Solved

NLTEST.EXE / BDC_Query Error

Posted on 2012-12-29
4
747 Views
Last Modified: 2013-01-15
Hi,
I'm running a health inspection for our Active Directory (2003 Native).
I run this command - nltest.exe /bdc_query:DOMAIN_NAME

All but one servers were succesfull with the following notification:
        SyncState :  IN_SYNC
        ConnectionState : Status = 0 0x0 NERR_Success


The one server who had an error notification gave me this error:
        ConnectionState : Status = 1311 0x51f ERROR_NO_LOGON_SERVERS

And i have no knowledge on this error or how to fix it?
0
Comment
Question by:johnnyjonathan
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 23

Expert Comment

by:yo_bee
ID: 38729654
Since you are running Active Directory 2003 in native mode there is not true BDC anymore.
This existed in NT 4.0 Domain Controllers. So this switch does not apply to your enviroment and I am not 100% sure it would apply to anyone anymore since we are now on Server 2012 (5 verisons since NT 4.0)

From http://technet.microsoft.com/en-us/library/cc731935(v=ws.10).aspx

/bdc_query: <DomainName>
 Queries for a list of BDCs in DomainName, and then displays their state of synchronization and replication status. You can use this parameter only for Windows NT 4.0 domain controllers.
0
 
LVL 23

Accepted Solution

by:
yo_bee earned 500 total points
ID: 38729658
You will have a server (if in a single domain w/o any child domains) hold all 5 FSMO roles.
You can consider that your primary DC, but in regards to an actual BDC role that does not exist anymore as of 2000 AD.  If all your DC's are in the same site located in the Site and Services MSC it is a round robin which server the client uses to authenticate to.
So Client A and Client B both are on the same subnet and 3 DC's are on this subnet.
Client A and B can both be authenticated to Server A.
Or Client A can auth to Server A and Client B to Server B, but next logon the can be switched.
0
 
LVL 23

Expert Comment

by:yo_bee
ID: 38729664
Have you looked at the event logs on the server with the issue.
See if the  KB articale from MS could shed some light on your situation.
http://support.microsoft.com/kb/321044

Also you might want to use REPADMIN to see if the topology is in a consistant state.
http://technet.microsoft.com/en-us/library/cc770963(v=ws.10).aspx

Also DCDIAG /ReplSource:<SourceDomainController>
http://technet.microsoft.com/en-us/library/cc731968(v=ws.10).aspx
Tests the connection between the domain controller on which you run the command and the source domain controller. (This parameter is used for the CheckSecurityError test.) SourceDomainController is the DNS name, NetBIOS name, or distinguished name of a real or potential server that will be the source domain controller for replication, as represented by a real or potential connection object.
0
 

Author Closing Comment

by:johnnyjonathan
ID: 38780861
Thanks!
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question