Solved

Unable to login to DC and DCDIAG errors

Posted on 2013-10-23
3
220 Views
Last Modified: 2014-03-28
After restarting our primary DC, we are not able to login to the server with Domain Admin account. From a second DC, DCDIAG gives the following error (Windows Svr 2008):
         Role Schema Owner = CN=NTDS Settings,CN=LEASVRDCO02,CN=Servers,CN=Defa
lt-First-Site-Name,CN=Sites,CN=Configuration,DC=LEALGROUP,DC=LOCAL
         [LEASVRDCO02] DsBindWithSpnEx() failed with error -2146893022,
         The target principal name is incorrect..
         Warning: LEASVRDCO02 is the Schema Owner, but is not responding to DS
         RPC Bind.
         [LEASVRDCO02] LDAP bind failed with error 8341,
         A directory service error has occurred..
         Warning: LEASVRDCO02 is the Schema Owner, but is not responding to
         LDAP Bind.
         Role Domain Owner = CN=NTDS Settings,CN=LEASVRDCO02,CN=Servers,CN=Defa
lt-First-Site-Name,CN=Sites,CN=Configuration,DC=LEALGROUP,DC=LOCAL
         Warning: LEASVRDCO02 is the Domain Owner, but is not responding to DS
         RPC Bind.
         Warning: LEASVRDCO02 is the Domain Owner, but is not responding to
         LDAP Bind.
         Role PDC Owner = CN=NTDS Settings,CN=LEASVRDCO02,CN=Servers,CN=Default
First-Site-Name,CN=Sites,CN=Configuration,DC=LEALGROUP,DC=LOCAL
         Warning: LEASVRDCO02 is the PDC Owner, but is not responding to DS RPC
         Bind.
         Warning: LEASVRDCO02 is the PDC Owner, but is not responding to LDAP
         Bind.
         Role Rid Owner = CN=NTDS Settings,CN=LEASVRDCO02,CN=Servers,CN=Default
First-Site-Name,CN=Sites,CN=Configuration,DC=LEALGROUP,DC=LOCAL
         Warning: LEASVRDCO02 is the Rid Owner, but is not responding to DS RPC
         Bind.
         Warning: LEASVRDCO02 is the Rid Owner, but is not responding to LDAP
         Bind.
         Role Infrastructure Update Owner = CN=NTDS Settings,CN=LEASVRDCO02,CN=
ervers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=LEALGROUP,DC=LOC
L
         Warning: LEASVRDCO02 is the Infrastructure Update Owner, but is not
         responding to DS RPC Bind.
         Warning: LEASVRDCO02 is the Infrastructure Update Owner, but is not
         responding to LDAP Bind.
0
Comment
Question by:LealIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 9

Expert Comment

by:VirastaR
ID: 39593875
Hi,

Check this..similar kind of scenario

Replication between two DC's is broken during 5 month, how to restore it?
http://social.technet.microsoft.com/Forums/windowsserver/en-US/bb0c1b17-ffff-4cbc-b33e-7f85b0ebdbd3/replication-between-two-dcs-is-broken-during-5-month-how-to-restore-it

Replication Issue: The target principal name is incorrect
http://www.experts-exchange.com/Networking/Windows_Networking/Q_22447953.html

Hope that helps :)
0
 

Accepted Solution

by:
LealIT earned 0 total points
ID: 39949640
The solutions above were of no help. We resolved our issue by having to seize the FSMO roles as per the article below.

http://www.petri.co.il/seizing_fsmo_roles.htm#
0
 

Author Closing Comment

by:LealIT
ID: 39961041
This was the only solution that worked for us.
0

Featured Post

Comparison of Amazon Drive, Google Drive, OneDrive

What is Best for Backup: Amazon Drive, Google Drive or MS OneDrive? In this free whitepaper we look at their performance, pricing, and platform availability to help you decide which cloud drive is right for your situation. Download and read the results of our testing for free!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Know what services you can and cannot, should and should not combine on your server.
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question