Improve company productivity with a Business Account.Sign Up

x
?
Solved

KMS is not functioning properly

Posted on 2013-11-20
3
Medium Priority
?
304 Views
Last Modified: 2013-12-06
KMS(Key Management Service) is installed on one of Domain Controller but is is not functioning and clientmachines are showing windows need to update.
0
Comment
Question by:sanjayambre
  • 2
3 Comments
 
LVL 19

Expert Comment

by:Learnctx
ID: 39664706
You have the KMS SRV records setup? Under the forward lookup in DNS for your domain this record should exist. _VLMCS._tcp.yourchild.yourrootdomain.internal.

DNS > Server > Forward Lookup Zones > yourchild.yourrootdomain.internal > _tcp

If it exists check the settings. You want to have it set to use port 1688 and point to the FQDN of your KMS server. Priority and all of that can be set to 0.

If it does not exist, create a new SRV record. Right click _tcp > choose other new records > service location (SRV).

Service: _VLMCS
Protocol: _tcp
Weight: 0
Priority: 0
Port: 1688
Host offering: yourkmsservername.yourchild.yourrootdomain.internal. << you want to terminate the FQDN with a period especially if you're servicing multiple domains.

In my case my KMS records all point back to a KMS server in the child domain of the forest.
0
 

Author Comment

by:sanjayambre
ID: 39671640
Checked & SRV settings are correct. we tried to update license on affected machines by running command "slmgr.vbs /ato" but geeting error.

Error is attached for the reference.
KMS-Error.jpg
0
 
LVL 19

Accepted Solution

by:
Learnctx earned 825 total points
ID: 39671888
It looks like you have not activated enough clients with theKMS. Try running the following command:

Slmgr.vbs /dli

If the count is not higher than 5 you need to activate more hosts.

If the count is higher than 5, then try re-arming your end points, restarting them and then reactivating them.

Step 1: Re-arm by using command "slmgr.vbs -rearm"
Step 2: Reboot
Step 3: Activate "slmgr.vbs -ato"

If the count is higher than 5 make sure to check the key management service event log in eventvwr for any errors.

If you have Office bundled there is a good blog post here from Microsoft if you have not correctly sysprep'd the machines.

https://blogs.technet.com/b/odsupport/archive/2010/06/14/troubleshooting.aspx.
0

Featured Post

What Kind of Coding Program is Right for You?

There are many ways to learn to code these days. From coding bootcamps like Flatiron School to online courses to totally free beginner resources. The best way to learn to code depends on many factors, but the most important one is you. See what course is best for you.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

I’m willing to make a bet that your organization stores sensitive data in your Windows File Servers; files and folders that you really don’t want making it into the wrong hands.
In this article, we will discuss how you can secure Active Directory using free tools, and how you can choose a safe and secure Active Directory security auditing tool.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

589 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question