Solved

There are no more endpoints available from the endpoint mapper.

Posted on 2010-09-02
4
811 Views
Last Modified: 2012-05-10
Hello

A couple of weeks ago I inherited a 2003 AD domain with a single (NSSERVER) domain controller. I have had plenty to do in other areas and as the domain was running smoothly I had not given it more than a cursory glance .

I was adding few users yesterday. Everything was going fine until I was adding the sixth user and I get an error screen with "There are no more endpoints available from the endpoint mapper".

I clicked ok and then was unable to see the domain in Active Directory Users and Computers. If I did connect to domain controller I could see the domain but if I attempted to do anything other than look I was kicked out again. Users also had problems connecting to shares and everything was generally hosed.

After I rebooted the DC the domain was working correctly again until I attempted to add another user and got the endpoint mapper error and fubared the domain again.

I started checking out the logs to see what I could find and it is not good. Seems there was a second domain controller in the domain named MAIL that disappeared without a trace two years ago. The really bad news is there is a newer server in the domain running exchange that is named MAIL that appears to have never been a DC. The domain has been fruitlessly trying to talk to MAIL for two years and this appears to have finally upset the end point mapper.

Server NSSERVER is listed as the RID, PDC and Infrastructure Master. It is also runs a few applications and is the main file server.

Currently the server MAIL is just hosting exchange and there is one other application server in the domain but it is not nor has never been a domain controller.

It is my understanding that in order to correct the missing MAIL domain controller problem I am going to have to delete and recreate my domain.

I have plans to outsource my email in a few months and I would really love to re-purpose the exchange server to be "the" domain controller and give NSSERVER a break.

Does anyone have any ideas on how I may do a patch job to enable me to add users for a couple of months?

Is there some neat DNS trick I could use?

Some diagnostic files attached for your amusement.

dcdiag.txt
dcdiag-v.txt
showreps.txt
0
Comment
Question by:hndscr
  • 2
  • 2
4 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 500 total points
ID: 33589391
have you gone through the metadata process from a good DC to see if you can remove Mail (the one that disappeared without a demotion)
http://www.petri.co.il/delete_failed_dcs_from_ad.htm
Thanks
Mike
0
 

Author Comment

by:hndscr
ID: 33590151
Hi Mike

I have not yet tried this.

I will  tomorrow afternoon as I will have the whole weekend to rebuild the domain if it goes wrong.

Thanks.
0
 

Author Closing Comment

by:hndscr
ID: 33597357
Worked like a charm.

Odd thing was the first user I added after the fix did give the error again but it did create the user. It did not "disappear" the domain this time and I can now add users and other than the first time the error has not returned.

Thanks for your help.  
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 33597820
No problem, glad to help and have a great holiday weekend.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Suggested Solutions

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now