DNS not working on Domain controller

The error "The target account name is incorrect"
Indicates the server cannot resolve the dns name of the domain controller.

I would assume in order for your setup to keep functioning there must be an active DNS server ?

If so, simply point this server to that DNS IP and retry the operation.

Try running nslookup as well from that server to be sure you can resolve domain objects by dns name.

becraig, I did this already. But still no luck.

I can ping the DNS server that the DC is set to as well. How can I restore DNS on this machine? Could I just uninstall and reinstall DNS?

Do you have more than one DNS server on your network? I see you have a total of three DC's they all must be running DNS

Have you run dcdiag on the DC's  run and post results

netdiag >>dclogx.txt

dcdiag >>dclogx.txt
dcdiag /test:registerindns /dnsdomain:your domain name FQDN>>dclogx.txt
dcdiag /c /v >>dclogx.txt
dcdiag /test:dns >>dclogx.txt


netdiag does not run on Windows 2008 FYI but works on 2003

Here is a good link on repairing dns.

http://www.bhcblog.com/2009/04/23/fixing-active-directory-dns-_msdcs-_sites-_tcp-_udp/

yes, DNS is running on the other 2 just fine. Will post dcdiag from main FSMO DC and the failing dc

If DNS is working on the other two DCs what server are they pointing to for DNS ?

It should be easy enough to just configure the server you are trying to reintroduce into the domain to point to the same server they are pointing to for DNS then retry the operation.

becraig. followed articles instructions but it did not work...netdiag /fix returned this (could not reregister dns)

------------------------------------

.....................................

    Computer Name: ZBMSERVER
    DNS Host Name: zbmserver.gilescars.com
    System info : Microsoft Windows Server 2003 R2 (Build 3790)
    Processor : x86 Family 6 Model 23 Stepping 6, GenuineIntel
    List of installed hotfixes :
        KB2079403
        KB2115168
        KB2121546
        KB2141007
        KB2158563
        KB2160329
        KB2183461-IE7
        KB2207559
        KB2229593
        KB2259922
        KB2279986
        KB2286198
        KB2296011
        KB2296199
        KB2345886
        KB2347290
        KB2360131-IE7
        KB2360937
        KB2378111
        KB2387149
        KB2393802
        KB2412687
        KB2416400-IE7
        KB2416451
        KB2419635
        KB2423089
        KB2436673
        KB2440591
        KB2443105
        KB2443685
        KB2467659
        KB2476490
        KB2476687
        KB2478953
        KB2478960
        KB2478971
        KB2479628
        KB2481109
        KB2482017-IE7
        KB2483185
        KB2485376
        KB2485663
        KB2497640-IE7
        KB2503658
        KB2503665
        KB2506212
        KB2506223
        KB2507618
        KB2507938
        KB2508272
        KB2508429
        KB2509553
        KB2510581
        KB2511455
        KB2524375
        KB2530548-IE7
        KB2535512
        KB2536276
        KB2536276-v2
        KB2544521-IE7
        KB2544893
        KB2544893-v2
        KB2555917
        KB2559049-IE7
        KB2562485
        KB2562937
        KB2564958
        KB2566454
        KB2567053
        KB2567680
        KB2570222
        KB2570791
        KB2570947
        KB2572069
        KB2584146
        KB2585542
        KB2586448-IE7
        KB2592799
        KB2598479
        KB2601626
        KB2603381
        KB2604078
        KB2607712
        KB2616676
        KB2618444-IE7
        KB2618451
        KB2620712
        KB2621146
        KB2621440
        KB2624667
        KB2631813
        KB2633171
        KB2633952-v2
        KB2638806
        KB2639417
        KB2641653
        KB2641690-v2
        KB2644615
        KB2645640
        KB2646524
        KB2647170
        KB2647516-IE7
        KB2647518
        KB2653956
        KB2655992
        KB2656358
        KB2656376
        KB2656376-v2
        KB2659262
        KB2660465
        KB2661254
        KB2675157-IE7
        KB2676562
        KB2685939
        KB2686509
        KB2691442
        KB2695962
        KB2698032
        KB2698365
        KB2699988-IE7
        KB2705219
        KB2707511
        KB2709162
        KB2712808
        KB2718523
        KB2718704
        KB2719985
        KB2722913-IE7
        KB2724197
        KB2727528
        KB2731847
        KB2736233
        KB2742604
        KB2744842-IE7
        KB2748349
        KB2749655
        KB2753842
        KB2753842-v2
        KB2756822
        KB2758857
        KB2761226
        KB2761465-IE7
        KB2770660
        KB2772930
        KB2778344
        KB2779030
        KB2779562
        KB2780091
        KB2792100-IE7
        KB2797052-IE7
        KB2799329-IE7
        KB2799494
        KB2803821
        KB2803821-v2
        KB2807986
        KB2808735
        KB2809289-IE7
        KB2813170
        KB2813345
        KB2817183-IE7
        KB2820197
        KB2820917
        KB2829361
        KB2829530-IE7
        KB2833949
        KB2834886
        KB2838727-IE7
        KB2839229
        KB2845187
        KB2846071-IE7
        KB2847311
        KB2849470
        KB2850851
        KB2850869
        KB2859537
        KB2862152
        KB2862330
        KB2862335
        KB2862772-IE7
        KB2863058
        KB2864058
        KB2864063
        KB2868626
        KB2870699-IE7
        KB2876217
        KB2876315
        KB2876331
        KB2879017-IE7
        KB2883150
        KB2888505-IE7
        KB2892076
        KB2893294
        KB2893984
        KB2898715
        KB2898785-IE7
        KB2898860
        KB2900986
        KB2901115
        KB2904266
        KB2909212
        KB2909921-IE7
        KB2914368
        KB2916036
        KB2922229
        KB2923392
        KB2925418-IE7
        KB2926765
        KB2929961
        KB2930275
        KB2931352
        KB2936068-IE7
        KB2939576
        KB2953522-IE7
        KB2957503
        KB2957509
        KB2957689-IE7
        KB2961072
        KB2962872-IE7
        KB2964358-IE7
        KB918005-v3
        KB923561
        KB924667-v2
        KB925398_WMP64
        KB925876
        KB925902
        KB927891
        KB929123
        KB930178
        KB932168
        KB933360
        KB933729
        KB933854
        KB935839
        KB935840
        KB936357
        KB936594
        KB936782
        KB938127
        KB938127-IE7
        KB938464
        KB941569
        KB941693
        KB941716
        KB941838
        KB942615
        KB943055
        KB943460
        KB943485
        KB943545
        KB944338
        KB944653
        KB945553
        KB946026
        KB948496
        KB948590
        KB949014
        KB950224-v3
        KB950759
        KB950762
        KB950974
        KB951066
        KB951072
        KB951698
        KB951748
        KB952004
        KB952069
        KB952954
        KB953298
        KB953838-IE7
        KB954155
        KB954211
        KB954550-v5
        KB954600
        KB955069
        KB955759
        KB955839
        KB956390
        KB956390-IE7
        KB956391
        KB956572
        KB956744
        KB956802
        KB956803
        KB956841
        KB956844
        KB957095
        KB957097
        KB958215
        KB958644
        KB958687
        KB958690
        KB958869
        KB959426
        KB960225
        KB960714
        KB960715
        KB960803
        KB960859
        KB961063
        KB961118
        KB961260-IE7
        KB961371
        KB961371-v2
        KB961373
        KB961501
        KB963027-IE7
        KB967715
        KB967723
        KB968389
        KB968537
        KB968816
        KB969059
        KB969805
        KB969897-IE7
        KB969898
        KB969947
        KB970238
        KB970430
        KB970653-v3
        KB971029
        KB971032
        KB971468
        KB971486
        KB971557
        KB971633
        KB971657
        KB971737
        KB971961
        KB972260-IE7
        KB972270
        KB973037
        KB973346
        KB973354
        KB973507
        KB973525
        KB973540
        KB973687
        KB973815
        KB973869
        KB973904
        KB974112
        KB974318
        KB974392
        KB974455-IE7
        KB974571
        KB975025
        KB975467
        KB975558_WM8
        KB975560
        KB975562
        KB975713
        KB976098-v2
        KB976325-IE7
        KB976749-IE7
        KB977165-v2
        KB977290
        KB977816
        KB977914
        KB978037
        KB978207-IE7
        KB978251
        KB978262
        KB978338
        KB978542
        KB978601
        KB978695
        KB978706
        KB979306
        KB979309
        KB979482
        KB979559
        KB979683
        KB979687
        KB979907
        KB980182-IE7
        KB980195
        KB980218
        KB980232
        KB980436
        KB981322
        KB981349
        KB981550
        KB981793
        KB981957
        KB982132
        KB982214
        KB982381-IE7
        KB982802
        Q147222


