /fix was run but the problem persists. I need to migrate the server to a different box and am worried that if I get to migrating the AD I will run into problems.
0
Comment
Question by:CodeBlueEngineers
13 Comments
 
LVL 13

Expert Comment

by:rhinoceros
ID: 22685249
DNS Missing -msdcs zone
http://www.petri.co.il/forums/showthread.php?t=13710

I hope it can help you
0
 
LVL 6

Expert Comment

by:Hardeep_Saluja
ID: 22691704
Go to <systemroot>\WINDOWS\system32\config
Rename netlogon.dns and netlogon.dnb to anything
Run following commands:
net stop netlogon
net stop dns
ipconfig/flushdns
net start dns
net start netlogon
ipconfig/flushdns

Close and reopen dns console.. u should have _msdcs pulled up by netlogon now
0
 
LVL 6

Expert Comment

by:Hardeep_Saluja
ID: 22691707
and also u should have new netlogon.dns and netlogon.dnb files creates in the specified location
it actually pulls data from AD
Let me know
0
 

Author Comment

by:CodeBlueEngineers
ID: 22707746
Hi I managed to promote a DC and it validated. However it also did not create the -msdcs structure.
0
 

Author Comment

by:CodeBlueEngineers
ID: 22707764
If I run DC diag testes agains the server it fails. If I use the orginal server that has a _msdcs.domain.local folder as a forward zone. The Server can do the DNS Tests
0
 

Author Comment

by:CodeBlueEngineers
ID: 22707853
Hi
Under your forward zones : If you have your domain.local and a msdcs.domain.local you should be fine

Thx
0
Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 6

Expert Comment

by:Hardeep_Saluja
ID: 22746714
Is your replication working fine?
0
 
LVL 6

Expert Comment

by:Hardeep_Saluja
ID: 22746717
Also, open adsiedit.msc
Go to "Domain" partition >> <dc=domainname> >> CN=System >> CN=MicrosoftDNS
Under this, does your _msdcs exist on your domain partition??
0
 

Author Comment

by:CodeBlueEngineers
ID: 22753436
Domain" partition >> <dc=domainname> >> CN=System >> CN=MicrosoftDNS
There is no _MSDCS structure. It is higher in the root and contains the DC and other info
0
 
LVL 6

Expert Comment

by:Hardeep_Saluja
ID: 23138671
Hiiii .. any update or any other information you require, please let me know
Hope above information helped :)
0
 

Author Comment

by:CodeBlueEngineers
ID: 23186661
I traced this problem in the way that the AD was originally setup when they setup the server. Once you promote a server to a DC and transfer the FMSO roles the new server creates the same structure. AD will work, but the Diags is not testing successful to the server if is not the GC?
I have not found the solution to it, but at least it works..
If I setup a new AD partition the mscds folder structure is created under the zone for the domain. I am looking for an MS article that can explain this better..
0
 

Accepted Solution

by:
ee_auto earned 0 total points
ID: 24622325
Question PAQ'd, 125 points refunded, and stored in the solution database.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now