Solved

DHCP wont work on 2008 r2

Posted on 2012-03-28
9
639 Views
Last Modified: 2012-04-14
hey guys installed a new vm for testiing, server 2008 r2

ran dcpromo and installed it as a DC, i then configured DHCP and authorized it

Problem is the ipv4 top level icon has a red error icon in it, and wont fish out IPs

the log keeps repeating with erros saying the following


"The DHCP service failed to see a directory server for authorization"

I tried a few things, like checking the credentials in the dhcp settings, removing and reinstalling the role etc.

If its too hard ill just make a new VM and trash this one!, hopin to fix it easy but as ive already configured a bit of of!
0
Comment
Question by:wsc-it
9 Comments
 
LVL 16

Expert Comment

by:The_Kirschi
ID: 37775326
0
 
LVL 3

Expert Comment

by:Dhanesh Kansari
ID: 37775335
Any Event Id? Please....

Did you restart the DHCP Service? If that fails, is the DC otherwise healthy? You can start checking by running NETDIAG and DCDIAG from the support tools.

1) Did you tried to deathorize and reauthorize?
2) Please check DNS configuration if DC is available in ping dc.somewhat.local and responds
3) any 3rdparty/MS firewall active on interface? Are the rules to exclude DNS traffic and DHCP traffic included?
0
 
LVL 6

Expert Comment

by:Bxoz
ID: 37775361
Do you have an other instance of DHCP running on your network (router, firewall, ...)

If you have another DHCP service running then you will not be able to start the SBS DHCP service.
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 21

Expert Comment

by:motnahp00
ID: 37778570
Just checking. Are you authorizing the DHCP server with a user as a member of the Enterprise Admins security group?
0
 

Author Comment

by:wsc-it
ID: 37785104
Here is the dcdiag /c

Directory Server Diagnosis


Performing initial setup:

   Trying to find home server...

   Home Server = dc1

   * Identified AD Forest.
   Done gathering initial info.


Doing initial required tests

   
   Testing server: Default-First-Site-Name\DC1

      Starting test: Connectivity

         ......................... DC1 passed test Connectivity



Doing primary tests

   
   Testing server: Default-First-Site-Name\DC1

      Starting test: Advertising

         ......................... DC1 passed test Advertising

      Starting test: CheckSecurityError

            [DC1] DsReplicaGetInfo(KCC_DS_CONNECT_FAILURES) failed with error

            8453,

            [DC1] Unable to query the list of KCC connection failures.

            Continuing...

         [DC1] No security related replication errors were found on this DC!

         To target the connection to a specific source DC use /ReplSource:<DC>.

         ......................... DC1 passed test CheckSecurityError

      Starting test: CutoffServers

         ......................... DC1 passed test CutoffServers

      Starting test: FrsEvent

         ......................... DC1 passed test FrsEvent

      Starting test: DFSREvent

         ......................... DC1 passed test DFSREvent

      Starting test: SysVolCheck

         ......................... DC1 passed test SysVolCheck

      Starting test: FrsSysVol

         ......................... DC1 passed test FrsSysVol

      Starting test: KccEvent

         ......................... DC1 passed test KccEvent

      Starting test: KnowsOfRoleHolders

         ......................... DC1 passed test KnowsOfRoleHolders

      Starting test: MachineAccount

         ......................... DC1 passed test MachineAccount

      Starting test: NCSecDesc

         ......................... DC1 passed test NCSecDesc

      Starting test: NetLogons

         [DC1] User credentials does not have permission to perform this

         operation.

         The account used for this test must have network logon privileges

         for this machine's domain.

         ......................... DC1 failed test NetLogons

      Starting test: ObjectsReplicated

         ......................... DC1 passed test ObjectsReplicated

      Starting test: OutboundSecureChannels

         ** Did not run Outbound Secure Channels test because /testdomain: was

         not entered

         ......................... DC1 passed test OutboundSecureChannels

      Starting test: Replications

         [Replications Check,DC1] DsReplicaGetInfo(PENDING_OPS, NULL) failed,

         error 0x2105 "Replication access was denied."