Netcard queries test . . . . . . . : Passed



Per interface results:

    Adapter : Local Area Connection 2

        Netcard queries test . . . : Passed

        Host Name. . . . . . . . . : zbmserver
        IP Address . . . . . . . . : 192.168.1.2
        Subnet Mask. . . . . . . . : 255.255.255.0
        IP Address . . . . . . . . : 172.16.5.2
        Subnet Mask. . . . . . . . : 255.255.255.0
        Default Gateway. . . . . . : 172.16.5.1
        Dns Servers. . . . . . . . : 172.16.1.109

        IpConfig results . . . . . : Failed

            [WARNING] Your default gateway is not on the same subnet as your IP address.

        AutoConfiguration results. . . . . . : Passed

        Default gateway test . . . : Passed

        NetBT name test. . . . . . : Passed
        [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.

        WINS service test. . . . . : Skipped
            There are no WINS servers configured for this interface.


Global results:


Domain membership test . . . . . . : Passed


NetBT transports test. . . . . . . : Passed
    List of NetBt transports currently configured:
        NetBT_Tcpip_{6E6A620B-4A21-4832-A038-7955CB46F907}
    1 NetBt transport currently configured.


Autonet address test . . . . . . . : Passed


IP loopback ping test. . . . . . . : Passed


Default gateway test . . . . . . . : Passed


NetBT name test. . . . . . . . . . : Passed
    [WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.


Winsock test . . . . . . . . . . . : Passed


DNS test . . . . . . . . . . . . . : Failed
    [FATAL] Failed to fix: DC DNS entry gilescars.com. re-registeration on DNS server '172.16.1.109' failed.
DNS Error code: 0x00002339
    [FATAL] Failed to fix: DC DNS entry DomainDnsZones.gilescars.com. re-registeration on DNS server '172.16.1.109' failed.
DNS Error code: 0x00002339
    [FATAL] Failed to fix: DC DNS entry ForestDnsZones.gilescars.com. re-registeration on DNS server '172.16.1.109' failed.
DNS Error code: 0x00002339
       [FATAL] File \config\netlogon.dns contains invalid DNS entries.    [FATAL] No DNS servers have the DNS records for this DC registered.


Redir and Browser test . . . . . . : Passed
    List of NetBt transports currently bound to the Redir
        NetBT_Tcpip_{6E6A620B-4A21-4832-A038-7955CB46F907}
    The redir is bound to 1 NetBt transport.

    List of NetBt transports currently bound to the browser
        NetBT_Tcpip_{6E6A620B-4A21-4832-A038-7955CB46F907}
    The browser is bound to 1 NetBt transport.


DC discovery test. . . . . . . . . : Passed


DC list test . . . . . . . . . . . : Passed


Trust relationship test. . . . . . : Passed
    Secure channel for domain 'GILES' is to '\\LUtils.gilescars.com'.


Kerberos test. . . . . . . . . . . : Passed


LDAP test. . . . . . . . . . . . . : Passed
    [WARNING] Failed to query SPN registration on DC 'LUtils.gilescars.com'.
    [WARNING] Failed to query SPN registration on DC 'onissan.gilescars.com'.


Bindings test. . . . . . . . . . . : Passed


WAN configuration test . . . . . . : Skipped
    No active remote access connections.


Modem diagnostics test . . . . . . : Passed

IP Security test . . . . . . . . . : Skipped

    Note: run "netsh ipsec dynamic show /?" for more detailed information


The command completed successfully

also, you can ignore the ipconfig/gateway error, that 192 address is on a disabled NIC. The 172 address is the only one used.

becraig, the other 2 are pointing to themselves and 172.16.1.109 (main FSMO holder) but I've already tried that on this DC. Still does not work.

I just made sure the DNS setting was correct and reran dcpromo to remove from active directory but still get "the operation failed because: managing the network session with "server" failed. Logon failure: the target account name is incorrect.

DNS test . . . . . . . . . . . . . : Failed
     [FATAL] Failed to fix: DC DNS entry gilescars.com. re-registeration on DNS server '172.16.1.109' failed.
 DNS Error code: 0x00002339
     [FATAL] Failed to fix: DC DNS entry DomainDnsZones.gilescars.com. re-registeration on DNS server '172.16.1.109' failed.
 DNS Error code: 0x00002339
     [FATAL] Failed to fix: DC DNS entry ForestDnsZones.gilescars.com. re-registeration on DNS server '172.16.1.109' failed.
 DNS Error code: 0x00002339
        [FATAL] File \config\netlogon.dns contains invalid DNS entries.    [FATAL] No DNS servers have the DNS records for this DC registered.


