Solved

Server 2008 r2 missing netlogin and failed test advertising

Posted on 2014-03-09
3
344 Views
Last Modified: 2014-03-10
Hello,

We have a Server 2008 r2 machine promoted to domain controller with a current server 2000 DC.

When DCDIAG is run these errors occur:

1. failed test advertising

2. NetLogin share cannot be found

3. KDC cannot find a suitable certificate

We would like to resolve the issues before moving the FSMO roles over from the 2000 server.
0
Comment
Question by:networkadmin
3 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 39916528
Are there firewalls between the two DCs?   Just want to make sure the proper ports are open

Start with this KB  http://support.microsoft.com/kb/947022/en-us

What events are you seeing in your logs?

Thanks

Mike
0
 

Author Comment

by:networkadmin
ID: 39916547
No Firewalls are between the servers.

The log shows this after making the change shown by the above KB:

Log Name:      System
Source:        NETLOGON
Date:          3/9/2014 6:15:17 PM
Event ID:      5706
Task Category: None
Level:         Error
Keywords:      Classic

The Netlogon service could not create server share C:\Windows\SYSVOL\sysvol\domain.local\SCRIPTS.  The following error occurred:
The system cannot find the file specified.
0
 
LVL 13

Accepted Solution

by:
Santosh Gupta earned 500 total points
ID: 39917935
if you are unable to see the sysvol share then follow and enable the share.


Set the SysvolReady Flag registry value to "0" and then back to "1" in the registry.

 Click Start, click Run, type regedit, and then click OK.
 Locate the following subkey in Registry Editor:

 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters]

 In the details pane, right-click SysvolReady Flag, and then click Modify.
 In the Value data box, type 0 and then click OK.
 Again in the details pane, right-click SysvolReady Flag, and then click
 Modify.  In the Value data box, type 1, and then click OK.

 Then run NET SHARE and see if the SYSVOL and NETLOGON share is present.
------------------------------------

check if DNS is working fine with NSLOOKUP command.
0

Featured Post

Are your end users making ugly email signatures?

Have you left it up to your end users to create their own email signatures? Are they forgetting to add the company logo or using garish font colors? Take control and ensure all users have the same email signature.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now