DNS Name does not Exist - when migrating from Server 2003 to Server 2008R2

Posted on 2012-09-22
Last Modified: 2012-09-24
Hi Experts,

I have installed Windows 2008 R2 on a new HP Proliant server with a plan to transition a 2003 AD domain to the new server. So far I have carried out the following:

2003 machine - I have carried out the adprep32 /forestprep; adprep32 /domainprep and adprep32 /domainprep /gpprep. The ip address of this DC is, default gateway is and preferred DNS is

The domain is called RMNETNT

NEW HP Machine - I have installed Windows 2008R2 O/S and given this server a static IP address of Since I want to promote this server to a DC I have given it a default gateway of and a preferrred DNS entry of - ie the 2003 server.

The new server, at this point, is still part of WORKGROUP. I ran dcpromo and selected options as follows:

I actually tick the box "use advanced mode installation".

On the Deployment Configuration I choose "Existing Forest" and "Add domain controller to existing domain".

On the Network Credentials page I enter the domain name as NMNETNT and set the Alternate Credentials to NMNETNT\administrator with the admin password used to connect to the NMNETNT domain. I click NEXT.

Then within the SELECT A DOMAIN page I am shown the domain NMNETNT.LOCAL (forest root domain). So far so good.

Now when I click NEXT to continue I receive the following error:

The following error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain "RMNETNT.LOCAL"

The error was: "DNS name does not exist."
(error code 0x0000232B RCODE_NAME_ERROR)

The query was for the SRV record for _ldap._tcp.dc._msdcs.RENETNT.LOCAL

Common causes of this error include the following:

- The DNS SRV records required to locate a domain controller for the domain are not registered in DNS. These records are registered with a DNS server automatically when a domain controller is added to a domain. They are updated by the domain controller at set intervals. This computer is configured to use DNS servers with following IP addresses:

- One or more of the following zones do not include delegation to its child zone:

. (the root zone)

Also, when I do a nslookup on 2008 machine it returns the following:

> Default Server: unknown
> Address :

What am I missing?? I have looked at some other solutions within EE but none work for my situation.

Have I forgotten to do something within DNS on 2003 Server?? I am at a loss and would really appreciate some help.

Thanks in advance.
Question by:gcgnjalc
    LVL 18

    Expert Comment

    by:Sushil Sonawane
    First add your new server Windows 2008 R2  in domain then run the command dcpromo

    For more information, please refer to the following link: Verify DNS registration for domain controllers using the nslookup command

    For more troubleshooting please refer below link.


    Author Comment

    Thanks sushil84.

    I have since made the change that you suggested, but the problem still exists. However, I have also run the netdiag.exe application on the 2003 server and found the following errors:

    DNS Test................... failed
    [WARNING] Cannot find a primary authoritative DNS server for the name 'vigserver.RMNETNT.local' [TIME OUT]
    The name 'vigserver.RMNETNT.local' may not be registered in DNS.

    Are you able to help me resolve this issue??
    LVL 18

    Expert Comment

    by:Sushil Sonawane
    Run the command dcdiag /q and check the result.

    If the you didn't get any error then try make  your 2008 server as ADC.
    LVL 24

    Accepted Solution

    It seems that Windows firewall is causing the issue.Disable local windows firewall service, by default it is enabled in vista/windows 2008 and above. Check the network connectivity by pinging the server.
    Disable Windows Firewall:

    If multiple Nic are present diabled the unrequired NIC.Check the NIC binding as well,the NIC which is online and has ip details should be in first order.If multiple NIC are present then disabled the unrequired NIC.

    Also make sure the IPv6 is configured to dynamic (Automatically).Join the server to domain and then try to pormote the server.

    If still the issue persist post the Win2003 ipconfig /all details and dcdiag /q output.Alos post the Win2008 ipconfi /all details.

    Since the servers are placed in different network ensure that required port are open for AD comminictation.

    Also temporary diable the AV.It could be due to AV or 3rd party security application which act as firewall and block AD communuctaion.AV like Symantec,trend,etc have new features to "protect network traffic".Please check AV setting and disable the same if defined.

    Author Comment

    Thanks Sandeshdubey.

    There is a second NIC but I won't be able to check out your potential solution until I am back on site tomorrow morning (24hours). I will update the forum then.

    Featured Post

    Are your corporate email signatures appalling?

    Is it scary how unprofessional your email signatures look? Do users create their own terrible designs and give themselves stupid job titles? You can make this a lot easier for yourself by choosing an email signature management solution from Exclaimer today.

    Join & Write a Comment

    Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
    Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now