pjwallis
asked on
DNS cannot find a primary authoritative DNS
This is a SBS 2003 server which has worked okay for about 3 years with some problems. I'm now trying to fixe the DNS error. the netdiag.txt
I'm not sure where to start.
Thanks for your help.
..........................
Computer Name: SERVERN
DNS Host Name: servern.cleavers.local
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 15 Model 67 Stepping 3, AuthenticAMD
List of installed hotfixes :
Removed to make this list smaller
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Server Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : servern
IP Address . . . . . . . . : 192.168.0.87
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.0.100
Primary WINS Server. . . . : 192.168.0.87
Dns Servers. . . . . . . . : 192.168.0.87
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{AFA1D373-8E10
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'servern.cleavers.local.'.
The name 'servern.cleavers.local.' may not be registered in DNS.
[WARNING] The DNS entries for this DC are not registered correctly on DNS server '192.168.0.87'. Please wait for 30 minutes for DNS server replication.
[FATAL] No DNS servers have the DNS records for this DC registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{AFA1D373-8E10
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{AFA1D373-8E10
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
I'm not sure where to start.
Thanks for your help.
..........................
Computer Name: SERVERN
DNS Host Name: servern.cleavers.local
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 15 Model 67 Stepping 3, AuthenticAMD
List of installed hotfixes :
Removed to make this list smaller
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Server Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : servern
IP Address . . . . . . . . : 192.168.0.87
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.0.100
Primary WINS Server. . . . : 192.168.0.87
Dns Servers. . . . . . . . : 192.168.0.87
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{AFA1D373-8E10
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'servern.cleavers.local.'.
The name 'servern.cleavers.local.' may not be registered in DNS.
[WARNING] The DNS entries for this DC are not registered correctly on DNS server '192.168.0.87'. Please wait for 30 minutes for DNS server replication.
[FATAL] No DNS servers have the DNS records for this DC registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{AFA1D373-8E10
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{AFA1D373-8E10
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
ASKER
Yes this server is the only one in the domain being the DC and holding all fismo roles.
Both the simple query and the recursive query passed the test.
Both the simple query and the recursive query passed the test.
Have a look if the servername exists in forward and reverse Zones only once. Perhabs you should activate the cleanup routines of the server.
You can also try the command ipconfig /registerdns on the server.
You can also try the command ipconfig /registerdns on the server.
ASKER
What are the cleanup routines of the server?
I tried ipconfig /registerdns which failed see event below.
i tried 'nltest.exe /dsregdns' and it completed successfully.
Event Type: Warning
Event Source: NETLOGON
Event Category: None
Event ID: 5781
Date: 24/04/2010
Time: 4:24:19 PM
User: N/A
Computer: SERVERN
Description:
Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ForestDnsZones.cleavers.l
Possible causes of failure include:
- TCP/IP properties of the network connections of this computer contain wrong IP address(es) of the preferred and alternate DNS servers
- Specified preferred and alternate DNS servers are not running
- DNS server(s) primary for the records to be registered is not running
- Preferred or alternate DNS servers are configured with wrong root hints
- Parent DNS zone contains incorrect delegation to the child zone authoritative for the DNS records that failed registration
USER ACTION
Fix possible misconfiguration(s) specified above and initiate registration or deletion of the DNS records by running 'nltest.exe /dsregdns' from the command prompt or by restarting Net Logon service. Nltest.exe is available in the Microsoft Windows Server Resource Kit CD.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 2a 23 00 00 *#..
I tried ipconfig /registerdns which failed see event below.
i tried 'nltest.exe /dsregdns' and it completed successfully.
Event Type: Warning
Event Source: NETLOGON
Event Category: None
Event ID: 5781
Date: 24/04/2010
Time: 4:24:19 PM
User: N/A
Computer: SERVERN
Description:
Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ForestDnsZones.cleavers.l
Possible causes of failure include:
- TCP/IP properties of the network connections of this computer contain wrong IP address(es) of the preferred and alternate DNS servers
- Specified preferred and alternate DNS servers are not running
- DNS server(s) primary for the records to be registered is not running
- Preferred or alternate DNS servers are configured with wrong root hints
- Parent DNS zone contains incorrect delegation to the child zone authoritative for the DNS records that failed registration
USER ACTION
Fix possible misconfiguration(s) specified above and initiate registration or deletion of the DNS records by running 'nltest.exe /dsregdns' from the command prompt or by restarting Net Logon service. Nltest.exe is available in the Microsoft Windows Server Resource Kit CD.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 2a 23 00 00 *#..
What are the cleanup routines of the server?
-> Right Click on the Forward Lookup Zone and choose properties, there is a button und the select box for dynamic updates, in german it's "Alterung", there you can define a cleanup of old DNS Entries.
Check the following things:
- NIC(s) of the Server have to use the IP Adress of the DNS Server
- Any wrong delegation inside the properties of the DNS Server
Also check the _msdcs Zone, perhabs this helps:
http://www.bhcblog.com/2009/04/23/fixing-active-directory-dns-_msdcs-_sites-_tcp-_udp/
-> Right Click on the Forward Lookup Zone and choose properties, there is a button und the select box for dynamic updates, in german it's "Alterung", there you can define a cleanup of old DNS Entries.
Check the following things:
- NIC(s) of the Server have to use the IP Adress of the DNS Server
- Any wrong delegation inside the properties of the DNS Server
Also check the _msdcs Zone, perhabs this helps:
http://www.bhcblog.com/2009/04/23/fixing-active-directory-dns-_msdcs-_sites-_tcp-_udp/
ASKER
Thanks for the cleanup routines. I have done all twice.
Below is the output of dcdiag /fix followed by the output of netdiag /fix
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SE
Starting test: Connectivity
The host b085cdef-44c3-4dc3-82e1-eb
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(b085cdef-44c3-4dc3-82e1-e
be resolved, the server name (servern.cleavers.local) resolved to the
IP address (192.168.0.87) and was pingable. Check that the IP address
is registered correctly with the DNS server.
......................... SERVERN failed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SE
Skipping all tests, because server SERVERN is
not responding to directory service requests
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : cleavers
Starting test: CrossRefValidation
......................... cleavers passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... cleavers passed test CheckSDRefDom
Running enterprise tests on : cleavers.local
Starting test: Intersite
......................... cleavers.local passed test Intersite
Starting test: FsmoCheck
......................... cleavers.local passed test FsmoCheck
**************************
Netdiag /fix follows I removed the list of hotfixes to save space.
**************************
..........................
Computer Name: SERVERN
DNS Host Name: servern.cleavers.local
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 15 Model 67 Stepping 3, AuthenticAMD
List of installed hotfixes :
****** removed to save space ******************
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Server Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : servern
IP Address . . . . . . . . : 192.168.0.87
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.0.100
Primary WINS Server. . . . : 192.168.0.87
Dns Servers. . . . . . . . :
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.
No remote names have been found.
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{AFA1D373-8E10
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'servern.cleavers.local.'.
The name 'servern.cleavers.local.' may not be registered in DNS.
[FATAL] Failed to fix: DC DNS entry cleavers.local. re-registeration on DNS server '127.0.0.1' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.cleavers.local.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-S
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.pdc._msdcs.clea
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.gc._msdcs.cleav
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-S
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.2c779535-24d0-4
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry gc._msdcs.cleavers.local. re-registeration on DNS server '127.0.0.1' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry b085cdef-44c3-4dc3-82e1-eb
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.dc._msdcs.c
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.Default-Fir
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.dc._msdcs.cleav
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-S
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.cleavers.lo
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.Default-Fir
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _gc._tcp.cleavers.local. re-registeration on DNS server '127.0.0.1' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _gc._tcp.Default-First-Sit
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.cleavers.lo
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.cleavers.loc
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.cleavers.loc
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry ForestDnsZones.cleavers.lo
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.ForestDnsZones.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-S
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry DomainDnsZones.cleavers.lo
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.DomainDnsZones.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-S
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Fix Failed: netdiag failed to re-register missing DNS entries for this DC on DNS server '127.0.0.1'.
