DCDiag /test:DNS failure

rdivilbiss
rdivilbiss used Ask the Experts™
on
I removed Active Directory, i.e. demoted the server from a DC to just another server.

I added 1 of my ISP's DNS Server to the local IP configuration so I would have Internet connectivity when I rebooted.  

Rebooted.

I Ran the AD Wizard establishing a new AD.
I Ran the DNS and DHCP configuration wizards, which in doing so I found the defaults to already be correct. e.g. In DNS there were already forward zone records for the server, there was an _msdcs,net.sb.local forward zone and a  _msdcs subforlder under the net.sb.local forward zone.

In DHCP, it already had the proper scope and reservations for 192.168.1.1 - 192.168.1.10. I did have to add the forwarders to DNS. The local IP dropped the DNS server of the ISP without my intervention and kept the server's IP address as the DNS server.

The router is 192.168.1.1 and the DC server (OLYMPUS) is 192.168.1.10.

I added my user id back to AD and it asked for my password, etc.

The clients pull (or are given) correct information:

Client
=======================================
C:\>ipconfig /all

Windows IP Configuration

        Host Name . . . . . . . . . . . . : divilbiss
        Primary Dns Suffix  . . . . . . . : net.sb.local
        Node Type . . . . . . . . . . . . : Hybrid
        IP Routing Enabled. . . . . . . . : No
        WINS Proxy Enabled. . . . . . . . : No
        DNS Suffix Search List. . . . . . : net.sb.local
                                            net.sb.local
                                            sb.local

Ethernet adapter Local Area Connection:

        Media State . . . . . . . . . . . : Media disconnected
        Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller
        Physical Address. . . . . . . . . : 00-15-C5-1D-AD-82

Ethernet adapter Wireless Network Connection 3:

        Connection-specific DNS Suffix  . : net.sb.local
        Description . . . . . . . . . . . : Intel(R) PRO/Wireless 3945ABG Network Connection
        Physical Address. . . . . . . . . : 00-13-02-A0-78-97
        Dhcp Enabled. . . . . . . . . . . : Yes
        Autoconfiguration Enabled . . . . : Yes
        IP Address. . . . . . . . . . . . : 192.168.1.136
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
        Default Gateway . . . . . . . . . : 192.168.1.1
        DHCP Server . . . . . . . . . . . : 192.168.1.10
        DNS Servers . . . . . . . . . . . : 192.168.1.10
        Lease Obtained. . . . . . . . . . : Saturday, July 03, 2010 3:00:43 PM
        Lease Expires . . . . . . . . . . : Sunday, July 11, 2010 3:00:43 PM

C:\>
=========================================================


SERVER
=========================================================
C:\>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : olympus
   Primary Dns Suffix  . . . . . . . : net.sb.local
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : net.sb.local

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : VIA Rhine II Compatible Fast Ethernet Adapter
   Physical Address. . . . . . . . . : 00-0B-6A-26-AC-F4
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 192.168.1.10
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.1.1
   DNS Servers . . . . . . . . . . . : 127.0.0.1           <--Different from before but I think fine.

C:\>
=========================================================

Ran dcdiag /test:DNS

Got the attached: (Still errors)

Auth  Basc Forw Del     Dyn  RReg  Ext
PASS FAIL  PASS PASS PASS FAIL   n/a

Still do not understand
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Testing server: Default-First-Site-Name\OLYMPUS
      Starting test: Connectivity
         The host 5b763eb9-49aa-4924-af3b-d4b2dfc92347._msdcs.net.sb.local could
 not be resolved to an
         IP address.  Check the DNS server, DHCP, server name, etc
         Although the Guid DNS name
         (5b763eb9-49aa-4924-af3b-d4b2dfc92347._msdcs.net.sb.local) couldn't be
         resolved, the server name (olympus.net.sb.local) resolved to the IP
         address (192.168.1.10) and was pingable.  Check that the IP address is
         registered correctly with the DNS server.
         ......................... OLYMPUS failed test Connectivity
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++
C:\>DCdiag /test:dns