         ......................... DC1 failed test Replications

      Starting test: RidManager

         ......................... DC1 passed test RidManager

      Starting test: Services

            Could not open NTDS Service on DC1, error 0x5 "Access is denied."

         ......................... DC1 failed test Services

      Starting test: SystemLog

         An error event occurred.  EventID: 0x00000423

            Time Generated: 03/30/2012   09:35:44

            Event String:

            The DHCP service failed to see a directory server for authorization.

         ......................... DC1 failed test SystemLog

      Starting test: Topology

         ......................... DC1 passed test Topology

      Starting test: VerifyEnterpriseReferences

         ......................... DC1 passed test VerifyEnterpriseReferences

      Starting test: VerifyReferences

         ......................... DC1 passed test VerifyReferences

      Starting test: VerifyReplicas

         ......................... DC1 passed test VerifyReplicas

   
      Starting test: DNS

         

         DNS Tests are running and not hung. Please wait a few minutes...

         ......................... DC1 failed test DNS

   
   Running partition tests on : ForestDnsZones

      Starting test: CheckSDRefDom

         ......................... ForestDnsZones passed test CheckSDRefDom

      Starting test: CrossRefValidation

         ......................... ForestDnsZones passed test

         CrossRefValidation

   
   Running partition tests on : DomainDnsZones

      Starting test: CheckSDRefDom

         ......................... DomainDnsZones passed test CheckSDRefDom

      Starting test: CrossRefValidation

         ......................... DomainDnsZones passed test

         CrossRefValidation

   
   Running partition tests on : Schema

      Starting test: CheckSDRefDom

         ......................... Schema passed test CheckSDRefDom

      Starting test: CrossRefValidation

         ......................... Schema passed test CrossRefValidation

   
   Running partition tests on : Configuration

      Starting test: CheckSDRefDom

         ......................... Configuration passed test CheckSDRefDom

      Starting test: CrossRefValidation

         ......................... Configuration passed test CrossRefValidation

   
   Running partition tests on : wsctest

      Starting test: CheckSDRefDom

         ......................... wsctest passed test CheckSDRefDom

      Starting test: CrossRefValidation

         ......................... wsctest passed test CrossRefValidation

   
   Running enterprise tests on : wsctest.local

      Starting test: DNS

         Test results for domain controllers:

           
            DC: dc1.wsctest.local

            Domain: wsctest.local

           

                 
               TEST: Basic (Basc)
                  Warning: no DNS RPC connectivity (error or non Microsoft DNS server is running)
         
               dc1                          PASS WARN n/a  n/a  n/a  n/a  n/a  
         ......................... wsctest.local passed test DNS

      Starting test: LocatorCheck

         ......................... wsctest.local passed test LocatorCheck

      Starting test: FsmoCheck

         ......................... wsctest.local passed test FsmoCheck

      Starting test: Intersite

         ......................... wsctest.local passed test Intersite
0
 

Author Comment

by:wsc-it
ID: 37785129
drkansari,

The eventid is 1059
Yes ive tried restarting. Above post is the DCDIAG, Few errors in it, NETDIAG does not run, u nrecognized command.

If i ping servername.domainname.local it gets a reply OK

There are no third party firewalls, Its an isolated VM running on vmware workstation 8
The MS firewall is active however.

motnahp00,
Yes the administrator account is in the enterprise admins group

BxozPosted,
No, And its not SBS server its 2008 r2 enterprise
0
 
LVL 26

Expert Comment

by:Leon Fester
ID: 37796562
You need to run this test as an administrator.
Right-click command prompt and select "Run as Administrator"
0
 

Accepted Solution

by:
wsc-it earned 0 total points
ID: 37825719
built a new DC, it was easier
0
 

Author Closing Comment

by:wsc-it
ID: 37845971
resolved this myself
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question