Solved

AD BPA Windows 2008 - DNS Errors

Posted on 2010-09-08
9
296 Views
Last Modified: 2012-05-10
Hi,

I've running the new AD BPA Tool on my Windows Server 2008 R2 box and receiving about 20 errors relating to DNS.....even though DNS seems to be functioning perfectly internally

I've attahced a screen shot of the first error, can provide more if nessesary

These erorrs might be nothng to worry about asour domain/environemtn is working normally, but just a bit concerned about these BPA erorrs

Any help would be gretly appreciated

Thanks

Mike


Capture.JPG
0
Comment
Question by:MOSADMIN
  • 5
  • 4
9 Comments
 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 500 total points
ID: 33627260
Check this out.

http://technet.microsoft.com/en-us/library/dd723687(WS.10).aspx

Make sure you don't have a firewall blocking this.

I would run on your forest root DC.
0
 

Author Comment

by:MOSADMIN
ID: 33627491
Yeah I read through that document and Disabled the Firewall on this server.....but has had no effect

Also the DirectoryServices_EngineReport.xml hasn't been any help in determinign why all these 20 elements of the BPA seem to fail....
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 33627859
Are you runn this on a DC? Have you tried running on another DC?

Run dcdiag look for errors.
0
 

Author Comment

by:MOSADMIN
ID: 33627948
If I run DCDIAG /TEST:DNS on the DC inquestion if fails on the Delegation Test, but it's strange as it's referencing a really old DC which taken out of service a long time ago....


     TEST: Delegations (Del)
        Error: DNS server: castle.mos.local. IP:<Unavailable>
        [Missing glue A record]

I can't find any records of that old server (CASTLE) anywhere in DNS, AD Sites & Services, ADSI Edit etc!

If I run the same DCDIAG /TEST:DNS from another server if completes without any errors?!
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 
LVL 59

Assisted Solution

by:Darius Ghassem
Darius Ghassem earned 500 total points
ID: 33628089
Check to make sure that there are no SRV records.
0
 
LVL 59

Assisted Solution

by:Darius Ghassem
Darius Ghassem earned 500 total points
ID: 33628092
0
 

Author Comment

by:MOSADMIN
ID: 33628357
I've been through DNS and removed any references to this old server (there were a few entires under the Reverse Lookup Zones)

Metadatacleanup (NTDSUTIIL) doesn't list this old server!
0
 
LVL 59

Assisted Solution

by:Darius Ghassem
Darius Ghassem earned 500 total points
ID: 33628388
Did you go through the msdcs.domain.com zone?
0
 

Author Closing Comment

by:MOSADMIN
ID: 33755126
thanks
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Suggested Solutions

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now