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site-Name\OLYMPUS
      Starting test: Connectivity
         The host 5b763eb9-49aa-4924-af3b-d4b2dfc92347._msdcs.net.sb.local could
 not be resolved to an
         IP address.  Check the DNS server, DHCP, server name, etc
         Although the Guid DNS name
         (5b763eb9-49aa-4924-af3b-d4b2dfc92347._msdcs.net.sb.local) couldn't be
         resolved, the server name (olympus.net.sb.local) resolved to the IP
         address (192.168.1.10) and was pingable.  Check that the IP address is
         registered correctly with the DNS server.
         ......................... OLYMPUS failed test Connectivity

Doing primary tests

   Testing server: Default-First-Site-Name\OLYMPUS

DNS Tests are running and not hung. Please wait a few minutes...

   Running partition tests on : ForestDnsZones

   Running partition tests on : DomainDnsZones

   Running partition tests on : Schema

   Running partition tests on : Configuration

   Running partition tests on : net

   Running enterprise tests on : net.sb.local
      Starting test: DNS
         Test results for domain controllers:

            DC: olympus.net.sb.local
            Domain: net.sb.local


               TEST: Basic (Basc)
                  Error: No LDAP connectivity
                  Warning: adapter [00000001] VIA Rhine II Compatible Fast Ether
net Adapter has invalid DNS server: 127.0.0.1 (olympus.net.sb.local.)
                  Error: all DNS servers are invalid

            TEST: Records registration (RReg)
               Error: Record registrations cannot be found for all the network a
dapters

         Summary of test results for DNS servers used by the above domain contro
llers:

            DNS server: 192.168.1.10 (olympus.net.sb.local.)
               1 test failure on this DNS server
               Name resolution is not functional. _ldap._tcp.net.sb.local. faile
d on the DNS server 192.168.1.10

         Summary of DNS test results:

                                            Auth Basc Forw Del  Dyn  RReg Ext
               ________________________________________________________________
            Domain: net.sb.local
               olympus                      PASS FAIL PASS PASS PASS FAIL n/a

         ......................... net.sb.local failed test DNS

C:\>

Open in new window

Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Top Expert 2013

Commented:
Try restarting the netlogon service on the DC to register its records agaon,  how is your forest setup? (single or multiple domains etc)

That is the DSA GUID that can't be resolved there.

I'm going out to a July 4th BBQ soon so I may not answer a follow up until late.

Thanks

Mike
Top Expert 2005

Author

Commented:
Single DC/Single Domain

Will do
Ipconfig /flushdns
Ipconfig /registerdns
Net stop netlogon
Net start netlogon
dcdiag /test:DNS


See: http://www.experts-exchange.com/Software/Server_Software/File_Servers/Active_Directory/Q_26302361.html

Results Below:


C:\>ipconfig /flushdns

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

C:\>ipconfig /registerdns

Windows IP Configuration

Registration of the DNS resource records for all adapters of this computer has b
een initiated. Any errors will be reported in the Event Viewer in 15 minutes..

C:\>Net stop netlogon
The Net Logon service is stopping.
The Net Logon service was stopped successfully.


C:\>Net start netlogon
The Net Logon service is starting........
The Net Logon service was started successfully.


C:\>dcdiag /test:DNS

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site-Name\OLYMPUS
      Starting test: Connectivity
         The host 5b763eb9-49aa-4924-af3b-d4b2dfc92347._msdcs.net.sb.local could
 not be resolved to an
         IP address.  Check the DNS server, DHCP, server name, etc
         Although the Guid DNS name
         (5b763eb9-49aa-4924-af3b-d4b2dfc92347._msdcs.net.sb.local) couldn't be
         resolved, the server name (olympus.net.sb.local) resolved to the IP
         address (192.168.1.10) and was pingable.  Check that the IP address is
         registered correctly with the DNS server.
         ......................... OLYMPUS failed test Connectivity

Doing primary tests

   Testing server: Default-First-Site-Name\OLYMPUS

DNS Tests are running and not hung. Please wait a few minutes...

