asked on
Active directory and DNS on PDC is down
Hi,
I am having issues with my primary domain controller. All of a sudden the Active directory stopped working and DNS doesnt start as well. No software or hardware changes was done on the server recently as it went down on a weekend.
When I open the Active directory console from the PDC I get :
Naming information cannot be located because:
The specified domain either does not exist or could not be contacted.
Contact your system administrator to verify that your domain is properly configured and is currently online.
Any help is greatly appreciated!
DCdiag :
Doing initial required tests
Testing server: KualaLumpur\KLPDC01
Starting test: Connectivity
The host bb5b2516-c546-4d31-8092-53
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(bb5b2516-c546-4d31-8092-5
be resolved, the server name (klpdc01.ap.menetwork.com)
the IP address (192.168.150.14) and was pingable. Check that the IP
address is registered correctly with the DNS server.
......................... KLPDC01 failed test Connectivity
Doing primary tests
Testing server: KualaLumpur\KLPDC01
Skipping all tests, because server KLPDC01 is
not responding to directory service requests
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : ap
Starting test: CrossRefValidation
......................... ap passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ap passed test CheckSDRefDom
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running enterprise tests on : menetwork.com
Starting test: Intersite
......................... menetwork.com passed test Intersite
Starting test: FsmoCheck
Warning: DcGetDcName(GC_SERVER_REQU
A Global Catalog Server could not be located - All GC's are down.
Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1355
A Primary Domain Controller could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1355
A KDC could not be located - All the KDCs are down.
......................... menetwork.com failed test FsmoCheck
NetDiag:
..........................
Computer Name: KLPDC01
DNS Host Name: klpdc01.ap.menetwork.com
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 6 Model 15 Stepping 7, GenuineIntel
List of installed hotfixes :
KB2079403
KB2115168
KB2121546
KB2124261
KB2141007
KB2158563
KB2229593
KB2259922
KB2279986
KB2286198
KB2296011
KB2345886
KB2347290
KB2360131-IE7
KB2360937
KB2378111
KB2387149
KB2416451
KB921503
KB923561
KB924667-v2
KB925398_WMP64
KB925902
KB926122
KB927891
KB929123
KB930178
KB931784
KB932168
KB933360
KB933729
KB933854
KB935839
KB935840
KB935966
KB936021
KB936357
KB936782
KB937143
KB938127
KB938127-IE7
KB938464
KB938759-v4
KB939653
KB941202
KB941568
KB941569
KB941644
KB941672
KB941693
KB942615
KB942763
KB942830
KB942831
KB942840
KB943055
KB943460
KB943484
KB943485
KB944338
KB944533
KB944653
KB945553
KB946026
KB947864
KB948496
KB948590
KB948745
KB948881
KB949014
KB950759
KB950760
KB950762
KB950974
KB951066
KB951072-v2
KB951698
KB951746
KB951748
KB952004
KB952069
KB952954
KB953298
KB953838
KB953838-IE7
KB953839
KB954155
KB954211
KB954550-v5
KB954600
KB955069
KB955759
KB955839
KB956390-IE7
KB956391
KB956572
KB956802
KB956803
KB956841
KB956844
KB957095
KB957097
KB958215-IE7
KB958469
KB958644
KB958687
KB958690
KB958869
KB959426
KB960225
KB960714-IE7
KB960715
KB960803
KB960859
KB961063
KB961064
KB961118
KB961260-IE7
KB961371-v2
KB961373
KB961501
KB967715
KB967723
KB968389
KB968537
KB968816
KB969059
KB969805
KB969883
KB969897-IE7
KB969898
KB969947
KB970238
KB970430
KB970483
KB971032
KB971468
KB971557
KB971633
KB971657
KB971737
KB971961
KB972260-IE7
KB972270
KB973037
KB973346
KB973354
KB973507
KB973540
KB973687
KB973815
KB973825
KB973869
KB973904
KB973917-v2
KB974112
KB974318
KB974392
KB974571
KB975025
KB975467
KB975558_WM8
KB975560
KB975562
KB975713
KB977290
KB977816
KB977914
KB978037
KB978262
KB978338
KB978542
KB978601
KB978695
KB978706
KB979309
KB979482
KB979683
KB979687
KB979907
KB980182-IE7
KB980195
KB980232
KB980436
KB981322
KB981349
KB981550
KB981793
KB981957
KB982132
KB982214
KB982666
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : klpdc01
IP Address . . . . . . . . : 192.168.150.14
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.150.2
Primary WINS Server. . . . : 192.168.150.14
Dns Servers. . . . . . . . : 192.168.150.14
192.168.154.2
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{DE1F178F-0901
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'klpdc01.ap.menetwork.com.
