I'm having a problem with one of my MS DNS servers and searching so far had not produced any useful results. Also, I should mention that I'm actually a network engineer, but am stuck with this Active Directory problem so any advice might need to be dumbed down to a non MCP level
I have a forest with two child domains, so total of 3 zones.
Let's say those are:
where domain1.com is the forest zone (it was the only domain back in the day so everything grew out of that one).
I also have 4 sites:
site1 and site2 each have two domain controllers for domain1.com
site3 has two domain controllers for domain2.local
site4 has one domain controller for domain3.local
I'm doing a virtualization project in my site3, so I virtualized my pdc domain controller yesterday. Now I should mention that I have virtualized the secondary one a while ago and had no problems. I was told by our VMware consultant that virtualizing DCs is not usually a successful task and for that reason I should demote the DC before proceeding. I did that with dc2.domain2.local (which worked great) long time ago. Yesterday was the day for dc1.domain2.local which was the pdc.
I demoted it, P2V'd it and promoted it again. Since than, I get
Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 4007
Time: 9:36:15 AM
The DNS server was unable to open zone _msdcs.domain2.local in the Active Directory from the application directory partition ForestDnsZones.domain2.loc
al. This DNS server is configured to obtain and use information from the directory for this zone and is unable to load the zone without it. Check that the Active Directory is functioning properly and reload the zone. The event data is the error code.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp
0000: 0d 00 00 00 ....
I thought there shouldn't be ForestDnsZones in domain2.local since it's a child domain to begin with. I do have ForestDnsZones in my domain1.com.
I get that message every time I restart the DNS server. I also, can't see any obvious issues resulting from that other than this message itself.
All three zones are AD stored and replicate to all DNS in the forest.