   Running partition tests on : ForestDnsZones

   Running partition tests on : DomainDnsZones

   Running partition tests on : Schema

   Running partition tests on : Configuration

   Running partition tests on : net

   Running enterprise tests on : net.sb.local
      Starting test: DNS
         Test results for domain controllers:

            DC: olympus.net.sb.local
            Domain: net.sb.local


               TEST: Basic (Basc)
                  Error: No LDAP connectivity
                  Warning: adapter [00000001] VIA Rhine II Compatible Fast Ether
net Adapter has invalid DNS server: 127.0.0.1 (olympus.net.sb.local.)
                  Error: all DNS servers are invalid

            TEST: Records registration (RReg)
               Error: Record registrations cannot be found for all the network a
dapters

         Summary of test results for DNS servers used by the above domain contro
llers:

            DNS server: 192.168.1.10 (olympus.net.sb.local.)
               1 test failure on this DNS server
               Name resolution is not functional. _ldap._tcp.net.sb.local. faile
d on the DNS server 192.168.1.10

         Summary of DNS test results:

                                            Auth Basc Forw Del  Dyn  RReg Ext
               ________________________________________________________________
            Domain: net.sb.local
               olympus                      PASS FAIL PASS PASS PASS FAIL n/a

         ......................... net.sb.local failed test DNS

C:\>

Open in new window

Commented:
Please change the loopback address back to the server's IP. Don't use the 127 network address.

Warning: adapter [00000001] VIA Rhine II Compatible Fast Ethernet Adapter has invalid DNS server: 127.0.0.1 (olympus.net.sb.local.)

Now, go into the DNS reverse lookups and delete that as a possible NS server.

Once done, type DCdiag /fix|DNS
Top Expert 2005

Author

Commented:
Did it:


C:\>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : olympus
   Primary Dns Suffix  . . . . . . . : net.sb.local
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : net.sb.local

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : VIA Rhine II Compatible Fast Ethernet Adapter
   Physical Address. . . . . . . . . : 00-0B-6A-26-AC-F4
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 192.168.1.10
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.1.1
   DNS Servers . . . . . . . . . . . : 192.168.1.10

C:\>
C:\>dcdiag /fix|dns

C:\>dcdiag /test:DNS

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site-Name\OLYMPUS
      Starting test: Connectivity
         The host 5b763eb9-49aa-4924-af3b-d4b2dfc92347._msdcs.net.sb.local could
 not be resolved to an
         IP address.  Check the DNS server, DHCP, server name, etc
         Although the Guid DNS name
         (5b763eb9-49aa-4924-af3b-d4b2dfc92347._msdcs.net.sb.local) couldn't be
         resolved, the server name (olympus.net.sb.local) resolved to the IP
         address (192.168.1.10) and was pingable.  Check that the IP address is
         registered correctly with the DNS server.
         ......................... OLYMPUS failed test Connectivity

Doing primary tests

   Testing server: Default-First-Site-Name\OLYMPUS

DNS Tests are running and not hung. Please wait a few minutes...

   Running partition tests on : ForestDnsZones

   Running partition tests on : DomainDnsZones

   Running partition tests on : Schema

   Running partition tests on : Configuration

   Running partition tests on : net

   Running enterprise tests on : net.sb.local
      Starting test: DNS
         Test results for domain controllers:

            DC: olympus.net.sb.local
            Domain: net.sb.local


               TEST: Basic (Basc)
                  Error: No LDAP connectivity
                  Warning: adapter [00000001] VIA Rhine II Compatible Fast Ether
net Adapter has invalid DNS server: 192.168.1.10 (olympus.net.sb.local.)
                  Error: all DNS servers are invalid

            TEST: Records registration (RReg)
               Error: Record registrations cannot be found for all the network a
dapters

         Summary of test results for DNS servers used by the above domain contro
llers:

            DNS server: 192.168.1.10 (olympus.net.sb.local.)
               1 test failure on this DNS server
               Name resolution is not functional. _ldap._tcp.net.sb.local. faile
d on the DNS server 192.168.1.10

         Summary of DNS test results:

                                            Auth Basc Forw Del  Dyn  RReg Ext
               ________________________________________________________________
            Domain: net.sb.local
               olympus                      PASS FAIL PASS PASS PASS FAIL n/a

         ......................... net.sb.local failed test DNS

C:\>

Open in new window

Commented:
Have you tried running: Netdiag /fix
Top Expert 2005

Author

Commented:
Well that takes all the fun out of things, being that it appears to have worked.