The name 'klpdc01.ap.menetwork.com.
[WARNING] The DNS entries for this DC cannot be verified right now on DNS server 192.168.150.14, ERROR_TIMEOUT.
[WARNING] The DNS entries for this DC cannot be verified right now on DNS server 192.168.154.2, ERROR_TIMEOUT.
[FATAL] No DNS servers have the DNS records for this DC registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{DE1F178F-0901
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{DE1F178F-0901
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Failed
[FATAL] Cannot find DC in domain 'AP'. [ERROR_NO_SUCH_DOMAIN]
DC list test . . . . . . . . . . . : Failed
'AP': Cannot find DC to get DC list from [test skipped].
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Skipped
'AP': Cannot find DC to get DC list from [test skipped].
LDAP test. . . . . . . . . . . . . : Failed
Cannot find DC to run LDAP tests on. The error occurred was: The specified domain either does not exist or could not be contacted.
[WARNING] Cannot find DC in domain 'AP'. [ERROR_NO_SUCH_DOMAIN]
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
I am having issues with my primary domain controller. All of a sudden the Active directory stopped working and DNS doesnt start as well. No software or hardware changes was done on the server recently as it went down on a weekend.
When I open the Active directory console from the PDC I get :
Naming information cannot be located because:
The specified domain either does not exist or could not be contacted.
Contact your system administrator to verify that your domain is properly configured and is currently online.
Any help is greatly appreciated!
DCdiag :
Doing initial required tests
Testing server: KualaLumpur\KLPDC01
Starting test: Connectivity
The host bb5b2516-c546-4d31-8092-53
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(bb5b2516-c546-4d31-8092-5
be resolved, the server name (klpdc01.ap.menetwork.com)
the IP address (192.168.150.14) and was pingable. Check that the IP
address is registered correctly with the DNS server.
......................... KLPDC01 failed test Connectivity
Doing primary tests
Testing server: KualaLumpur\KLPDC01
Skipping all tests, because server KLPDC01 is
not responding to directory service requests
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : ap
Starting test: CrossRefValidation
......................... ap passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ap passed test CheckSDRefDom
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running enterprise tests on : menetwork.com
Starting test: Intersite
......................... menetwork.com passed test Intersite
Starting test: FsmoCheck
Warning: DcGetDcName(GC_SERVER_REQU
A Global Catalog Server could not be located - All GC's are down.
Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1355
A Primary Domain Controller could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1355
A KDC could not be located - All the KDCs are down.
......................... menetwork.com failed test FsmoCheck
NetDiag:
..........................
Computer Name: KLPDC01
DNS Host Name: klpdc01.ap.menetwork.com
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 6 Model 15 Stepping 7, GenuineIntel
List of installed hotfixes :
KB2079403
KB2115168
KB2121546
KB2124261
KB2141007
KB2158563
KB2229593
KB2259922
KB2279986
KB2286198
KB2296011
KB2345886
KB2347290
KB2360131-IE7
KB2360937
KB2378111
KB2387149
KB2416451
KB921503
KB923561
KB924667-v2
KB925398_WMP64
KB925902
KB926122
KB927891
KB929123
KB930178
KB931784
KB932168
KB933360
KB933729
KB933854
KB935839
KB935840
KB935966
KB936021
KB936357
KB936782
KB937143
KB938127
KB938127-IE7
KB938464
KB938759-v4
KB939653
KB941202
KB941568
KB941569
KB941644
KB941672
KB941693
KB942615
KB942763
KB942830
KB942831
KB942840
KB943055
KB943460
KB943484
KB943485
KB944338
KB944533
KB944653
KB945553
KB946026
KB947864
KB948496
KB948590
KB948745
KB948881
KB949014
KB950759
KB950760
KB950762
KB950974
KB951066
KB951072-v2
KB951698
KB951746
KB951748
KB952004
KB952069
KB952954
KB953298
KB953838
KB953838-IE7
KB953839
KB954155
KB954211
KB954550-v5
KB954600
KB955069
KB955759
KB955839
KB956390-IE7
KB956391
KB956572
KB956802
KB956803
KB956841
KB956844
KB957095
KB957097
KB958215-IE7
KB958469
KB958644
KB958687
KB958690
KB958869
KB959426
KB960225
KB960714-IE7
KB960715
KB960803
KB960859
KB961063
KB961064
KB961118
KB961260-IE7
KB961371-v2
KB961373
KB961501
KB967715
KB967723
KB968389
KB968537
KB968816
KB969059
KB969805
KB969883
KB969897-IE7
KB969898
KB969947
KB970238
KB970430
KB970483
KB971032
KB971468
KB971557
KB971633
KB971657
KB971737
KB971961
KB972260-IE7
KB972270
KB973037
KB973346
KB973354
KB973507
KB973540
KB973687
KB973815
KB973825
KB973869
KB973904
KB973917-v2
KB974112
KB974318
KB974392
KB974571
KB975025
KB975467
KB975558_WM8
KB975560
KB975562
KB975713
KB977290
KB977816
KB977914
KB978037
KB978262
KB978338
KB978542
KB978601
KB978695
KB978706
KB979309
KB979482
KB979683
KB979687
KB979907
KB980182-IE7
KB980195
KB980232
KB980436
KB981322
KB981349
KB981550
KB981793
KB981957
KB982132
KB982214
KB982666
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : Local Area Connection
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : klpdc01
IP Address . . . . . . . . : 192.168.150.14
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.150.2
Primary WINS Server. . . . : 192.168.150.14
Dns Servers. . . . . . . . : 192.168.150.14
192.168.154.2
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{DE1F178F-0901
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'klpdc01.ap.menetwork.com.
The name 'klpdc01.ap.menetwork.com.
[WARNING] The DNS entries for this DC cannot be verified right now on DNS server 192.168.150.14, ERROR_TIMEOUT.
[WARNING] The DNS entries for this DC cannot be verified right now on DNS server 192.168.154.2, ERROR_TIMEOUT.
[FATAL] No DNS servers have the DNS records for this DC registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{DE1F178F-0901
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{DE1F178F-0901
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Failed
[FATAL] Cannot find DC in domain 'AP'. [ERROR_NO_SUCH_DOMAIN]
DC list test . . . . . . . . . . . : Failed
'AP': Cannot find DC to get DC list from [test skipped].
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Skipped
'AP': Cannot find DC to get DC list from [test skipped].
LDAP test. . . . . . . . . . . . . : Failed
Cannot find DC to run LDAP tests on. The error occurred was: The specified domain either does not exist or could not be contacted.
[WARNING] Cannot find DC in domain 'AP'. [ERROR_NO_SUCH_DOMAIN]
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
Operating SystemsWindows Server 2003
Last Comment
Tolomir
Did you check the event viewer?
First thing is your secondary DNS server is on a separate subnet. Is this subnetcroured so that the domain controller can communicate with it?
Can you run the following:
DCDIAG /FIX
NETDIAG /FIX
And post the results.
Can you run the following:
DCDIAG /FIX
NETDIAG /FIX
And post the results.
>>I am having issues with my primary domain controller...
How many DCs in domain ? Is DNS installed on all DCs? The second DC server is also a Global Catalog ?
How many DCs in domain ? Is DNS installed on all DCs? The second DC server is also a Global Catalog ?
Hello,
I think your DNS server has been crashed. Due to DNS server down, AD cant work.
Because AD is totally depend upon DNS server.
Please check the DNS server & their zones.
Regards,
Tushar Kaskhedikar
I think your DNS server has been crashed. Due to DNS server down, AD cant work.
Because AD is totally depend upon DNS server.
Please check the DNS server & their zones.
Regards,
Tushar Kaskhedikar
http://social.technet.microsoft.com/Forums/en-US/exchangesvrdeploy/thread
/c78577e7-3889-4fe3-9287-1
/c78577e7-3889-4fe3-9287-1
ASKER
demazter : yes they are able to communicate. The other DNS is from another office in a state not too far away.. the office is connected via VPN
rhino : 3DCs in total, 1 in another country and another one in the same country but different state, which happens to be the secondary DNS. How do I check if it's a Global catalog as well?
Kashkhedikar : Yes that's because the AD and DNS are on the same server, AD can't start because DNS is not running, DNS cannot start because it cant find Active directory. I can't tell which is causing the other to crash...
sabk : all other NICs have been disabled and none are plugged in except for the active connection
rhino : 3DCs in total, 1 in another country and another one in the same country but different state, which happens to be the secondary DNS. How do I check if it's a Global catalog as well?
Kashkhedikar : Yes that's because the AD and DNS are on the same server, AD can't start because DNS is not running, DNS cannot start because it cant find Active directory. I can't tell which is causing the other to crash...
sabk : all other NICs have been disabled and none are plugged in except for the active connection
I've seen similiar behaviour on a DC at a client.
The DNS Service would start but for some or other reason was not resolving DNS.
I then pointed this DNS server to another DNS Server as it's Primary DNS Server and forced replication.
Everything came right after replication, and the Server was then pointed back to itself as primary DNS.
The DNS Service would start but for some or other reason was not resolving DNS.
I then pointed this DNS server to another DNS Server as it's Primary DNS Server and forced replication.
Everything came right after replication, and the Server was then pointed back to itself as primary DNS.
DCdiag :
Doing initial required tests
Testing server: KualaLumpur\KLPDC01
Starting test: Connectivity
The host bb5b2516-c546-4d31-8092-53
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(bb5b2516-c546-4d31-8092-5
be resolved, the server name (klpdc01.ap.menetwork.com)
the IP address (192.168.150.14) and was pingable. Check that the IP
address is registered correctly with the DNS server.
......................... KLPDC01 failed test Connectivity
I would check the IP addressing on the DC. Are you using IPv6 on your network? Seems that it is trying to communicate using IPv6 addresses, this could be the root cause of your issue?
Doing initial required tests
Testing server: KualaLumpur\KLPDC01
Starting test: Connectivity
The host bb5b2516-c546-4d31-8092-53
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(bb5b2516-c546-4d31-8092-5
be resolved, the server name (klpdc01.ap.menetwork.com)
the IP address (192.168.150.14) and was pingable. Check that the IP
address is registered correctly with the DNS server.
......................... KLPDC01 failed test Connectivity
I would check the IP addressing on the DC. Are you using IPv6 on your network? Seems that it is trying to communicate using IPv6 addresses, this could be the root cause of your issue?
I would check the database integrity of active directory using this KB. This KB also has the command to repair the DB is damaged.
http://technet.microsoft.com/en-us/library/cc784991(WS.10).aspx
thanks,
http://technet.microsoft.com/en-us/library/cc784991(WS.10).aspx
thanks,
@markusdamenous
Where are you getting IPv6 from?
Where are you getting IPv6 from?
Try changing the Primary DNS entry on your nic to point to the secondary DC. If it can find Active directory then you can troubleshoot from there.
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
make sure to exclude scanning of the AD database
demazter: I was reading it quick, this jumped out as an IPv6 address
bb5b2516-c546-4d31-8092-53
bb5b2516-c546-4d31-8092-53
What you are looking at is a GUID which is pretty common place in a Microsoft network.
An IPv6 address would look like this: 3ffe:1900:4545:3:200:f8ff:
An IPv6 address would look like this: 3ffe:1900:4545:3:200:f8ff:
realise that once I saw your post, like I said was just reading it quickly.
This question has been classified as abandoned and is being closed as part of the Cleanup Program. See my comment at the end of the question for more details.