[FATAL] No DNS servers have the DNS records for this DC registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{AFA1D373-8E10
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{AFA1D373-8E10
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
Below is the output of dcdiag /fix followed by the output of netdiag /fix
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SE
Starting test: Connectivity
The host b085cdef-44c3-4dc3-82e1-eb
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(b085cdef-44c3-4dc3-82e1-e
be resolved, the server name (servern.cleavers.local) resolved to the
IP address (192.168.0.87) and was pingable. Check that the IP address
is registered correctly with the DNS server.
......................... SERVERN failed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SE
Skipping all tests, because server SERVERN is
not responding to directory service requests
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : cleavers
Starting test: CrossRefValidation
......................... cleavers passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... cleavers passed test CheckSDRefDom
Running enterprise tests on : cleavers.local
Starting test: Intersite
......................... cleavers.local passed test Intersite
Starting test: FsmoCheck
......................... cleavers.local passed test FsmoCheck
**************************
Netdiag /fix follows I removed the list of hotfixes to save space.
**************************
..........................
Computer Name: SERVERN
DNS Host Name: servern.cleavers.local
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 15 Model 67 Stepping 3, AuthenticAMD
List of installed hotfixes :
****** removed to save space ******************
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Server Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : servern
IP Address . . . . . . . . : 192.168.0.87
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.0.100
Primary WINS Server. . . . : 192.168.0.87
Dns Servers. . . . . . . . :
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.
No remote names have been found.
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{AFA1D373-8E10
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'servern.cleavers.local.'.
The name 'servern.cleavers.local.' may not be registered in DNS.
[FATAL] Failed to fix: DC DNS entry cleavers.local. re-registeration on DNS server '127.0.0.1' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.cleavers.local.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-S
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.pdc._msdcs.clea
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.gc._msdcs.cleav
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-S
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.2c779535-24d0-4
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry gc._msdcs.cleavers.local. re-registeration on DNS server '127.0.0.1' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry b085cdef-44c3-4dc3-82e1-eb
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.dc._msdcs.c
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.Default-Fir
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.dc._msdcs.cleav
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-S
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.cleavers.lo
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kerberos._tcp.Default-Fir
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _gc._tcp.cleavers.local. re-registeration on DNS server '127.0.0.1' failed.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _gc._tcp.Default-First-Sit
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kerberos._udp.cleavers.lo
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kpasswd._tcp.cleavers.loc
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _kpasswd._udp.cleavers.loc
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry ForestDnsZones.cleavers.lo
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.ForestDnsZones.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-S
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry DomainDnsZones.cleavers.lo
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.DomainDnsZones.
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Failed to fix: DC DNS entry _ldap._tcp.Default-First-S
DNS Error code: DNS_ERROR_RCODE_SERVER_FAI
[FATAL] Fix Failed: netdiag failed to re-register missing DNS entries for this DC on DNS server '127.0.0.1'.
[FATAL] No DNS servers have the DNS records for this DC registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{AFA1D373-8E10
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{AFA1D373-8E10
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
where do I find the _msdsc entries. ?
What do I look for with the DC being registered in the DNS zone?
The permissions appear to be okay allowing the domain administrator full access.
I'm logged on as the Domain Administrator.
What do I look for with the DC being registered in the DNS zone?
The permissions appear to be okay allowing the domain administrator full access.
I'm logged on as the Domain Administrator.
ASKER
I found it - the forward lookup zone wasn't created with the exact name of the active directory.
Deleted it and recreated the forward lookup zone and followed the directions of the following site.
http://www.bhcblog.com/2009/04/23/fixing-active-directory-dns-_msdcs-_sites-_tcp-_udp/
as suggested by abt-it. Thanks heaps - it's all working.
Deleted it and recreated the forward lookup zone and followed the directions of the following site.
http://www.bhcblog.com/2009/04/23/fixing-active-directory-dns-_msdcs-_sites-_tcp-_udp/
as suggested by abt-it. Thanks heaps - it's all working.
ASKER
My lack of understand made this hard to follow. As I learned what was happening it all suddenly fell into place. It's now easy to delete the forward lookup zone and recreate it, after some great help.
Is your server a DNS server for itself?
Could you please go to DNS server mmc and select properties of your server, go to Monitoring tab, select and perform both test - write results here.