I'll leave it open a bit for any other comments or suggestions.

Regards,
Rod


KB947864-IE7
        KB948496
        KB948590
        KB948881
        KB949014
        KB950760
        KB950762
        KB950974
        KB951066
        KB951748
        KB952004
        KB952069
        KB952954
        KB953298
        KB954155
        KB954600
        KB955069
        KB955759
        KB955839
        KB956572
        KB956744
        KB956802
        KB956803
        KB956844
        KB957097
        KB958469
        KB958644
        KB958687
        KB958690
        KB958869
        KB959426
        KB960225
        KB960803
        KB960859
        KB961063
        KB961064
        KB961371-v2
        KB961373
        KB961501
        KB963027-IE7
        KB967715
        KB967723
        KB968389
        KB968537
        KB968816
        KB969059
        KB969805
        KB969883
        KB970238
        KB970430
        KB970483
        KB970653-v3
        KB971032
        KB971468
        KB971486
        KB971557
        KB971633
        KB971657
        KB971737
        KB971961-IE8
        KB972270
        KB973037
        KB973354
        KB973507
        KB973525
        KB973540
        KB973687
        KB973815
        KB973869
        KB973874-IE8
        KB973904
        KB973917-v2
        KB974112
        KB974318
        KB974392
        KB974455-IE8
        KB974571
        KB975025
        KB975254
        KB975467
        KB975560
        KB975562
        KB975713
        KB976098-v2
        KB976323
        KB976662-IE8
        KB976749-IE8
        KB977290
        KB977816
        KB977914
        KB978037
        KB978207-IE8
        KB978251
        KB978262
        KB978338
        KB978542
        KB978601
        KB978695
        KB978706
        KB979306
        KB979309
        KB979482
        KB979559
        KB979683
        KB979907
        KB980195
        KB980218
        KB980232
        KB981332-IE8
        KB981793
        KB982381-IE8
        KB982666
        Q147222


Netcard queries test . . . . . . . : Passed
    GetStats failed for 'Infrared Port'. [ERROR_NOT_SUPPORTED]



Per interface results:

    Adapter : Local Area Connection

        Netcard queries test . . . : Passed

        Host Name. . . . . . . . . : olympus
        IP Address . . . . . . . . : 192.168.1.10
        Subnet Mask. . . . . . . . : 255.255.255.0
        Default Gateway. . . . . . : 192.168.1.1
        Dns Servers. . . . . . . . : 192.168.1.10


        AutoConfiguration results. . . . . . : Passed

        Default gateway test . . . : Passed

        NetBT name test. . . . . . : Passed
        [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
r Service', <20> 'WINS' names is missing.
            No remote names have been found.

        WINS service test. . . . . : Skipped
            There are no WINS servers configured for this interface.


Global results:


Domain membership test . . . . . . : Passed


NetBT transports test. . . . . . . : Passed
    List of NetBt transports currently configured:
        NetBT_Tcpip_{BF549414-5A34-4447-B289-AAFD0EBC3BD1}
    1 NetBt transport currently configured.


Autonet address test . . . . . . . : Passed


IP loopback ping test. . . . . . . : Passed


Default gateway test . . . . . . . : Passed


NetBT name test. . . . . . . . . . : Passed
    [WARNING] You don't have a single interface with the <00> 'WorkStation Servi
ce', <03> 'Messenger Service', <20> 'WINS' names defined.


