?
Solved

RPC Server Unavailable Running DCPROMO

Posted on 2009-02-10
11
Medium Priority
?
5,555 Views
Last Modified: 2012-08-13
I am trying to promote a win2k3 member server to be a DC in a windows 2000 domain.
When I run DCPROMO I get the following error on the win2k3 server:



"The RPC Server is unavailable"

If I perform a ping -a to my servers it returns the full name so it seems as if DNS is working correctly although from what I have already read on the net it does point to a DNS issue.

I also had a problem when trying to add a workstation to the domain earlier on when the same error was reported by I disabled the firewall and it then connected ok. (There is no firewall installed on my 2003 server)

When I run a 'replicate now' from AD sites and services it fails with RPC server unavailable

What can I do to resolve this?
0
Comment
Question by:MattWilkinson
  • 8
  • 3
11 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 23601773
What box are you pointing to for DNS?
Check and make sure all the SRV records are properly registered for that box.
I'd also download portqry and make sure it is not a port issue
example (run from memberserver)
portqry -n ipaddress of dns server -e 53
Since you already checked that the firewall is not on then we can rule that out.
 
Thanks
Mike

 
0
 

Author Comment

by:MattWilkinson
ID: 23602036
I have run portqry and tested the following ports:
389 and 636 (LDAP)
88 and 464 (Kerberos)
They seem to be working ok - are there any others I should check?

Im not sure how to check the SRV records can you send me an idiots guide link?

Thanks
0
 

Author Comment

by:MattWilkinson
ID: 23602041
I have tried port 32 as well and this is 'listening'
0
 [eBook] Windows Nano Server

Download this FREE eBook and learn all you need to get started with Windows Nano Server, including deployment options, remote management
and troubleshooting tips and tricks

 

Author Comment

by:MattWilkinson
ID: 23602047
Sorry I meant 53 (I mistyped that somehow :-p)
0
 

Author Comment

by:MattWilkinson
ID: 23602129
I may have found this for myself

I have run an nslookup
set type=all
_tcp.<my domain>

This returned the two DNS servers (which are also the two DCs)

so it appers that this is correct?
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 23602213
Yeah and you can check for the SRV records by set type=SRV and querying for them too.  There is also a kb article about that
http://support.microsoft.com/kb/816587
The member server you are trying to promote is pointing to one of those boxes for DNS?
Have you checked the dcpromoui.log  
Sometimes that can provide clues too.
Thanks
Mike
0
 

Author Comment

by:MattWilkinson
ID: 23602814

Yes the results above were on the member server I am trying to promote.

There is some errors in the log saying that the user does not have the correct privilege to promote a server but I am using a domain admins account. (our domain is part of a forest and I have domain admin acccess to our domain only)
0
 

Author Comment

by:MattWilkinson
ID: 23602966
The error is
Active directory could not create the NTDS settings object for this domain controller [blah] on the remote domain controller [blah2] ensure the provided network credentials have sufficient permissionsThe RPC server is unavailable

but I think the permissions thing may be a red herring. I have now tried using two domain admin accounts.
0
 

Author Comment

by:MattWilkinson
ID: 23631729
I still haven't managed to solve this - does anyone have any more ideas?

Is there a way I can check the permissions of the user(s) to make sure they have the correct privilages?
(they are both members of the domain admins group but is there anything else?)
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 23632443

http://forums.techarena.in/active-directory/997458.htm

http://www.petri.co.il/forums/showthread.php?t=4503

There were some other suggestions (time sync being one) in those threads.

This one is tough.
0
 

Accepted Solution

by:
MattWilkinson earned 0 total points
ID: 23806218
I have managed to circumvent this issue by removing this DC from the domain and promoting another server to be a DC. I think that the server in question was suffering from terminal issues from a previous virus infection so no 'normal' solutions worked - thanks for the responses
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question