?
Solved

Failure in Basic Connectivity in DCdiag /Test:DNS /e /v result

Posted on 2013-11-12
8
Medium Priority
?
8,312 Views
Last Modified: 2013-11-21
Hi ALL, when I run DCdiag /Test:DNS /e /v result, i find the following result:

                  DNS TEST: f…....net                  
DOMAIN CONTROLLERS      Authentication(Auth)      Basic Connectivity(BASC)      Forwarders(Forw)      Delegation(Del)      Dynamic registration enabled (Dyn)      Resource Record registration(RReg)
ORD-SVR-DC      PASS       FAIL      n/a      n/a      n/a      n/a
TH-SVR-DC      PASS       FAIL      n/a      n/a      n/a      n/a
CAN-SVR-DC      PASS       FAIL      n/a      n/a      n/a      n/a
FPO-SVR-DC      PASS       PASS      PASS      PASS      PASS      n/a
PPR-SVR-DC      PASS       FAIL      n/a      n/a      n/a      n/a
ORD-SVR-DC1      PASS       FAIL      n/a      n/a      n/a      n/a


please tell what step do I need to take further
0
Comment
Question by:bubaibhatta
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
  • 2
8 Comments
 
LVL 37

Expert Comment

by:Mahesh
ID: 39641326
have you created AD integrated Reverse lookup zone for all subnets in which all Domain Controllers residing?
I think they are missing ?
Just check if you have them, if not please create them, run "Ipconfig /registerdns" on all domain controllers, allow some time for replication and then run DNS test again and let me know please.
0
 

Author Comment

by:bubaibhatta
ID: 39641839
Hi Mahesh,

Thanks for the information. I shall come back to you with all the status .
0
 
LVL 24

Expert Comment

by:Sandeshdubey
ID: 39643608
Also ensure correct dns setting on DC as this.
Best practices for DNS client settings on DC and domain members.
http://abhijitw.wordpress.com/2012/03/03/best-practices-for-dns-client-settings-on-domain-controller/
0
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:bubaibhatta
ID: 39658390
Thanks Mahesh and Sandesh,

when I checked the command output, i see a section like this:
_____________________________________________________________________
TEST: Basic (Basc)
Error: No WMI connectivity
[Error details:0x80070005 <Type: HRESULT - Facility: Win32, Description: Access is denied.>- Connection to WMI server failed]
____________________________________________________________________________

this is coming everytime , when I run this command from PDC and it is checking to all other ADCs.

Is it something that I need to be worried?
0
 
LVL 24

Expert Comment

by:Sandeshdubey
ID: 39658417
It seems to be WMI issue check this http://social.technet.microsoft.com/Forums/windowsserver/en-US/4f33837b-1cb1-4648-85b1-3ba87cbfe93e/wmi-remote-access-denied?forum=winserverManagement

Checked that wmi is not corrupted.Run wmic pagefile output in cmd.
0
 

Author Comment

by:bubaibhatta
ID: 39658533
Thanks Sandesh,

meanwhile this is the side-by-side comparison of AD sites and DNS Reverselookup zones.
AD-DNSsites
Do they look alright?
0
 

Author Comment

by:bubaibhatta
ID: 39658536
Hi Sandesh/Mahesh,

i checked the link that you suggested for WMI and find everything is alright.

What next?

By the way, not sure if this is relevant, all these DCs are in windows 2003 platform.
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 1500 total points
ID: 39658600
Can you pl check on all domain controllers advanced TCP/IP properties \ DNS tab for below.
ensure that "Append Primary and connection specific dns suffixes" radio button is selected
Ensure that "Append parent suffixes of primary dns suffix" checkbox is selected
Ensure that "register this connection addresses in Dns" checkbox is selected
If there is any deviation in the above settings, its probably you will face name resolution and connectivity issues
Also check for any false \ wrong forwarder entry exists on all dns servers forwarder tab..
Also check if you are able to replicate AD through AD sites and services without any issue please
Thanks
1

Featured Post

Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question