Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

DHCP Entries in ADSI Edit

Posted on 2013-02-07
6
Medium Priority
?
2,841 Views
Last Modified: 2013-02-08
I have two DHCP servers (W2K8 R2 Domain) on my network, both have a /23 subnet, server01 hands out IPs in the 192.168.0.x range and server02 hands out IPs in the 192.168.1.x range. Server01 is on a TMG 2010 server. Server01 is NOT handing out addresses, even though the server appears to be authorized and the scope is activated.

So I looked into ADSI Edit to see the entries listed there and this is what I found:

NAME
CN=server01.mydomain.netCNF:ba47eb2c-3c6e-479b-a2d3-837a2a78d437

DISTINGUISHED NAME
CN=server01.mydomain.net\OACNF:ba47eb2c-3c6e-479b-a2d3-837a2a78d437,CN= NetServices,CN=Services,CN=Configuration,DC=MYDOMAIN,DC=NET


NAME
CN=server02.mydomain.net

DISTINGUISHED NAME
CN=server02.mydomain.net,CN=NetServices,CN=Services,CN=Configuration,DC=MYDOMAIN,DC=NET

The server01 appears to be a conflict item which would cause it not to work properly. So I need to know, do I deactivate the scope then unauthorized the server for server01 using the DHCP MMC or can I just manually delete the CNF entry in ADSI Edit?

Will deleting the entry manually in ADSI Edit cause any issues with Exchange, AD, etc?

Will I still have to deactivate the scope then unauthorized the server for server01 using the DHCP MMC afterwards as well?

Thx for any help.
0
Comment
Question by:Riker1964
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 18

Accepted Solution

by:
Sarang Tinguria earned 750 total points
ID: 38866928
Match the entries with your running DHCP server and you can remove the stale and additional one from ADSI edit

Event if by mistake you remove the entry of working DHCP server then you can re-add the same by re-authorize the DHCP
0
 
LVL 24

Expert Comment

by:Nagendra Pratap Singh
ID: 38866947
I would do the changes from the DHCP console and not goto adsiedit if I can help it.
0
 
LVL 16

Expert Comment

by:Bruno PACI
ID: 38867735
Hi,

Is there something on the DHCP console that make you suppose your issue is about AD authorization of the DHCP server ??

As you told this DHCP server is also a TMG server, what did you do on TMG to allow DHCP request to reach the DHCP service ?????

Have a nice day
0
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:Riker1964
ID: 38867858
For Server01, which is listed in ADSI Edit as the conflicted server, when I try to UNAUTHORIZE using the DHCP MMC, it tells me "There is no such object on the server".

So it seems like I will have to manually remove the entry for Server01 in ADSI Edit, then remove the DHCP Role from Server01, then add the DHCP Role back in and try to re-authorize it.

I just wanted to make sure that I can manually remove the conflicted entry in ADSI Edit without causing any issues in Active Directory. I don't want to have to go through an AD Restore.
0
 

Author Comment

by:Riker1964
ID: 38867988
Also, under ADSI Edit, Services, NetServices, I see CN=DhcpRoot. When I go into that object's properties, and go down to dhcpservers, I see this:

¡192.168.1.1$rcn=server01.mydomain.net$f0x00000000$sserver01.mydomain.net$

This is the conflicted dhcp server, I do not see the server02 192.168.1.3 listed there, but it is listed as the 3rd entry in NetServices. Server02 is my current DHCP server that is working fine.

Do I need to remove the ¡192.168.1.1$rcn=server01.mydomain.net$f0x00000000$sserver01.mydomain.net$ entry as well?
0
 
LVL 18

Assisted Solution

by:Sarang Tinguria
Sarang Tinguria earned 750 total points
ID: 38870311
Yes ....if the DHCP server does not working then it should not be present in ADSIEDIT  as I already suggested that you may remove the entry of DHCP servers which are not present ...I am not suggesting to remove entire entry of CN=DhcpRoot but under that you will see entry of dhcp server ...remove that
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Here's a look at newsworthy articles and community happenings during the last month.
It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question