We help IT Professionals succeed at work.
Get Started
dcdiag test good on DCs but fails DnsRecordRegistration on a domain computer.
I have just replaced a DC and upgraded my forest to 2008 R2. At present I can run dcdiag on either controller (both 2008R2 fully patched) with no errors resulting. If I run dcdiag from my local Win7-32 machine I get several failures during the DNS Record Registration test. Each error is followed by:
[Error details: 10054 (Type: Win32 - Description: An existing connection was forcibly closed by the remote host.)]
I am running DCdiag with the user option set to the domains admin, as shown below in the complete output. I did have a problem with server records not being registered which was fixed with nltest /DSRECDNS (thanks Experts Exchange.) This too needed to be run on a DC in order to work.
So far I have had no luck with internet searches or banging my head against a cinder block but would really like to find out what is wrong and how to fix it.
Any help would be appreciated.
Mark
[Error details: 10054 (Type: Win32 - Description: An existing connection was forcibly closed by the remote host.)]
I am running DCdiag with the user option set to the domains admin, as shown below in the complete output. I did have a problem with server records not being registered which was fixed with nltest /DSRECDNS (thanks Experts Exchange.) This too needed to be run on a DC in order to work.
So far I have had no luck with internet searches or banging my head against a cinder block but would really like to find out what is wrong and how to fix it.
Any help would be appreciated.
Mark
>dcdiag /s:DC2.holderness.org /test:DNS /DnsRecordRegistration /u:SCHOOL\Administrator /p:* /v
Password:
Directory Server Diagnosis
Performing initial setup:
* Connecting to directory service on server DC2.holderness.org.
* Identified AD Forest.
Collecting AD specific global data
* Collecting site info.
Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=holderness,DC=
org,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
The previous call succeeded
Iterating through the sites
Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site-Name
,CN=Sites,CN=Configuration,DC=holderness,DC=org
Getting ISTG and options for the site
* Identifying all servers.
Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=holderness,DC=
org,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
The previous call succeeded....
The previous call succeeded
Iterating through the list of servers
Getting information for the server CN=NTDS Settings,CN=DC3,CN=Servers,CN=Defa
ult-First-Site-Name,CN=Sites,CN=Configuration,DC=holderness,DC=org
objectGuid obtained
InvocationID obtained
dnsHostname obtained
site info obtained
All the info for the server collected
Getting information for the server CN=NTDS Settings,CN=DC2,CN=Servers,CN=Defa
ult-First-Site-Name,CN=Sites,CN=Configuration,DC=holderness,DC=org
objectGuid obtained
InvocationID obtained
dnsHostname obtained
site info obtained
All the info for the server collected
* Identifying all NC cross-refs.
* Found 2 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\DC2
Starting test: Connectivity
* Active Directory LDAP Services Check
Determining IP4 connectivity
* Active Directory RPC Services Check
......................... DC2 passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\DC2
Test omitted by user request: Advertising
Test omitted by user request: CheckSecurityError
Test omitted by user request: CutoffServers
Test omitted by user request: FrsEvent
Test omitted by user request: DFSREvent
Test omitted by user request: SysVolCheck
Test omitted by user request: KccEvent
Test omitted by user request: KnowsOfRoleHolders
Test omitted by user request: MachineAccount
Test omitted by user request: NCSecDesc
Test omitted by user request: NetLogons
Test omitted by user request: ObjectsReplicated
Test omitted by user request: OutboundSecureChannels
Test omitted by user request: Replications
Test omitted by user request: RidManager
Test omitted by user request: Services
Test omitted by user request: SystemLog
Test omitted by user request: Topology
Test omitted by user request: VerifyEnterpriseReferences
Test omitted by user request: VerifyReferences
Test omitted by user request: VerifyReplicas
Starting test: DNS
DNS Tests are running and not hung. Please wait a few minutes...
See DNS test in enterprise tests section for results
......................... DC2 passed test DNS
Running partition tests on : DomainDnsZones
Test omitted by user request: CheckSDRefDom
Test omitted by user request: CrossRefValidation
Running partition tests on : ForestDnsZones
Test omitted by user request: CheckSDRefDom
Test omitted by user request: CrossRefValidation
Running partition tests on : Schema
Test omitted by user request: CheckSDRefDom
Test omitted by user request: CrossRefValidation
Running partition tests on : Configuration
Test omitted by user request: CheckSDRefDom
Test omitted by user request: CrossRefValidation
Running partition tests on : holderness
Test omitted by user request: CheckSDRefDom
Test omitted by user request: CrossRefValidation
Running enterprise tests on : holderness.org
Starting test: DNS
Test results for domain controllers:
DC: dc2.holderness.org
Domain: holderness.org
TEST: Authentication (Auth)
Authentication test: Successfully completed
TEST: Basic (Basc)
The OS
Microsoft Windows Server 2008 R2 Enterprise (Service Pack lev
el: 1.0)
is supported.