Winsock test . . . . . . . . . . . : Passed


DNS test . . . . . . . . . . . . . : Failed
    [FIX] re-register DC DNS entry '_ldap._tcp.net.sb.local.' on DNS server '192
.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.Default-First-Site-Name._sites.ne
t.sb.local.' on DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.pdc._msdcs.net.sb.local.' on DNS
server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.gc._msdcs.net.sb.local.' on DNS s
erver '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.Default-First-Site-Name._sites.gc
._msdcs.net.sb.local.' on DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.b8c44cf9-adac-47ae-8c5e-4b4b7d835
43a.domains._msdcs.net.sb.local.' on DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '5b763eb9-49aa-4924-af3b-d4b2dfc92347._msdcs.
net.sb.local.' on DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_kerberos._tcp.dc._msdcs.net.sb.local.' on D
NS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_kerberos._tcp.Default-First-Site-Name._site
s.dc._msdcs.net.sb.local.' on DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.dc._msdcs.net.sb.local.' on DNS s
erver '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.Default-First-Site-Name._sites.dc
._msdcs.net.sb.local.' on DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_kerberos._tcp.net.sb.local.' on DNS server
'192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_kerberos._tcp.Default-First-Site-Name._site
s.net.sb.local.' on DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_gc._tcp.net.sb.local.' on DNS server '192.1
68.1.10' succeed.
    [FIX] re-register DC DNS entry '_gc._tcp.Default-First-Site-Name._sites.net.
sb.local.' on DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_kerberos._udp.net.sb.local.' on DNS server
'192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_kpasswd._tcp.net.sb.local.' on DNS server '
192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_kpasswd._udp.net.sb.local.' on DNS server '
192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.DomainDnsZones.net.sb.local.' on
DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.Default-First-Site-Name._sites.Do
mainDnsZones.net.sb.local.' on DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.ForestDnsZones.net.sb.local.' on
DNS server '192.168.1.10' succeed.
    [FIX] re-register DC DNS entry '_ldap._tcp.Default-First-Site-Name._sites.Fo
restDnsZones.net.sb.local.' on DNS server '192.168.1.10' succeed.
    FIX PASS - netdiag re-registered missing DNS entries for this DC successfull
y on DNS server '192.168.1.10'.
    [FATAL] No DNS servers have the DNS records for this DC registered.


Redir and Browser test . . . . . . : Passed
    List of NetBt transports currently bound to the Redir
        NetBT_Tcpip_{BF549414-5A34-4447-B289-AAFD0EBC3BD1}
    The redir is bound to 1 NetBt transport.

    List of NetBt transports currently bound to the browser
        NetBT_Tcpip_{BF549414-5A34-4447-B289-AAFD0EBC3BD1}
    The browser is bound to 1 NetBt transport.


DC discovery test. . . . . . . . . : Passed


DC list test . . . . . . . . . . . : Passed


Trust relationship test. . . . . . : Skipped


Kerberos test. . . . . . . . . . . : Passed


LDAP test. . . . . . . . . . . . . : Passed


Bindings test. . . . . . . . . . . : Passed


WAN configuration test . . . . . . : Skipped
    No active remote access connections.


Modem diagnostics test . . . . . . : Passed

IP Security test . . . . . . . . . : Skipped

    Note: run "netsh ipsec dynamic show /?" for more detailed information


The command completed successfully

C:\Documents and Settings\Administrator.OLYMPUS>dcdiag /test:DNS

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site-Name\OLYMPUS
      Starting test: Connectivity
         ......................... OLYMPUS passed test Connectivity

Doing primary tests

   Testing server: Default-First-Site-Name\OLYMPUS

DNS Tests are running and not hung. Please wait a few minutes...

   Running partition tests on : ForestDnsZones

   Running partition tests on : DomainDnsZones

   Running partition tests on : Schema

   Running partition tests on : Configuration

   Running partition tests on : net

   Running enterprise tests on : net.sb.local
      Starting test: DNS
         ......................... net.sb.local passed test DNS

C:\Documents and Settings\Administrator.OLYMPUS>

Open in new window

Top Expert 2005

Author

Commented:
Man that added a slew of DNS entries!

But it passes dcdiag /test:DNS

Wish I'd tried that before demoting the DC, because now I can not access SQL Server.  Time for another Q.

http:/Q_26306595.html
Top Expert 2005

Author

Commented:
Finally an answer!

Way to go and thanks to all.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial