Solved

DHCP randomly is getting unauthorized

Posted on 2012-04-11
3
719 Views
Last Modified: 2012-06-27
We have sites all over the globe and AD/DNS 2008 R2 servers all over the globe too.  Today several of our 2003 member servers lost DHCP authorization.  At the local 2003 server, the error is that it cannot contact directory services.  Yet all tests come back OK.  To add to the mystery, DHCP servers elsewhere show that these servers are, in fact, authorized.

I swear it is a network timeout issue but how can I prove this?  What tools can I use to dig deep into AD to check this out.

Any help would be great.  Thanks.
0
Comment
Question by:stowyo
3 Comments
 
LVL 17

Accepted Solution

by:
Anuroopsundd earned 250 total points
ID: 37833963
Deauthorize of DHCP is mostly due to unable to contact Domain controllers.

you can setup performance counters, provide Event logs (Event Viewer) to network team..

below link have more information about the event id and setting up counters for monitoring and performance..
Hope this helps..

http://www.tech-faq.com/monitoring-and-troubleshooting-the-dhcp-server.html
0
 
LVL 17

Assisted Solution

by:WORKS2011
WORKS2011 earned 250 total points
ID: 37847343
agree it's network, the probability of two or more 2003 DHCP servers changing state to unauthorized at the same time is close to zero.

you could do a simple ping test between servers, run "ping -t ip address" to keep the connection open. You may find the time increasing from 10ms, 12ms, 25ms until it eventually times out.
0
 
LVL 1

Author Closing Comment

by:stowyo
ID: 37891667
Thank you.  The problem ended up being a Virus on the local LAN at the remote site across the WAN.  This site did not have a DC.  The virus was flooding the WAN link with DNS requests.  You both led me to the solution.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Do you have users whose passwords are expiring and they are constantly calling you?  Well I sure did and needed a way to put an end to this.  We have a lot of remote users which would not be notified that their passwords were expiring since they wer…
Resolve DNS query failed errors for Exchange
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now