mathews2001
asked on
dcpromo failing Server 2008
We have a branch office Server 2008. its active directory was not replicating and eventually went to tombstone. I assume users must have been authenticating over the site to site VPN to a main office DC.
I rtied the registry fix to allow it to synch when out of date, but that did not work.
I eventually ran dcpromo /forceremoval, ran metadata cleanup, killed it out of DNS. I still cannot run dcpromo, or join this to the domain. At one point I changed its name and IP address and still couldnt join.
It currently is a stand alone server. It has a secondary DNS zone for my domain, which works. it has a good connection to the main DC, can ping the domain name and get a response from the main DC. can ping the main DC by name and get a correct response.
On both functions I get to the name and password box, then get network path not found, or forest not available.
I rtied the registry fix to allow it to synch when out of date, but that did not work.
I eventually ran dcpromo /forceremoval, ran metadata cleanup, killed it out of DNS. I still cannot run dcpromo, or join this to the domain. At one point I changed its name and IP address and still couldnt join.
It currently is a stand alone server. It has a secondary DNS zone for my domain, which works. it has a good connection to the main DC, can ping the domain name and get a response from the main DC. can ping the main DC by name and get a correct response.
On both functions I get to the name and password box, then get network path not found, or forest not available.
Please check below parameters
1.Check the dns setting shpuld point to online DC which is reachable and required port are open for AD communication,check the NIC binding and ensure multiple NIC is not configured.http://abhijitw.wordpress.com/2012/03/03/best-practices-for-dns-client-settings-on-domain-controller/
Active Directory Firewall Ports - Let's Try To Make This Simple
http://msmvps.com/blogs/acefekay/archive/2011/11/01/active-directory-firewall-ports-let-s-try-to-make-this-simple.aspx
2.Please try disabling the windows firewall and Antivirus Application for a while on the Windows 2008 server and try.
3.This issue may occur if the TCP/IP NetBIOS Helper Service is not running on the client computer.
http://www.chicagotech.net/pathnotfound.htm
Network Path Not Found" Error Message When You Try to Add Workstation to Domain:http://support.microsoft.com/kb/285182
4.Check the health of exisitnf dc too by dcdiag/q and repadmin /replsum
1.Check the dns setting shpuld point to online DC which is reachable and required port are open for AD communication,check the NIC binding and ensure multiple NIC is not configured.http://abhijitw.wordpress.com/2012/03/03/best-practices-for-dns-client-settings-on-domain-controller/
Active Directory Firewall Ports - Let's Try To Make This Simple
http://msmvps.com/blogs/acefekay/archive/2011/11/01/active-directory-firewall-ports-let-s-try-to-make-this-simple.aspx
2.Please try disabling the windows firewall and Antivirus Application for a while on the Windows 2008 server and try.
3.This issue may occur if the TCP/IP NetBIOS Helper Service is not running on the client computer.
http://www.chicagotech.net/pathnotfound.htm
Network Path Not Found" Error Message When You Try to Add Workstation to Domain:http://support.microsoft.com/kb/285182
4.Check the health of exisitnf dc too by dcdiag/q and repadmin /replsum
ASKER
dns is pointing to a good DC and working. even went old school and added hosts and lmhosts files at one point.
no AV for now
The VPNs are wide open between sites.
no local firewalls enabled
dcdiag is clean except for one frsevent message that I feel is minor
no AV for now
The VPNs are wide open between sites.
no local firewalls enabled
dcdiag is clean except for one frsevent message that I feel is minor
ASKER
Source DC largest delta fails/total %% error
AUSTIN 35m:32s 0 / 23 0
east 31m:36s 0 / 10 0
maindc 31m:41s 0 / 23 0
HOUSTON 31m:41s 0 / 10 0
TYLER 31m:37s 0 / 10 0
west 31m:37s 0 / 6 0
Destination DC largest delta fails/total %% error
AUSTIN 31m:43s 0 / 23 0
east 35m:32s 0 / 10 0
maindc 33m:58s 0 / 23 0
HOUSTON 25m:08s 0 / 10 0
TYLER 31m:01s 0 / 10 0
west 34m:40s 0 / 6 0
AUSTIN 35m:32s 0 / 23 0
east 31m:36s 0 / 10 0
maindc 31m:41s 0 / 23 0
HOUSTON 31m:41s 0 / 10 0
TYLER 31m:37s 0 / 10 0
west 31m:37s 0 / 6 0
Destination DC largest delta fails/total %% error
AUSTIN 31m:43s 0 / 23 0
east 35m:32s 0 / 10 0
maindc 33m:58s 0 / 23 0
HOUSTON 25m:08s 0 / 10 0
TYLER 31m:01s 0 / 10 0
west 34m:40s 0 / 6 0
Can you post the ipconfig /all details of the server you are promoting? what about the client computer can you try rejoining one of the client computer in site where you are promoting the server.
ASKER
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . : domain.com
Description . . . . . . . . . . . : Broadcom BCM5716C NetXtreme II Gig
VBD Client)
Physical Address. . . . . . . . . : B8-AC-6F-80-65-8D
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 10.0.8.11(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 10.0.8.1
DNS Servers . . . . . . . . . . . : 10.0.9.10
10.0.2.9
NetBIOS over Tcpip. . . . . . . . : Enabled
the 2 DNS servers are the closest DC and the one at the main office.
they are reachable by ping. BUT I cannot browse them. Sicne this server is not on the domain, I would expect to get a username/password box, then be able to see the shares on the 2 servers. Instead I get the network lcoation cannot be reached.
Going the other direction works. from DC to this server.
Connection-specific DNS Suffix . : domain.com
Description . . . . . . . . . . . : Broadcom BCM5716C NetXtreme II Gig
VBD Client)
Physical Address. . . . . . . . . : B8-AC-6F-80-65-8D
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 10.0.8.11(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 10.0.8.1
DNS Servers . . . . . . . . . . . : 10.0.9.10
10.0.2.9
NetBIOS over Tcpip. . . . . . . . : Enabled
the 2 DNS servers are the closest DC and the one at the main office.
they are reachable by ping. BUT I cannot browse them. Sicne this server is not on the domain, I would expect to get a username/password box, then be able to see the shares on the 2 servers. Instead I get the network lcoation cannot be reached.
Going the other direction works. from DC to this server.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
took me a while to get there
ASKER