This is the problem

How many network adapters in this server?

ipconfig /all from all and post please

dcdiag results

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests
   
   Testing server: 6902Johnston\ZBMSERVER
      Starting test: Connectivity
         ......................... ZBMSERVER passed test Connectivity

Doing primary tests
   
   Testing server: 6902Johnston\ZBMSERVER
      Starting test: Replications
         REPLICATION-RECEIVED LATENCY WARNING
         ZBMSERVER:  Current time is 2014-07-16 19:12:47.
            DC=ForestDnsZones,DC=gilescars,DC=com
               Last replication recieved from ONISSAN at 2014-04-30 12:58:44.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
            DC=DomainDnsZones,DC=gilescars,DC=com
               Last replication recieved from ONISSAN at 2014-04-30 12:58:44.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
            CN=Schema,CN=Configuration,DC=gilescars,DC=com
               Last replication recieved from LUTILS at 2014-04-30 12:58:51.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Last replication recieved from ONISSAN at 2014-04-30 12:58:44.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
            CN=Configuration,DC=gilescars,DC=com
               Last replication recieved from LUTILS at 2014-04-30 12:59:24.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Last replication recieved from ONISSAN at 2014-04-30 12:58:43.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
            DC=gilescars,DC=com
               Last replication recieved from LUTILS at 2014-04-30 13:06:30.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Last replication recieved from ONISSAN at 2014-04-30 12:58:43.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
         REPLICATION-RECEIVED LATENCY WARNING

          Source site:

         CN=NTDS Site Settings,CN=6902Johnston,CN=Sites,CN=Configuration,DC=gilescars,DC=com

          Current time: 2014-07-16 19:12:47

          Last update time: 2013-01-06 03:27:51

          Check if source site has an elected ISTG running.

          Check replication from source site to this server.
         REPLICATION-RECEIVED LATENCY WARNING

          Source site:

         CN=NTDS Site Settings,CN=OpelousasNissan,CN=Sites,CN=Configuration,DC=gilescars,DC=com

          Current time: 2014-07-16 19:12:47

          Last update time: 2014-04-30 12:33:44

          Check if source site has an elected ISTG running.

          Check replication from source site to this server.
         REPLICATION-RECEIVED LATENCY WARNING

          Source site:

         CN=NTDS Site Settings,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com

          Current time: 2014-07-16 19:12:47

          Last update time: 2014-04-30 12:36:53

          Check if source site has an elected ISTG running.

          Check replication from source site to this server.
         ......................... ZBMSERVER passed test Replications
      Starting test: NCSecDesc
         ......................... ZBMSERVER passed test NCSecDesc
      Starting test: NetLogons
         ......................... ZBMSERVER passed test NetLogons
      Starting test: Advertising
         ......................... ZBMSERVER passed test Advertising
      Starting test: KnowsOfRoleHolders
         [LUTILS] DsBindWithSpnEx() failed with error -2146893022,
         The target principal name is incorrect..
         Warning: LUTILS is the Schema Owner, but is not responding to DS RPC Bind.
         [LUTILS] LDAP bind failed with error 8341,
         A directory service error has occurred..
         Warning: LUTILS is the Schema Owner, but is not responding to LDAP Bind.
         Warning: LUTILS is the Domain Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the Domain Owner, but is not responding to LDAP Bind.
         Warning: LUTILS is the PDC Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the PDC Owner, but is not responding to LDAP Bind.
         Warning: LUTILS is the Rid Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the Rid Owner, but is not responding to LDAP Bind.
         Warning: LUTILS is the Infrastructure Update Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the Infrastructure Update Owner, but is not responding to LDAP Bind.
         ......................... ZBMSERVER failed test KnowsOfRoleHolders
      Starting test: RidManager
         ......................... ZBMSERVER failed test RidManager
      Starting test: MachineAccount
         ......................... ZBMSERVER passed test MachineAccount
      Starting test: Services
         ......................... ZBMSERVER passed test Services
      Starting test: ObjectsReplicated
         ......................... ZBMSERVER passed test ObjectsReplicated
      Starting test: frssysvol
         ......................... ZBMSERVER passed test frssysvol
      Starting test: frsevent
         ......................... ZBMSERVER passed test frsevent
      Starting test: kccevent
         An Error Event occured.  EventID: 0x000001D3
            Time Generated: 07/16/2014   18:58:59
            Event String: NTDS (420) NTDSA: Index INDEX_00020078 of table

         An Warning Event occured.  EventID: 0x8000059B
            Time Generated: 07/16/2014   18:58:59
            Event String: The Knowledge Consistency Checker (KCC)

         An Error Event occured.  EventID: 0xC000046A
            Time Generated: 07/16/2014   18:58:59
            Event String: The Knowledge Consistency Checker (KCC) was

         An Warning Event occured.  EventID: 0x80000785
            Time Generated: 07/16/2014   18:58:59
            Event String: The attempt to establish a replication link for

         An Warning Event occured.  EventID: 0x80000785
            Time Generated: 07/16/2014   18:58:59
            Event String: The attempt to establish a replication link for

         An Warning Event occured.  EventID: 0x80000785
            Time Generated: 07/16/2014   18:58:59
            Event String: The attempt to establish a replication link for

         ......................... ZBMSERVER failed test kccevent
      Starting test: systemlog
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:13:59
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:15:30
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:17:45
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x0000168F
            Time Generated: 07/16/2014   18:17:45
            Event String: The dynamic deletion of the DNS record

         An Error Event occured.  EventID: 0x0000168F
            Time Generated: 07/16/2014   18:17:45
            Event String: The dynamic deletion of the DNS record

         An Error Event occured.  EventID: 0x0000168F
            Time Generated: 07/16/2014   18:17:45
            Event String: The dynamic deletion of the DNS record

         An Error Event occured.  EventID: 0x0000168F
            Time Generated: 07/16/2014   18:17:45
            Event String: The dynamic deletion of the DNS record

         An Error Event occured.  EventID: 0x0000168F
            Time Generated: 07/16/2014   18:17:45
            Event String: The dynamic deletion of the DNS record

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:20:56
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:22:00
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:28:59
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:31:54
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:32:50
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:36:20
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:38:43
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:43:18
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:38
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:38
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:44
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:44
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:44
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:46
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:53:32
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x00000423
            Time Generated: 07/16/2014   19:10:49
            Event String: The DHCP service failed to see a directory server

