Solved

active directory net logon errors

Posted on 2009-04-06
5
1,450 Views
Last Modified: 2012-05-06
Per tthe 2 event files below,  it seems i am missing a record in my file server,  ,  can this be confirmed and is this a A record??
Event Type: Error
Event Source: Userenv
Event Category: None
Event ID: 1054
Date:  4/6/2009
Time:  2:57:03 PM
User:  NT AUTHORITY\SYSTEM
Computer: GANDALF
Description:
Windows cannot obtain the domain controller name for your computer network.
(An unexpected network error occurred. ). Group Policy processing aborted.
 
Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5774
Date:  4/6/2009
Time:  11:28:38 AM
User:  N/A
Computer: GANDALF
Description:
The dynamic registration of the DNS record '125de9a0-ebbb-4d48-92f4-07308a863dc3._msdcs.LightHousera.com. 600 IN CNAME gandalf.LightHousera.com.' failed on the following DNS server:
 
DNS server IP address: 172.20.50.21
Returned Response Code (RCODE): 5
Returned Status Code: 9005
 
For computers and users to locate this domain controller, this record must be registered in DNS.
 
USER ACTION
Determine what might have caused this failure, resolve the problem, and initiate registration of the DNS records by the domain controller. To determine what might have caused this failure, run DCDiag.exe. You can find this program on the Windows Server 2003 installation CD in Support\Tools\support.cab. To learn more about  DCDiag.exe, see Help and Support Center. To initiate registration of the DNS records by  this domain controller, run 'nltest.exe /dsregdns' from the command prompt on the domain controller or restart Net Logon service. Nltest.exe is available in the Microsoft Windows  Server Resource Kit CD.
  Or, you can manually add this record to DNS, but it is not recommended.
 
ADDITIONAL DATA
Error Value: DNS operation refused.

Open in new window

0
Comment
Question by:dpawletzki
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 17

Assisted Solution

by:Nik
Nik earned 50 total points
ID: 24081954
Can you ping the domain controller from this PC by it's name?
0
 
LVL 57

Accepted Solution

by:
Mike Kline earned 300 total points
ID: 24082128
'125de9a0-ebbb-4d48-92f4-07308a863dc3._msdcs.LightHousera.com
That is the DC-GUID (some people also refer to it as DSA GUID)
Jorge has a good writeup on it here:
http://blogs.dirteam.com/blogs/jorge/archive/2006/12/09/DSA_2D00_GUIDs-and-Invocation-IDs.aspx
Try and restart your netlogon service and see if the record is registered properly.
Thanks
Mike
0
 
LVL 18

Assisted Solution

by:Americom
Americom earned 150 total points
ID: 24083704
If your DNS server is configured for dynamic update and not just secure update, by restarting the netlogon services, teh record should registered properly. Have you tried to verify that yet?
Aslo, since there are many reasons for event ID 5774, verify if any of these apply to your enviornment:
http://www.eventid.net/display.asp?eventid=5774&eventno=353&source=NETLOGON&phase=1
0
 

Author Comment

by:dpawletzki
ID: 24091737
The error I get when restarting netlogon is  ,  i jhave 2 dc  .20  .21   .20 primary ,  it seems there is a problem with a cname record??

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5774
Date:  4/7/2009
Time:  2:33:57 PM
User:  N/A
Computer: GANDALF
Description:
The dynamic registration of the DNS record '125de9a0-ebbb-4d48-92f4-07308a863dc3._msdcs.LightHousera.com. 600 IN CNAME gandalf.LightHousera.com.' failed on the following DNS server:

DNS server IP address: 172.20.50.21
Returned Response Code (RCODE): 5
Returned Status Code: 9005

For computers and users to locate this domain controller, this record must be registered in DNS.

USER ACTION
Determine what might have caused this failure, resolve the problem, and initiate registration of the DNS records by the domain controller. To determine what might have caused this failure, run DCDiag.exe. You can find this program on the Windows Server 2003 installation CD in Support\Tools\support.cab. To learn more about  DCDiag.exe, see Help and Support Center. To initiate registration of the DNS records by  this domain controller, run 'nltest.exe /dsregdns' from the command prompt on the domain controller or restart Net Logon service. Nltest.exe is available in the Microsoft Windows  Server Resource Kit CD.
  Or, you can manually add this record to DNS, but it is not recommended.

ADDITIONAL DATA
Error Value: DNS operation refused.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 05 00                     ..

0
 

Author Closing Comment

by:dpawletzki
ID: 31567255
A number of suggestions helped point me in a better direction, thanks
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question