We help IT Professionals succeed at work.
Get Started

dcdiag test good on DCs but fails DnsRecordRegistration on a domain computer.

3,986 Views
Last Modified: 2012-06-19
I have just replaced a DC and upgraded my forest to 2008 R2.  At present I can run dcdiag on either controller (both 2008R2 fully patched) with no errors resulting.  If I run dcdiag from my local Win7-32 machine I get several failures during the DNS Record Registration test.  Each error is followed by:
[Error details: 10054 (Type: Win32 - Description: An existing connection was forcibly closed by the remote host.)]

I am running DCdiag with the user option set to the domains admin, as shown below in the complete output.  I did have a problem with server records not being registered which was fixed with nltest /DSRECDNS (thanks Experts Exchange.)  This too needed to be run on a DC in order to work.  
So far I have had no luck with internet searches or banging my head against a cinder block but would really like to find out what is wrong and how to fix it.  

Any help would be appreciated.
Mark


>dcdiag /s:DC2.holderness.org /test:DNS /DnsRecordRegistration /u:SCHOOL\Administrator /p:* /v
Password:


Directory Server Diagnosis

Performing initial setup:
   * Connecting to directory service on server DC2.holderness.org.
   * Identified AD Forest.
   Collecting AD specific global data
   * Collecting site info.
   Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=holderness,DC=
org,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
   The previous call succeeded
   Iterating through the sites
   Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site-Name
,CN=Sites,CN=Configuration,DC=holderness,DC=org
   Getting ISTG and options for the site
   * Identifying all servers.
   Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=holderness,DC=
org,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
   The previous call succeeded....
   The previous call succeeded
   Iterating through the list of servers
   Getting information for the server CN=NTDS Settings,CN=DC3,CN=Servers,CN=Defa
ult-First-Site-Name,CN=Sites,CN=Configuration,DC=holderness,DC=org
   objectGuid obtained
   InvocationID obtained
   dnsHostname obtained
   site info obtained
   All the info for the server collected
   Getting information for the server CN=NTDS Settings,CN=DC2,CN=Servers,CN=Defa
ult-First-Site-Name,CN=Sites,CN=Configuration,DC=holderness,DC=org
   objectGuid obtained
   InvocationID obtained
   dnsHostname obtained
   site info obtained
   All the info for the server collected
   * Identifying all NC cross-refs.
   * Found 2 DC(s). Testing 1 of them.
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site-Name\DC2
      Starting test: Connectivity
         * Active Directory LDAP Services Check
         Determining IP4 connectivity
         * Active Directory RPC Services Check
         ......................... DC2 passed test Connectivity

Doing primary tests

   Testing server: Default-First-Site-Name\DC2
      Test omitted by user request: Advertising
      Test omitted by user request: CheckSecurityError
      Test omitted by user request: CutoffServers
      Test omitted by user request: FrsEvent
      Test omitted by user request: DFSREvent
      Test omitted by user request: SysVolCheck
      Test omitted by user request: KccEvent
      Test omitted by user request: KnowsOfRoleHolders
      Test omitted by user request: MachineAccount
      Test omitted by user request: NCSecDesc
      Test omitted by user request: NetLogons
      Test omitted by user request: ObjectsReplicated
      Test omitted by user request: OutboundSecureChannels
      Test omitted by user request: Replications
      Test omitted by user request: RidManager
      Test omitted by user request: Services
      Test omitted by user request: SystemLog
      Test omitted by user request: Topology
      Test omitted by user request: VerifyEnterpriseReferences
      Test omitted by user request: VerifyReferences
      Test omitted by user request: VerifyReplicas

      Starting test: DNS

         DNS Tests are running and not hung. Please wait a few minutes...
         See DNS test in enterprise tests section for results
         ......................... DC2 passed test DNS

   Running partition tests on : DomainDnsZones
      Test omitted by user request: CheckSDRefDom
      Test omitted by user request: CrossRefValidation

   Running partition tests on : ForestDnsZones
      Test omitted by user request: CheckSDRefDom
      Test omitted by user request: CrossRefValidation

   Running partition tests on : Schema
      Test omitted by user request: CheckSDRefDom
      Test omitted by user request: CrossRefValidation

   Running partition tests on : Configuration
      Test omitted by user request: CheckSDRefDom
      Test omitted by user request: CrossRefValidation

   Running partition tests on : holderness
      Test omitted by user request: CheckSDRefDom
      Test omitted by user request: CrossRefValidation

   Running enterprise tests on : holderness.org
      Starting test: DNS
         Test results for domain controllers:

            DC: dc2.holderness.org
            Domain: holderness.org


               TEST: Authentication (Auth)
                  Authentication test: Successfully completed