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:10:49
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:12:18
            Event String: The kerberos client received a

         ......................... ZBMSERVER failed test systemlog
      Starting test: VerifyReferences
         ......................... ZBMSERVER passed test VerifyReferences
   
   Running partition tests on : ForestDnsZones
      Starting test: CrossRefValidation
         ......................... ForestDnsZones passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... ForestDnsZones passed test CheckSDRefDom
   
   Running partition tests on : DomainDnsZones
      Starting test: CrossRefValidation
         ......................... DomainDnsZones passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... DomainDnsZones passed test CheckSDRefDom
   
   Running partition tests on : Schema
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom
   
   Running partition tests on : Configuration
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom
   
   Running partition tests on : gilescars
      Starting test: CrossRefValidation
         ......................... gilescars passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... gilescars passed test CheckSDRefDom
   
   Running enterprise tests on : gilescars.com
      Starting test: Intersite
         ......................... gilescars.com passed test Intersite
      Starting test: FsmoCheck
         ......................... gilescars.com passed test FsmoCheck

Your not communicating with the DC's

ipconfig /all from all please and post

dcdiag test registerindns results
--------------
   Starting test: RegisterInDNS
      DNS configuration is sufficient to allow this domain controller to

      dynamically register the domain controller Locator records in DNS.
     
      The DNS configuration is sufficient to allow this computer to dynamically

      register the A record corresponding to its DNS name.
     
      ......................... zbmserver passed test RegisterInDNS

dcdiag /c /v results
------------------------------------------

Domain Controller Diagnosis

Performing initial setup:
   * Verifying that the local machine zbmserver, is a DC.
   * Connecting to directory service on server zbmserver.
   * Collecting site info.
   * Identifying all servers.
   * Identifying all NC cross-refs.
   * Found 3 DC(s). Testing 1 of them.
   Done gathering initial info.

Doing initial required tests
   
   Testing server: 6902Johnston\ZBMSERVER
      Starting test: Connectivity
         * Active Directory LDAP Services Check
         * Active Directory RPC Services Check
         ......................... ZBMSERVER passed test Connectivity

Doing primary tests
   
   Testing server: 6902Johnston\ZBMSERVER
      Starting test: Replications
         * Replications Check
         * Replication Latency Check
         REPLICATION-RECEIVED LATENCY WARNING
         ZBMSERVER:  Current time is 2014-07-16 19:18:02.
            DC=ForestDnsZones,DC=gilescars,DC=com
               Last replication recieved from ONISSAN at 2014-04-30 12:58:44.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Latency information for 8 entries in the vector were ignored.
                  8 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's no longer replicating this nc.  0 had no latency information (Win2K DC).  
            DC=DomainDnsZones,DC=gilescars,DC=com
               Last replication recieved from ONISSAN at 2014-04-30 12:58:44.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Latency information for 8 entries in the vector were ignored.
                  8 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's no longer replicating this nc.  0 had no latency information (Win2K DC).  
            CN=Schema,CN=Configuration,DC=gilescars,DC=com
               Last replication recieved from LUTILS at 2014-04-30 12:58:51.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Last replication recieved from ONISSAN at 2014-04-30 12:58:44.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Latency information for 13 entries in the vector were ignored.
                  13 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's no longer replicating this nc.  0 had no latency information (Win2K DC).  
            CN=Configuration,DC=gilescars,DC=com
               Last replication recieved from LUTILS at 2014-04-30 12:59:24.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Last replication recieved from ONISSAN at 2014-04-30 12:58:43.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Latency information for 13 entries in the vector were ignored.
                  13 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's no longer replicating this nc.  0 had no latency information (Win2K DC).  
            DC=gilescars,DC=com
               Last replication recieved from LUTILS at 2014-04-30 13:06:30.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Last replication recieved from ONISSAN at 2014-04-30 12:58:43.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Latency information for 13 entries in the vector were ignored.
                  13 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's no longer replicating this nc.  0 had no latency information (Win2K DC).  
         * Replication Site Latency Check
         REPLICATION-RECEIVED LATENCY WARNING

          Source site:

         CN=NTDS Site Settings,CN=6902Johnston,CN=Sites,CN=Configuration,DC=gilescars,DC=com

          Current time: 2014-07-16 19:18:02

          Last update time: 2013-01-06 03:27:51

          Check if source site has an elected ISTG running.

          Check replication from source site to this server.
         REPLICATION-RECEIVED LATENCY WARNING

          Source site:

         CN=NTDS Site Settings,CN=OpelousasNissan,CN=Sites,CN=Configuration,DC=gilescars,DC=com

          Current time: 2014-07-16 19:18:02

          Last update time: 2014-04-30 12:33:44

          Check if source site has an elected ISTG running.

          Check replication from source site to this server.
         REPLICATION-RECEIVED LATENCY WARNING

          Source site:

         CN=NTDS Site Settings,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com

          Current time: 2014-07-16 19:18:02

          Last update time: 2014-04-30 12:36:53

          Check if source site has an elected ISTG running.

