Solved

DHCP Entries in ADSI Edit

Posted on 2013-02-07
6
2,402 Views
Last Modified: 2013-02-08
I have two DHCP servers (W2K8 R2 Domain) on my network, both have a /23 subnet, server01 hands out IPs in the 192.168.0.x range and server02 hands out IPs in the 192.168.1.x range. Server01 is on a TMG 2010 server. Server01 is NOT handing out addresses, even though the server appears to be authorized and the scope is activated.

So I looked into ADSI Edit to see the entries listed there and this is what I found:

NAME
CN=server01.mydomain.netCNF:ba47eb2c-3c6e-479b-a2d3-837a2a78d437

DISTINGUISHED NAME
CN=server01.mydomain.net\OACNF:ba47eb2c-3c6e-479b-a2d3-837a2a78d437,CN= NetServices,CN=Services,CN=Configuration,DC=MYDOMAIN,DC=NET


NAME
CN=server02.mydomain.net

DISTINGUISHED NAME
CN=server02.mydomain.net,CN=NetServices,CN=Services,CN=Configuration,DC=MYDOMAIN,DC=NET

The server01 appears to be a conflict item which would cause it not to work properly. So I need to know, do I deactivate the scope then unauthorized the server for server01 using the DHCP MMC or can I just manually delete the CNF entry in ADSI Edit?

Will deleting the entry manually in ADSI Edit cause any issues with Exchange, AD, etc?

Will I still have to deactivate the scope then unauthorized the server for server01 using the DHCP MMC afterwards as well?

Thx for any help.
0
Comment
Question by:Riker1964
6 Comments
 
LVL 18

Accepted Solution

by:
Sarang Tinguria earned 250 total points
ID: 38866928
Match the entries with your running DHCP server and you can remove the stale and additional one from ADSI edit

Event if by mistake you remove the entry of working DHCP server then you can re-add the same by re-authorize the DHCP
0
 
LVL 23

Expert Comment

by:Nagendra Pratap Singh
ID: 38866947
I would do the changes from the DHCP console and not goto adsiedit if I can help it.
0
 
LVL 16

Expert Comment

by:PaciB
ID: 38867735
Hi,

Is there something on the DHCP console that make you suppose your issue is about AD authorization of the DHCP server ??

As you told this DHCP server is also a TMG server, what did you do on TMG to allow DHCP request to reach the DHCP service ?????

Have a nice day
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:Riker1964
ID: 38867858
For Server01, which is listed in ADSI Edit as the conflicted server, when I try to UNAUTHORIZE using the DHCP MMC, it tells me "There is no such object on the server".

So it seems like I will have to manually remove the entry for Server01 in ADSI Edit, then remove the DHCP Role from Server01, then add the DHCP Role back in and try to re-authorize it.

I just wanted to make sure that I can manually remove the conflicted entry in ADSI Edit without causing any issues in Active Directory. I don't want to have to go through an AD Restore.
0
 

Author Comment

by:Riker1964
ID: 38867988
Also, under ADSI Edit, Services, NetServices, I see CN=DhcpRoot. When I go into that object's properties, and go down to dhcpservers, I see this:

¡192.168.1.1$rcn=server01.mydomain.net$f0x00000000$sserver01.mydomain.net$

This is the conflicted dhcp server, I do not see the server02 192.168.1.3 listed there, but it is listed as the 3rd entry in NetServices. Server02 is my current DHCP server that is working fine.

Do I need to remove the ¡192.168.1.1$rcn=server01.mydomain.net$f0x00000000$sserver01.mydomain.net$ entry as well?
0
 
LVL 18

Assisted Solution

by:Sarang Tinguria
Sarang Tinguria earned 250 total points
ID: 38870311
Yes ....if the DHCP server does not working then it should not be present in ADSIEDIT  as I already suggested that you may remove the entry of DHCP servers which are not present ...I am not suggesting to remove entire entry of CN=DhcpRoot but under that you will see entry of dhcp server ...remove that
0

Featured Post

Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
A procedure for exporting installed hotfix details of remote computers using powershell
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

815 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now