Solved

SBs box detecting another SBS box and shutting services down.

Posted on 2011-02-25
4
776 Views
Last Modified: 2012-06-27
SBS 2003 server detects another SBS server and throws a paddy, but there isnt another SBS server on the network.
Does anyone know how it detects other SBS servers and how i can replicate it so I can locate the 'other SBS server' myself?

Details:
SBS 2003, SP2. Single NIC, All FMSO roles, DHCP, DNS.
192.168.1.x / 24 network behind a Netgear internet router.

Eventid 1011:
Multiple domain controllers running Windows Server 2003 for Small Business Server have been detected in your domain. To prevent this computer from shutting down in the future, you must remove all but one of these from the domain.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0
Comment
Question by:Steve
  • 2
4 Comments
 
LVL 23

Expert Comment

by:ormerodrutter
ID: 34980172
Have you or anyone in some point in the past tried to add a SBS into the network?

In your case you will need to use Ntdsutil to remove orphan DC. Make sure you remove the right one.

http://www.pcreview.co.uk/forums/manually-removing-orphaned-child-domain-and-dc-issue-t2371308.html
http://support.microsoft.com/kb/555846
0
 
LVL 57

Expert Comment

by:Cliff Galiher
ID: 34983662
The error is a generic one actually generated by the licensing service. All it *really* means (despite what it says) is taht your server is no longer in licensing compliance. This usually means that one of the required roles (FSMO, GC) were transferred or lost from the SBS server. your standard AD tools )DCdiag, SBS BPA) will help you find out which role(s) are missing and resolve the situation.

-Cliff
0
 
LVL 27

Accepted Solution

by:
Steve earned 0 total points
ID: 34987051
as advised above there is and never has been another SBS on the network, and ALL FMSO roles were present and correct. Thanks for the help though.

After a bit of digging and testing I've worked it out.
It seems that the SBS checks any domains listed in it's DNS cache to see if it has any competition on the network.
This is quite clever as it means that if two systems reside on the same network and make even a single reference to each other it will be listed i the DNS cache and will be checked. On checking it will see ports open and be able to work out who the PDC is. If it's behind a router (eg on the internet) these ports will be closed and the server is happy it cannot see the other server.

In this case, some idiot had run Spybot on the server and had not been aware this adds a HUGE number of domains to the HOSTS file and points them all to 127.0.01.

While this is a basic way of stopping users/malware from accessing the sites, it also mean the server did it's usual checks on these domains listed in it's cache and ended up seeing itself, thinking it had competition and throwing a paddy..... (Proof that computers really are dumb...)

Deleted entries from hosts file and cleared cache and all is now fine. No other SBS boxes have been seen and the server is behaving itself again...Yey!
0
 
LVL 27

Author Closing Comment

by:Steve
ID: 35025084
Expert's comments were just reiterating items already advised in the original question.
Located the issue myself and may as well leave in knowledge base for others who may have the same issue.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Moving RDP Server to New Server. 3 55
Windows 10 VPN? 6 86
SBS 2011 Backup Drive 8 25
ESXi VM of Server 2003 Saving Slow. 7 60
Because virtualization becomes more and more common, and, with Microsoft Hyper-V included in Windows Server at no additional costs, and, most server hardware nowadays is more than capable of running a physical Small Business Server (SBS) 2008 or 201…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question