          Check replication from source site to this server.
         ......................... ZBMSERVER passed test Replications
      Starting test: Topology
         * Configuration Topology Integrity Check
         * Analyzing the connection topology for DC=ForestDnsZones,DC=gilescars,DC=com.
         * Performing upstream (of target) analysis.
         * Performing downstream (of target) analysis.
         * Analyzing the connection topology for DC=DomainDnsZones,DC=gilescars,DC=com.
         * Performing upstream (of target) analysis.
         * Performing downstream (of target) analysis.
         * Analyzing the connection topology for CN=Schema,CN=Configuration,DC=gilescars,DC=com.
         * Performing upstream (of target) analysis.
         * Performing downstream (of target) analysis.
         * Analyzing the connection topology for CN=Configuration,DC=gilescars,DC=com.
         * Performing upstream (of target) analysis.
         * Performing downstream (of target) analysis.
         * Analyzing the connection topology for DC=gilescars,DC=com.
         * Performing upstream (of target) analysis.
         * Performing downstream (of target) analysis.
         ......................... ZBMSERVER passed test Topology
      Starting test: CutoffServers
         * Configuration Topology Aliveness Check
         * Analyzing the alive system replication topology for DC=ForestDnsZones,DC=gilescars,DC=com.
         * Performing upstream (of target) analysis.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         * Performing downstream (of target) analysis.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         * Analyzing the alive system replication topology for DC=DomainDnsZones,DC=gilescars,DC=com.
         * Performing upstream (of target) analysis.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         * Performing downstream (of target) analysis.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         * Analyzing the alive system replication topology for CN=Schema,CN=Configuration,DC=gilescars,DC=com.
         * Performing upstream (of target) analysis.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         * Performing downstream (of target) analysis.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         * Analyzing the alive system replication topology for CN=Configuration,DC=gilescars,DC=com.
         * Performing upstream (of target) analysis.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         * Performing downstream (of target) analysis.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         * Analyzing the alive system replication topology for DC=gilescars,DC=com.
         * Performing upstream (of target) analysis.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         * Performing downstream (of target) analysis.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         ......................... ZBMSERVER passed test CutoffServers
      Starting test: NCSecDesc
         * Security Permissions check for all NC's on DC ZBMSERVER.
         * Security Permissions Check for
           DC=ForestDnsZones,DC=gilescars,DC=com
            (NDNC,Version 2)
         * Security Permissions Check for
           DC=DomainDnsZones,DC=gilescars,DC=com
            (NDNC,Version 2)
         * Security Permissions Check for
           CN=Schema,CN=Configuration,DC=gilescars,DC=com
            (Schema,Version 2)
         * Security Permissions Check for
           CN=Configuration,DC=gilescars,DC=com
            (Configuration,Version 2)
         * Security Permissions Check for
           DC=gilescars,DC=com
            (Domain,Version 2)
         ......................... ZBMSERVER passed test NCSecDesc
      Starting test: NetLogons
         * Network Logons Privileges Check
         Verified share \\ZBMSERVER\netlogon
         Verified share \\ZBMSERVER\sysvol
         ......................... ZBMSERVER passed test NetLogons
      Starting test: Advertising
         The DC ZBMSERVER is advertising itself as a DC and having a DS.
         The DC ZBMSERVER is advertising as an LDAP server
         The DC ZBMSERVER is advertising as having a writeable directory
         The DC ZBMSERVER is advertising as a Key Distribution Center
         The DC ZBMSERVER is advertising as a time server
         ......................... ZBMSERVER passed test Advertising
      Starting test: KnowsOfRoleHolders
         Role Schema Owner = CN=NTDS Settings,CN=LUTILS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com
         [LUTILS] DsBindWithSpnEx() failed with error -2146893022,
         The target principal name is incorrect..
         Warning: LUTILS is the Schema Owner, but is not responding to DS RPC Bind.
         [LUTILS] LDAP bind failed with error 8341,
         A directory service error has occurred..
         Warning: LUTILS is the Schema Owner, but is not responding to LDAP Bind.
         Role Domain Owner = CN=NTDS Settings,CN=LUTILS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com
         Warning: LUTILS is the Domain Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the Domain Owner, but is not responding to LDAP Bind.
         Role PDC Owner = CN=NTDS Settings,CN=LUTILS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com
         Warning: LUTILS is the PDC Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the PDC Owner, but is not responding to LDAP Bind.
         Role Rid Owner = CN=NTDS Settings,CN=LUTILS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com
         Warning: LUTILS is the Rid Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the Rid Owner, but is not responding to LDAP Bind.
         Role Infrastructure Update Owner = CN=NTDS Settings,CN=LUTILS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com
         Warning: LUTILS is the Infrastructure Update Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the Infrastructure Update Owner, but is not responding to LDAP Bind.
         ......................... ZBMSERVER failed test KnowsOfRoleHolders
      Starting test: RidManager
         * Available RID Pool for the Domain is 11105 to 1073741823
         * LUtils.gilescars.com is the RID Master
         ......................... ZBMSERVER failed test RidManager
      Starting test: MachineAccount
         Checking machine account for DC ZBMSERVER on DC ZBMSERVER.
         * SPN found :LDAP/zbmserver.gilescars.com/gilescars.com
         * SPN found :LDAP/zbmserver.gilescars.com
         * SPN found :LDAP/ZBMSERVER
         * SPN found :LDAP/zbmserver.gilescars.com/GILES
         * SPN found :LDAP/18de8506-c71d-4adf-a637-6e7a78a68e97._msdcs.gilescars.com
         * SPN found :E3514235-4B06-11D1-AB04-00C04FC2DCD2/18de8506-c71d-4adf-a637-6e7a78a68e97/gilescars.com
         * SPN found :HOST/zbmserver.gilescars.com/gilescars.com
         * SPN found :HOST/zbmserver.gilescars.com
         * SPN found :HOST/ZBMSERVER
         * SPN found :HOST/zbmserver.gilescars.com/GILES
         * SPN found :GC/zbmserver.gilescars.com/gilescars.com
         ......................... ZBMSERVER passed test MachineAccount
      Starting test: Services
         * Checking Service: Dnscache
         * Checking Service: NtFrs
         * Checking Service: IsmServ
         * Checking Service: kdc
         * Checking Service: SamSs
         * Checking Service: LanmanServer
         * Checking Service: LanmanWorkstation
         * Checking Service: RpcSs
         * Checking Service: w32time
         * Checking Service: NETLOGON
         ......................... ZBMSERVER passed test Services
      Starting test: OutboundSecureChannels
         * The Outbound Secure Channels test
         ** Did not run Outbound Secure Channels test
         because /testdomain: was not entered
         ......................... ZBMSERVER passed test OutboundSecureChannels
      Starting test: ObjectsReplicated
         ZBMSERVER is in domain DC=gilescars,DC=com
         Checking for CN=ZBMSERVER,OU=Domain Controllers,DC=gilescars,DC=com in domain DC=gilescars,DC=com on 1 servers
            Object is up-to-date on all servers.
         Checking for CN=NTDS Settings,CN=ZBMSERVER,CN=Servers,CN=6902Johnston,CN=Sites,CN=Configuration,DC=gilescars,DC=com in domain CN=Configuration,DC=gilescars,DC=com on 1 servers
            Object is up-to-date on all servers.
         ......................... ZBMSERVER passed test ObjectsReplicated
      Starting test: frssysvol
         * The File Replication Service SYSVOL ready test
         File Replication Service's SYSVOL is ready
         ......................... ZBMSERVER passed test frssysvol
      Starting test: frsevent
         * The File Replication Service Event log test
         ......................... ZBMSERVER passed test frsevent
      Starting test: kccevent
         * The KCC Event log test
         An Error Event occured.  EventID: 0x000001D3
            Time Generated: 07/16/2014   19:13:59
            Event String: NTDS (420) NTDSA: Index INDEX_00020078 of table

datatable is corrupted (0).
         An Warning Event occured.  EventID: 0x8000059B
            Time Generated: 07/16/2014   19:13:59
            Event String: The Knowledge Consistency Checker (KCC)

encountered an unexpected error while performing

an Active Directory operation.

