Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Failed to ping or bind to the Infrastructure Master FSMO role holder

Posted on 2012-03-18
12
Medium Priority
?
5,650 Views
Last Modified: 2012-04-19
I have this error in scom

"Failed to ping or bind to the Infrastructure Master FSMO role holder"

I searched in the internet to know this error but I didn't know what to do .

I just found a link"http://mpwiki.viacode.com/default.aspx?g=posts&t=2053" that states I should open  the AD MP Events view.

I read the management pack of the active directory in this site :
http://technet.microsoft.com/en-us/library/cc180912.aspx

I found the following but that didn't help me



failed to ping or bind to the Infrastructure Master FSMO role holder
      

Event
      

Active Directory Windows 2000 and Windows Server 2003 - Active Directory Availability
      

Event Number equals 20007.

Event Type equals Warning.

Source Name equals AD Op Master Response.
      

Warning



I don't know what to do regarding this warning,it is repeated occasionally
0
Comment
Question by:omzeyad
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 6
12 Comments
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 37734624
Dear,

please provide below info

1) how many DC's you have
2) os of all DC
3) forest /domain functional level

if you run below commands what is the putput, please upload santized

start>run>cmd

1)netdom /query fsmo
2)dcdiag
3)repadmin /showrepl
0
 

Author Comment

by:omzeyad
ID: 37735244
1) how many DC's you have
 2 DC

2) os of all DC
windows server 2008 service pack 1

3) forest /domain functional level
 i will check

I will upload the output of the command
0
 

Author Comment

by:omzeyad
ID: 37737134
domain functional level is windows server 2008 R2

forest functional level is Windows Server 2008
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 37737146
ok,,,,
if you run below commands what is the putput, please upload santized

start>run>cmd

1)netdom /query fsmo
2)dcdiag
3)repadmin /showrepl
0
 

Author Comment

by:omzeyad
ID: 37737226
I have already attached it ,  God will .I will attached it again
dcdiag
fsmo
repl
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 37737278
Errors

1) ......................... DC failed test NCSecDes.... You can safely ignore refer to http://support.microsoft.com/kb/967482

2) ......................... DC failed test Services........You can safely ignore refer to http://support.microsoft.com/kb/973665

with regards to your orignal post look like you have connectivity issues with DC to network.
can you upoad orignal screen shot after santiziing your domainname only?

Plz also check forewall settings of your DC.....

Take your full DC backup and check if below can help you

http://technet.microsoft.com/en-us/library/dd279743.aspx

Caution : I never tested above......
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 37740815
Could you please check the pther DC is not behind the firewall???
0
 

Author Comment

by:omzeyad
ID: 37751224
dear usman

what do you mean by santiziing my domain name

anyway this is the screen shot of the fsmo and repadmin command

fsmo
repadmin
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 37751243
your FSMO holder is up and running.
you dont have any replication issues.

with regards to dcdiag i already replied you.

regards to your question plz try to trouble shot DC connectivity, i would like to know is there any firewall between two dc's?

i tried to simulate your error in my LAB this comes when a firewall preventing ICMP packets. in my case this error comes on NON FSMO HOLDER, please confirm where you see this error? on fsmo holder or non fsmo holder...
0
 

Author Comment

by:omzeyad
ID: 37751355
I appreciate your support

I will ask the infrastructure department because they are responsible for the firewall,
I think this is the case ,because this error sometimes happened not always .

the windows  firewall is already closed

do you think that I must install Microsoft network monitor on the domain controller to see what happened in network ,would that affect the performance of the domain controller
0
 
LVL 16

Accepted Solution

by:
Syed_M_Usman earned 1500 total points
ID: 37751377
1) Win 2008 has three levels of firewall, i would suggest you turn on firewall for Public and Private networks...

2) could you please confirm where you recives this error? on DC1 or Dc2

3) WHAT TYPE OF  FIREWALL YOU ARE USING, plz tell me the model and brand

please draw connection typlogy between two Dc's
0
 

Author Comment

by:omzeyad
ID: 37751598
all I know that fortigate is used ,and all servers are located in vlan1 and workstation are located in vlan2  ,I'm sure that dc and adc are in the same vlan .no firewall between them

I think that may be the infrastructure department edit some rules and cause that error to generate ,therefore I need to install a network monitoring tool to know what happened but I'm afraid that  it may affect the performance of the domain ,I can't make the monitor record all connections  until a problem happened and I don't know when it will happen.
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question