AD Topology / Config problem ?

Posted on 2011-04-23
Last Modified: 2012-05-11

I am taking care of a pretty standard Windows 2003 domain with a PDC, a BDC, an Exchange server and obviously some client systems (Vista / W7).

As far as I'm aware everything is working fine.

Recently however we had a hardware problem on the PDC and much to my surprise nobody could log on during the time it took to repair it - the error message being that there was no domain controller available to authenticate the user.

I would have thought that the BDC would take over for this task so there is clearly something wrong with the setup.

Where should I start to diagnose this issue ?

Any suggestion welcome
Question by:atak2983
    LVL 57

    Expert Comment

    by:Mike Kline
    Do your clients have another DNS server listed in their config?  Are the other DCs also global catalogs?


    LVL 1

    Author Comment

    > Do your clients have another DNS server listed in their config?

    Yes both DC are also DNS servers and are listed on the client machines

    >  Are the other DCs also global catalogs?

    How would I go to check this ?

    LVL 57

    Accepted Solution

    a lot of ways to check, sites and services and dsquery are two ways (see screenshots).  There are a lot of other ways too.


    LVL 1

    Author Closing Comment

    Good call that was it :)

    Featured Post

    Threat Intelligence Starter Resources

    Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

    Join & Write a Comment

    Starting in Windows Server 2008, Microsoft introduced the Group Policy Central Store. This automatically replicating location allows IT administrators to have the latest and greatest Group Policy (GP) configuration settings available. Let’s expl…
    Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    24 Experts available now in Live!

    Get 1:1 Help Now