 

Operation type:

KccModifyEntry

Object distinguished name:

CN=NTDS Site Settings,CN=6902Johnston,CN=Sites,CN=Configuration,DC=gilescars,DC=com

 

 

The operation will be retried at the next KCC

interval.

 

Additional Data

Error value:

5

000020EF: SvcErr: DSID-02080490, problem 5012 (DIR_ERROR), data -1414




Internal ID:

f08051c
         An Error Event occured.  EventID: 0xC000046A
            Time Generated: 07/16/2014   19:13:59
            Event String: The Knowledge Consistency Checker (KCC) was

unable to complete the topology for the following

site.

 

Site:

CN=6902Johnston,CN=Sites,CN=Configuration,DC=gilescars,DC=com

 

 

An attempt to complete the topology for this site

will be tried again at the next scheduled KCC

interval (the current default is 15 minutes).  

 

Additional Data

Error value:

8409 A database error has occurred.

Internal ID:

f08051d
         An Warning Event occured.  EventID: 0x80000785
            Time Generated: 07/16/2014   19:13:59
            Event String: The attempt to establish a replication link for

the following writable directory partition

failed.

 

Directory partition:

CN=Configuration,DC=gilescars,DC=com

Source domain controller:

CN=NTDS Settings,CN=LUTILS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com

 

Source domain controller address:

524aac70-d6c8-4fda-9ef9-264f74e87317._msdcs.gilescars.com

 

Intersite transport (if any):

CN=IP,CN=Inter-Site Transports,CN=Sites,CN=Configuration,DC=gilescars,DC=com

 

 

This domain controller will be unable to

replicate with the source domain controller until

this problem is corrected.  

 

User Action

Verify if the source domain controller is

accessible or network connectivity is available.

 

Additional Data

Error value:

2148074274

The target principal name is incorrect.
         An Warning Event occured.  EventID: 0x80000785
            Time Generated: 07/16/2014   19:13:59
            Event String: The attempt to establish a replication link for

the following writable directory partition

failed.

 

Directory partition:

CN=Schema,CN=Configuration,DC=gilescars,DC=com

Source domain controller:

CN=NTDS Settings,CN=LUTILS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com

 

Source domain controller address:

524aac70-d6c8-4fda-9ef9-264f74e87317._msdcs.gilescars.com

 

Intersite transport (if any):

CN=IP,CN=Inter-Site Transports,CN=Sites,CN=Configuration,DC=gilescars,DC=com

 

 

This domain controller will be unable to

replicate with the source domain controller until

this problem is corrected.  

 

User Action

Verify if the source domain controller is

accessible or network connectivity is available.

 

Additional Data

Error value:

2148074274

The target principal name is incorrect.
         An Warning Event occured.  EventID: 0x80000785
            Time Generated: 07/16/2014   19:13:59
            Event String: The attempt to establish a replication link for

the following writable directory partition

failed.

 

Directory partition:

DC=gilescars,DC=com

Source domain controller:

CN=NTDS Settings,CN=LUTILS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com

 

Source domain controller address:

524aac70-d6c8-4fda-9ef9-264f74e87317._msdcs.gilescars.com

 

Intersite transport (if any):

CN=IP,CN=Inter-Site Transports,CN=Sites,CN=Configuration,DC=gilescars,DC=com

 

 

This domain controller will be unable to

replicate with the source domain controller until

this problem is corrected.  

 

User Action

Verify if the source domain controller is

accessible or network connectivity is available.

 

Additional Data

Error value:

2148074274

The target principal name is incorrect.
         ......................... ZBMSERVER failed test kccevent
      Starting test: systemlog
         * The System Event log test
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:20:56
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

host/zbmserver.gilescars.com.  The target name

used was ldap/ZBMSERVER. This indicates that the

password used to encrypt the kerberos service

ticket is different than that on the target

server. Commonly, this is due to identically

named  machine accounts in the target realm

(GILESCARS.COM), and the client realm.   Please

contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:22:00
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

host/zbmserver.gilescars.com.  The target name

used was LDAP/zbmserver.gilescars.com/GILES. This

indicates that the password used to encrypt the

kerberos service ticket is different than that on

the target server. Commonly, this is due to

identically named  machine accounts in the target

realm (GILESCARS.COM), and the client realm.

Please contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:28:59
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lutils$.  The target name used was

LDAP/524aac70-d6c8-4fda-9ef9-264f74e87317._msdcs.gilescars.com.

 This indicates that the password used to encrypt

the kerberos service ticket is different than

that on the target server. Commonly, this is due

to identically named  machine accounts in the

target realm (GILESCARS.COM), and the client

realm.   Please contact your system

administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:31:54
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

host/zbmserver.gilescars.com.  The target name

used was cifs/zbmserver.gilescars.com. This

indicates that the password used to encrypt the

kerberos service ticket is different than that on

the target server. Commonly, this is due to

identically named  machine accounts in the target

realm (GILESCARS.COM), and the client realm.

Please contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:32:50
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

host/zbmserver.gilescars.com.  The target name

used was LDAP/ZBMSERVER. This indicates that the

password used to encrypt the kerberos service

ticket is different than that on the target

server. Commonly, this is due to identically

named  machine accounts in the target realm

(GILESCARS.COM), and the client realm.   Please

contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:36:20
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

host/zbmserver.gilescars.com.  The target name

used was

LDAP/18DE8506-C71D-4ADF-A637-6E7A78A68E97._msdcs.gilescars.com.

 This indicates that the password used to encrypt

the kerberos service ticket is different than

that on the target server. Commonly, this is due

to identically named  machine accounts in the

target realm (GILESCARS.COM), and the client

realm.   Please contact your system

administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:38:43
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

host/zbmserver.gilescars.com.  The target name

used was cifs/ZBMSERVER. This indicates that the

password used to encrypt the kerberos service

ticket is different than that on the target

server. Commonly, this is due to identically

named  machine accounts in the target realm

(GILESCARS.COM), and the client realm.   Please

contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:43:18
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lutils$.  The target name used was

ldap/lutils.gilescars.com. This indicates that

the password used to encrypt the kerberos service

ticket is different than that on the target

server. Commonly, this is due to identically

named  machine accounts in the target realm

(GILESCARS.COM), and the client realm.   Please

contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:38
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lutils$.  The target name used was

cifs/LUtils.gilescars.com. This indicates that

the password used to encrypt the kerberos service

ticket is different than that on the target

server. Commonly, this is due to identically

named  machine accounts in the target realm

(GILESCARS.COM), and the client realm.   Please

contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:38
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lnissan$.  The target name used was

cifs/lnissan.gilescars.com. This indicates that

the password used to encrypt the kerberos service

ticket is different than that on the target

server. Commonly, this is due to identically

named  machine accounts in the target realm

(GILESCARS.COM), and the client realm.   Please

contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:44
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lnexchange$.  The target name used was

cifs/WIN-P19OT9GARQJ.gilescars.com. This

indicates that the password used to encrypt the

kerberos service ticket is different than that on

the target server. Commonly, this is due to

identically named  machine accounts in the target

realm (GILESCARS.COM), and the client realm.

