Solved

Unable to login to DC and DCDIAG errors

Posted on 2013-10-23
3
219 Views
Last Modified: 2014-03-28
After restarting our primary DC, we are not able to login to the server with Domain Admin account. From a second DC, DCDIAG gives the following error (Windows Svr 2008):
         Role Schema Owner = CN=NTDS Settings,CN=LEASVRDCO02,CN=Servers,CN=Defa
lt-First-Site-Name,CN=Sites,CN=Configuration,DC=LEALGROUP,DC=LOCAL
         [LEASVRDCO02] DsBindWithSpnEx() failed with error -2146893022,
         The target principal name is incorrect..
         Warning: LEASVRDCO02 is the Schema Owner, but is not responding to DS
         RPC Bind.
         [LEASVRDCO02] LDAP bind failed with error 8341,
         A directory service error has occurred..
         Warning: LEASVRDCO02 is the Schema Owner, but is not responding to
         LDAP Bind.
         Role Domain Owner = CN=NTDS Settings,CN=LEASVRDCO02,CN=Servers,CN=Defa
lt-First-Site-Name,CN=Sites,CN=Configuration,DC=LEALGROUP,DC=LOCAL
         Warning: LEASVRDCO02 is the Domain Owner, but is not responding to DS
         RPC Bind.
         Warning: LEASVRDCO02 is the Domain Owner, but is not responding to
         LDAP Bind.
         Role PDC Owner = CN=NTDS Settings,CN=LEASVRDCO02,CN=Servers,CN=Default
First-Site-Name,CN=Sites,CN=Configuration,DC=LEALGROUP,DC=LOCAL
         Warning: LEASVRDCO02 is the PDC Owner, but is not responding to DS RPC
         Bind.
         Warning: LEASVRDCO02 is the PDC Owner, but is not responding to LDAP
         Bind.
         Role Rid Owner = CN=NTDS Settings,CN=LEASVRDCO02,CN=Servers,CN=Default
First-Site-Name,CN=Sites,CN=Configuration,DC=LEALGROUP,DC=LOCAL
         Warning: LEASVRDCO02 is the Rid Owner, but is not responding to DS RPC
         Bind.
         Warning: LEASVRDCO02 is the Rid Owner, but is not responding to LDAP
         Bind.
         Role Infrastructure Update Owner = CN=NTDS Settings,CN=LEASVRDCO02,CN=
ervers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=LEALGROUP,DC=LOC
L
         Warning: LEASVRDCO02 is the Infrastructure Update Owner, but is not
         responding to DS RPC Bind.
         Warning: LEASVRDCO02 is the Infrastructure Update Owner, but is not
         responding to LDAP Bind.
0
Comment
Question by:LealIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 9

Expert Comment

by:VirastaR
ID: 39593875
Hi,

Check this..similar kind of scenario

Replication between two DC's is broken during 5 month, how to restore it?
http://social.technet.microsoft.com/Forums/windowsserver/en-US/bb0c1b17-ffff-4cbc-b33e-7f85b0ebdbd3/replication-between-two-dcs-is-broken-during-5-month-how-to-restore-it

Replication Issue: The target principal name is incorrect
http://www.experts-exchange.com/Networking/Windows_Networking/Q_22447953.html

Hope that helps :)
0
 

Accepted Solution

by:
LealIT earned 0 total points
ID: 39949640
The solutions above were of no help. We resolved our issue by having to seize the FSMO roles as per the article below.

http://www.petri.co.il/seizing_fsmo_roles.htm#
0
 

Author Closing Comment

by:LealIT
ID: 39961041
This was the only solution that worked for us.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Issue: One Windows 2008 R2 64bit server on the network unable to connect to a buffalo Device (Linkstation) with firmware version 1.56. There are a total of four servers on the network this being one of them. Troubleshooting Steps: Connect via h…
It’s been over a month into 2017, and there is already a sophisticated Gmail phishing email making it rounds. New techniques and tactics, have given hackers a way to authentically impersonate your contacts.How it Works The attack works by targeti…
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question