NETLOGON service is running
kdc service is running
DNSCACHE service is running
DNS service is running
DC is a DNS server
Network adapters information:
Adapter [00000007] Intel(R) PRO/1000 MT Network Connection:
MAC address is 00:50:56:A0:00:00
IP Address is static
IP address: 192.168.1.129, fe80::f092:b918:def7:32f
DNS servers:
192.168.1.128 (DC3) [Valid]
192.168.1.129 (DC2) [Valid]
127.0.0.1 (DC2) [Valid]
The A host record(s) for this DC was found
The SOA record for the Active Directory zone was found
The Active Directory zone on this DC/DNS server was found prim
ary
Root zone on this DC/DNS server was not found
TEST: Records registration (RReg)
Network Adapter
[00000007] Intel(R) PRO/1000 MT Network Connection:
Matching CNAME record found at DNS server 192.168.1.128:
63116796-7089-41c4-a211-060b67a6cc5d._msdcs.holderness.org
Matching A record found at DNS server 192.168.1.128:
dc2.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_ldap._tcp.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_ldap._tcp.97d8ddbd-2def-4acd-94a0-0ba28d1b0e6c.domains._ms
dcs.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_kerberos._tcp.dc._msdcs.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_ldap._tcp.dc._msdcs.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_kerberos._tcp.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_kerberos._udp.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_kpasswd._tcp.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_ldap._tcp.Default-First-Site-Name._sites.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.hol
derness.org
Matching SRV record found at DNS server 192.168.1.128:
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.holdern
ess.org
Matching SRV record found at DNS server 192.168.1.128:
_kerberos._tcp.Default-First-Site-Name._sites.holderness.or
g
Matching SRV record found at DNS server 192.168.1.128:
_ldap._tcp.gc._msdcs.holderness.org
Matching A record found at DNS server 192.168.1.128:
gc._msdcs.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_gc._tcp.Default-First-Site-Name._sites.holderness.org
Matching SRV record found at DNS server 192.168.1.128:
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.holdern
ess.org
Matching SRV record found at DNS server 192.168.1.128:
_ldap._tcp.pdc._msdcs.holderness.org
Matching CNAME record found at DNS server 192.168.1.129:
63116796-7089-41c4-a211-060b67a6cc5d._msdcs.holderness.org
Matching A record found at DNS server 192.168.1.129:
dc2.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_ldap._tcp.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_ldap._tcp.97d8ddbd-2def-4acd-94a0-0ba28d1b0e6c.domains._ms
dcs.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_kerberos._tcp.dc._msdcs.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_ldap._tcp.dc._msdcs.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_kerberos._tcp.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_kerberos._udp.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_kpasswd._tcp.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_ldap._tcp.Default-First-Site-Name._sites.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.hol
derness.org
Matching SRV record found at DNS server 192.168.1.129:
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.holdern
ess.org
Matching SRV record found at DNS server 192.168.1.129:
_kerberos._tcp.Default-First-Site-Name._sites.holderness.or
g
Matching SRV record found at DNS server 192.168.1.129:
_ldap._tcp.gc._msdcs.holderness.org
Matching A record found at DNS server 192.168.1.129:
gc._msdcs.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_gc._tcp.Default-First-Site-Name._sites.holderness.org
Matching SRV record found at DNS server 192.168.1.129:
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.holdern
ess.org
Matching SRV record found at DNS server 192.168.1.129:
_ldap._tcp.pdc._msdcs.holderness.org
Warning:
Missing CNAME record at DNS server 192.168.1.129:
63116796-7089-41c4-a211-060b67a6cc5d._msdcs.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Warning:
Missing A record at DNS server 192.168.1.129:
dc2.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_ldap._tcp.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_ldap._tcp.97d8ddbd-2def-4acd-94a0-0ba28d1b0e6c.domains._ms
dcs.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_kerberos._tcp.dc._msdcs.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_ldap._tcp.dc._msdcs.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_kerberos._tcp.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_kerberos._udp.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_kpasswd._tcp.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_ldap._tcp.Default-First-Site-Name._sites.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.hol
derness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.holdern
ess.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_kerberos._tcp.Default-First-Site-Name._sites.holderness.or
g
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_ldap._tcp.gc._msdcs.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Warning:
Missing A record at DNS server 192.168.1.129:
gc._msdcs.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_gc._tcp.Default-First-Site-Name._sites.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.holdern
ess.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error:
Missing SRV record at DNS server 192.168.1.129:
_ldap._tcp.pdc._msdcs.holderness.org
[Error details: 10054 (Type: Win32 - Description: An existi
ng connection was forcibly closed by the remote host.)]
Error: Record registrations cannot be found for all the network
adapters
Summary of test results for DNS servers used by the above domain
controllers:
DNS server: 192.168.1.128 (DC3)
All tests passed on this DNS server
Name resolution is functional._ldap._tcp SRV record for the fores
t root domain is registered
DNS server: 192.168.1.129 (DC2)
All tests passed on this DNS server
Name resolution is functional._ldap._tcp SRV record for the fores
t root domain is registered
Summary of DNS test results:
Auth Basc Forw Del Dyn RReg Ext
_________________________________________________________________
Domain: holderness.org
dc2 PASS PASS n/a n/a n/a FAIL n/a
......................... holderness.org failed test DNS
Test omitted by user request: LocatorCheck
Test omitted by user request: Intersite
Why Experts Exchange?
Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.
Jim Murphy
Programmer at Smart IT Solutions
When asked, what has been your best career decision?
Deciding to stick with EE.
Mohamed Asif
Technical Department Head
Being involved with EE helped me to grow personally and professionally.
Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question
Connect with Certified Experts to gain insight and support on specific technology challenges including:
- Troubleshooting
- Research
- Professional Opinions
Did You Know?
We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE