Problems with Virtual Server on a 2008 Domain Controller
Posted on 2008-11-18
I am setting up two new servers using Windows Server 2008. After setting up thier roles, all is well and they replicated properly. Then I reach the final step, installing Virtual Server 2005 R2 SP1 on the PDC.
After installing the Virtual Server app, the domain starts giving all types of errors. This is without even setting up any VM instances and happens as soon as the installation completes. At this point the DC's give errors when foring a replication throught the AD Sites and Services console.
When forcing replication to the secondary DC: "The target principle name is incorrect."
When forcing replication to the primary with Virtual server: "A security package specific error occured."
The Virtual Server itself provides two errors when the service starts.
1. The service principal names for Virtual Server could not be registered. Constrained delegation cannot be used until the SPNs have been registered manually. Error 0x80072098 - Insufficient access rights to perform the operation.
2. An error has occured during the creation of Service Connection points for Virtual Server in Active Directory. Either a domain controller is not available to complete the operation or there is a security problem accessing the domain. This operation will be retried the next time the service starts. Error 0x80070005 - Access is denied.
Strangely, if I load a Virtual server the instance runs properly and can access the DC.
Here is the real kicker. If I simply uninstall Virtual Server 2005, all problems go away and replication works fine.