Please contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:44
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lnexchange$.  The target name used was

cifs/RONServer1.gilescars.com. This indicates

that the password used to encrypt the kerberos

service ticket is different than that on the

target server. Commonly, this is due to

identically named  machine accounts in the target

realm (GILESCARS.COM), and the client realm.

Please contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:44
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lnexchange$.  The target name used was

cifs/jrasbackup.gilescars.com. This indicates

that the password used to encrypt the kerberos

service ticket is different than that on the

target server. Commonly, this is due to

identically named  machine accounts in the target

realm (GILESCARS.COM), and the client realm.

Please contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:51:46
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lutils$.  The target name used was

ldap/LUtils.gilescars.com. This indicates that

the password used to encrypt the kerberos service

ticket is different than that on the target

server. Commonly, this is due to identically

named  machine accounts in the target realm

(GILESCARS.COM), and the client realm.   Please

contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   18:53:32
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lutils$.  The target name used was

ldap/524aac70-d6c8-4fda-9ef9-264f74e87317._msdcs.gilescars.com.

 This indicates that the password used to encrypt

the kerberos service ticket is different than

that on the target server. Commonly, this is due

to identically named  machine accounts in the

target realm (GILESCARS.COM), and the client

realm.   Please contact your system

administrator.
         An Error Event occured.  EventID: 0x00000423
            Time Generated: 07/16/2014   19:10:49
            Event String: The DHCP service failed to see a directory server

for authorization.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:10:49
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

host/zbmserver.gilescars.com.  The target name

used was ldap/zbmserver.gilescars.com. This

indicates that the password used to encrypt the

kerberos service ticket is different than that on

the target server. Commonly, this is due to

identically named  machine accounts in the target

realm (GILESCARS.COM), and the client realm.

Please contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:12:18
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

host/zbmserver.gilescars.com.  The target name

used was

LDAP/zbmserver.gilescars.com/gilescars.com. This

indicates that the password used to encrypt the

kerberos service ticket is different than that on

the target server. Commonly, this is due to

identically named  machine accounts in the target

realm (GILESCARS.COM), and the client realm.

Please contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:13:08
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lutils$.  The target name used was

cifs/LUTILS.gilescars.com. This indicates that

the password used to encrypt the kerberos service

ticket is different than that on the target

server. Commonly, this is due to identically

named  machine accounts in the target realm

(GILESCARS.COM), and the client realm.   Please

contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:13:59
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

lutils$.  The target name used was . This

indicates that the password used to encrypt the

kerberos service ticket is different than that on

the target server. Commonly, this is due to

identically named  machine accounts in the target

realm (GILESCARS.COM), and the client realm.

Please contact your system administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:15:48
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

host/zbmserver.gilescars.com.  The target name

used was

LDAP/zbmserver.gilescars.com/gilescars.com@GILESCARS.COM.

 This indicates that the password used to encrypt

the kerberos service ticket is different than

that on the target server. Commonly, this is due

to identically named  machine accounts in the

target realm (GILESCARS.COM), and the client

realm.   Please contact your system

administrator.
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:18:02
            Event String: The kerberos client received a

KRB_AP_ERR_MODIFIED error from the server

host/zbmserver.gilescars.com.  The target name

used was

LDAP/18de8506-c71d-4adf-a637-6e7a78a68e97._msdcs.gilescars.com.

 This indicates that the password used to encrypt

the kerberos service ticket is different than

that on the target server. Commonly, this is due

to identically named  machine accounts in the

target realm (GILESCARS.COM), and the client

realm.   Please contact your system

administrator.
         ......................... ZBMSERVER failed test systemlog
      Starting test: VerifyReplicas
         ......................... ZBMSERVER passed test VerifyReplicas
      Starting test: VerifyReferences
         The system object reference (serverReference)

         CN=ZBMSERVER,OU=Domain Controllers,DC=gilescars,DC=com and backlink on

         CN=ZBMSERVER,CN=Servers,CN=6902Johnston,CN=Sites,CN=Configuration,DC=gilescars,DC=com

          are correct.
         The system object reference (frsComputerReferenceBL)

         CN=ZBMSERVER,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

         and backlink on CN=ZBMSERVER,OU=Domain Controllers,DC=gilescars,DC=com

         are correct.
         The system object reference (serverReferenceBL)

         CN=ZBMSERVER,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

         and backlink on

         CN=NTDS Settings,CN=ZBMSERVER,CN=Servers,CN=6902Johnston,CN=Sites,CN=Configuration,DC=gilescars,DC=com

         are correct.
         ......................... ZBMSERVER passed test VerifyReferences
      Starting test: VerifyEnterpriseReferences
         The following problems were found while verifying various important DN

         references.  Note, that  these problems can be reported because of

         latency in replication.  So follow up to resolve the following

         problems, only if the same problem is reported on all DCs for a given

         domain or if  the problem persists after replication has had

         reasonable time to replicate changes.
            [1] Problem: Missing Expected Value

             Base Object: CN=LNISSAN,OU=Domain Controllers,DC=gilescars,DC=com

             Base Object Description: "DC Account Object"

             Value Object Attribute Name: serverReferenceBL

             Value Object Description: "Server Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs Account Object.

             
            [2] Problem: Missing Expected Value

             Base Object:

            CN=WIN-P19OT9GARQJ,OU=Domain Controllers,DC=gilescars,DC=com

             Base Object Description: "DC Account Object"

             Value Object Attribute Name: serverReferenceBL

             Value Object Description: "Server Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs Account Object.

             
            [3] Problem: Missing Expected Value

             Base Object:

            CN=RONSERVER1,OU=Domain Controllers,DC=gilescars,DC=com

             Base Object Description: "DC Account Object"

             Value Object Attribute Name: serverReferenceBL

             Value Object Description: "Server Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs Account Object.

             
            [4] Problem: Missing Expected Value

             Base Object:

            CN=JRASBACKUP,OU=Domain Controllers,DC=gilescars,DC=com

             Base Object Description: "DC Account Object"

             Value Object Attribute Name: serverReferenceBL

             Value Object Description: "Server Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs Account Object.