               TEST: Basic (Basc)
                  The OS
                  Microsoft Windows Server 2008 R2 Enterprise  (Service Pack lev
el: 1.0)
                  is supported.
                  NETLOGON service is running
                  kdc service is running
                  DNSCACHE service is running
                  DNS service is running
                  DC is a DNS server
                  Network adapters information:
                  Adapter [00000007] Intel(R) PRO/1000 MT Network Connection:
                     MAC address is 00:50:56:A0:00:00
                     IP Address is static
                     IP address: 192.168.1.129, fe80::f092:b918:def7:32f
                     DNS servers:
                        192.168.1.128 (DC3) [Valid]
                        192.168.1.129 (DC2) [Valid]
                        127.0.0.1 (DC2) [Valid]
                  The A host record(s) for this DC was found
                  The SOA record for the Active Directory zone was found
                  The Active Directory zone on this DC/DNS server was found prim
ary
                  Root zone on this DC/DNS server was not found

               TEST: Records registration (RReg)
                  Network Adapter
                  [00000007] Intel(R) PRO/1000 MT Network Connection:
                     Matching CNAME record found at DNS server 192.168.1.128:
                     63116796-7089-41c4-a211-060b67a6cc5d._msdcs.holderness.org

                     Matching A record found at DNS server 192.168.1.128:
                     dc2.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _ldap._tcp.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _ldap._tcp.97d8ddbd-2def-4acd-94a0-0ba28d1b0e6c.domains._ms
dcs.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _kerberos._tcp.dc._msdcs.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _ldap._tcp.dc._msdcs.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _kerberos._tcp.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _kerberos._udp.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _kpasswd._tcp.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _ldap._tcp.Default-First-Site-Name._sites.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.hol
derness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.holdern
ess.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _kerberos._tcp.Default-First-Site-Name._sites.holderness.or
g

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _ldap._tcp.gc._msdcs.holderness.org

                     Matching A record found at DNS server 192.168.1.128:
                     gc._msdcs.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _gc._tcp.Default-First-Site-Name._sites.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.holdern
ess.org

                     Matching  SRV record found at DNS server 192.168.1.128:
                     _ldap._tcp.pdc._msdcs.holderness.org

                     Matching CNAME record found at DNS server 192.168.1.129:
                     63116796-7089-41c4-a211-060b67a6cc5d._msdcs.holderness.org

                     Matching A record found at DNS server 192.168.1.129:
                     dc2.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _ldap._tcp.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _ldap._tcp.97d8ddbd-2def-4acd-94a0-0ba28d1b0e6c.domains._ms
dcs.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _kerberos._tcp.dc._msdcs.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _ldap._tcp.dc._msdcs.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _kerberos._tcp.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _kerberos._udp.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _kpasswd._tcp.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _ldap._tcp.Default-First-Site-Name._sites.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.hol
derness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.holdern
ess.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _kerberos._tcp.Default-First-Site-Name._sites.holderness.or
g

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _ldap._tcp.gc._msdcs.holderness.org

                     Matching A record found at DNS server 192.168.1.129:
                     gc._msdcs.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _gc._tcp.Default-First-Site-Name._sites.holderness.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.holdern
ess.org

                     Matching  SRV record found at DNS server 192.168.1.129:
                     _ldap._tcp.pdc._msdcs.holderness.org

                     Warning:
                     Missing CNAME record at DNS server 192.168.1.129:
                     63116796-7089-41c4-a211-060b67a6cc5d._msdcs.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Warning:
                     Missing A record at DNS server 192.168.1.129:
                     dc2.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _ldap._tcp.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _ldap._tcp.97d8ddbd-2def-4acd-94a0-0ba28d1b0e6c.domains._ms
dcs.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _kerberos._tcp.dc._msdcs.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _ldap._tcp.dc._msdcs.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _kerberos._tcp.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _kerberos._udp.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _kpasswd._tcp.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _ldap._tcp.Default-First-Site-Name._sites.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.hol
derness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.holdern
ess.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _kerberos._tcp.Default-First-Site-Name._sites.holderness.or
g
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _ldap._tcp.gc._msdcs.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Warning:
                     Missing A record at DNS server 192.168.1.129:
                     gc._msdcs.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _gc._tcp.Default-First-Site-Name._sites.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.holdern
ess.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

                     Error:
                     Missing SRV record at DNS server 192.168.1.129:
                     _ldap._tcp.pdc._msdcs.holderness.org
                     [Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]

               Error: Record registrations cannot be found for all the network
               adapters

         Summary of test results for DNS servers used by the above domain
         controllers:

            DNS server: 192.168.1.128 (DC3)
               All tests passed on this DNS server
               Name resolution is functional._ldap._tcp SRV record for the fores
t root domain is registered

            DNS server: 192.168.1.129 (DC2)
               All tests passed on this DNS server
               Name resolution is functional._ldap._tcp SRV record for the fores
t root domain is registered

         Summary of DNS test results:

                                            Auth Basc Forw Del  Dyn  RReg Ext
            _________________________________________________________________
            Domain: holderness.org
               dc2                          PASS PASS n/a  n/a  n/a  FAIL n/a

         ......................... holderness.org failed test DNS
      Test omitted by user request: LocatorCheck
      Test omitted by user request: Intersite

Open in new window

Comment
Watch Question
CERTIFIED EXPERT
Top Expert 2012
Commented:
This problem has been solved!
Unlock 2 Answers and 7 Comments.
See Answers
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE