We help IT Professionals succeed at work.

Domain Controller issue

I have 7 DC's.  3 at the main office and 4 at remote locations.  At one of my locations I am getting an error in the event log 53258.  At that location is two servers DC-4 (Server 2003)and Server-1(Unix).  Server-1 is highly used.

Yesterday I started receiving reports of users not being able to connect to Server-1 from remote locations and from the local users.  Also some of the users that are authenticating to DC-4 are either not able to log on immediately or it is very slow.  Could 53258 be causing this?

"MS DTC could not correctly process a DC Promotion/Demotion event. MS DTC will continue to function and will use the existing security settings. Error Specifics: %1

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp."
Watch Question

I doubt the 53258 is causing this.

From Microsoft:
"This issue occurs if Windows Server 2003 unsuccessfully tries to configure the Microsoft Distributed Transaction Coordinator (MS DTC) service to use the default security settings. You experience this issue if the Network Service account is the account that the MS DTC service uses. Security settings for the MS DTC service are stored in the following registry subkey:

The Network Service account has insufficient permissions to modify the security settings in the registry subkey."


This is one of those, it's an error but not a problem type event log entries.

I'd look deeper for another issue.
DarinTCHSenior CyberSecurity Engineer
What else changed
what do the logs show
just prior to that - 1-4 hrs earlier
Top Expert 2012
Most likely this is not the issue causing the problem. Please run a dcdiag post the results.


Guys Thanks for the response.  Server-1 actually turned out to be having some issues not the DC.

Explore More ContentExplore courses, solutions, and other research materials related to this topic.