             
            [5] Problem: Missing Expected Value

             Base Object:

            CN=ALEXSVR1,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: frsComputerReference

             Value Object Description: "DC Account Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article:  Q312862

             
            [6] Problem: Missing Expected Value

             Base Object:

            CN=ALEXSVR1,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
            [7] Problem: Missing Expected Value

             Base Object:

            CN=JRASBACKUP,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
            [8] Problem: Missing Expected Value

             Base Object:

            CN=LNISSAN,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
            [9] Problem: Missing Expected Value

             Base Object:

            CN=LVOLVO,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: frsComputerReference

             Value Object Description: "DC Account Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article:  Q312862

             
            [10] Problem: Missing Expected Value

             Base Object:

            CN=LVOLVO,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
            [11] Problem: Missing Expected Value

             Base Object:

            CN=RONSERVER1,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
            [12] Problem: Missing Expected Value

             Base Object:

            CN=WIN-P19OT9GARQJ,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
         ......................... ZBMSERVER failed test VerifyEnterpriseReferences
      Starting test: CheckSecurityError
         * Dr Auth:  Beginning security errors check!
         Found KDC ZBMSERVER for domain gilescars.com in site 6902Johnston
         Checking machine account for DC ZBMSERVER on DC ZBMSERVER.
         * SPN found :LDAP/zbmserver.gilescars.com/gilescars.com
         * SPN found :LDAP/zbmserver.gilescars.com
         * SPN found :LDAP/ZBMSERVER
         * SPN found :LDAP/zbmserver.gilescars.com/GILES
         * SPN found :LDAP/18de8506-c71d-4adf-a637-6e7a78a68e97._msdcs.gilescars.com
         * SPN found :E3514235-4B06-11D1-AB04-00C04FC2DCD2/18de8506-c71d-4adf-a637-6e7a78a68e97/gilescars.com
         * SPN found :HOST/zbmserver.gilescars.com/gilescars.com
         * SPN found :HOST/zbmserver.gilescars.com
         * SPN found :HOST/ZBMSERVER
         * SPN found :HOST/zbmserver.gilescars.com/GILES
         * SPN found :GC/zbmserver.gilescars.com/gilescars.com
         [ZBMSERVER] No security related replication errors were found on this DC!  To target the connection to a specific source DC use /ReplSource:<DC>.
         ......................... ZBMSERVER passed test CheckSecurityError

DNS Tests are running and not hung. Please wait a few minutes...
   
   Running partition tests on : ForestDnsZones
      Starting test: CrossRefValidation
         ......................... ForestDnsZones passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... ForestDnsZones passed test CheckSDRefDom
   
   Running partition tests on : DomainDnsZones
      Starting test: CrossRefValidation
         ......................... DomainDnsZones passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... DomainDnsZones passed test CheckSDRefDom
   
   Running partition tests on : Schema
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom
   
   Running partition tests on : Configuration
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom
   
   Running partition tests on : gilescars
      Starting test: CrossRefValidation
         ......................... gilescars passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... gilescars passed test CheckSDRefDom
   
   Running enterprise tests on : gilescars.com
      Starting test: Intersite
         Skipping site 6902Johnston, this site is outside the scope provided by

         the command line arguments provided.
         Skipping site OpelousasNissan, this site is outside the scope provided

         by the command line arguments provided.
         Skipping site Default-First-Site-Name, this site is outside the scope

         provided by the command line arguments provided.
         ......................... gilescars.com passed test Intersite
      Starting test: FsmoCheck
         Warning: Couldn't verify this server as a GC in this servers AD.
         GC Name: \\LUtils.gilescars.com
         Locator Flags: 0xe00033fd
         PDC Name: \\LUtils.gilescars.com
         Locator Flags: 0xe000337d
         Time Server Name: \\zbmserver.gilescars.com
         Locator Flags: 0xe00001f8
         Preferred Time Server Name: \\LUtils.gilescars.com
         Locator Flags: 0xe000337d
         KDC Name: \\zbmserver.gilescars.com
         Locator Flags: 0xe00001f8
         ......................... gilescars.com passed test FsmoCheck
      Starting test: DNS
         Test results for domain controllers:
           
            DC: zbmserver.gilescars.com
            Domain: gilescars.com

                 
               TEST: Authentication (Auth)
                  Authentication test: Successfully completed
                 
               TEST: Basic (Basc)
                  Error: No WMI connectivity
                  [Error details: 0x80041014 (Type: HRESULT - Facility: WMI, Description: Initialization failure) - Connection to WMI server failed]
         
         Summary of DNS test results:
         
                                            Auth Basc Forw Del  Dyn  RReg Ext  
               ________________________________________________________________
            Domain: gilescars.com
               zbmserver                    PASS FAIL n/a  n/a  n/a  n/a  n/a  
         
         ......................... gilescars.com failed test DNS

That looks good which server is that from?

dcdiag /test:dns results
-----------------------------------------

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests
   
   Testing server: 6902Johnston\ZBMSERVER
      Starting test: Connectivity
         ......................... ZBMSERVER passed test Connectivity

Doing primary tests
   
   Testing server: 6902Johnston\ZBMSERVER

DNS Tests are running and not hung. Please wait a few minutes...
   
   Running partition tests on : ForestDnsZones
   
   Running partition tests on : DomainDnsZones
   
   Running partition tests on : Schema
   
   Running partition tests on : Configuration
   
   Running partition tests on : gilescars
   
   Running enterprise tests on : gilescars.com
      Starting test: DNS
         Test results for domain controllers:
           
            DC: zbmserver.gilescars.com
            Domain: gilescars.com

                 
               TEST: Basic (Basc)
                  Error: No WMI connectivity
         
         Summary of DNS test results:
         
                                            Auth Basc Forw Del  Dyn  RReg Ext  
               ________________________________________________________________
            Domain: gilescars.com
               zbmserver                    PASS FAIL n/a  n/a  n/a  n/a  n/a  
         
         ......................... gilescars.com failed test DNS

this is all from the failing DNS server

failing DNS server name is ZBMserver

Ok still need to see ipconfig /all from all involved

zbmserver ipconfig /all
---
Windows IP Configuration

   Host Name . . . . . . . . . . . . : zbmserver
   Primary Dns Suffix  . . . . . . . : gilescars.com
   Node Type . . . . . . . . . . . . : Unknown
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gilescars.com

Ethernet adapter Local Area Connection 2:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet #2
   Physical Address. . . . . . . . . : 00-1E-C9-E2-9C-10
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 172.16.5.2
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 172.16.5.1
   DNS Servers . . . . . . . . . . . : 172.16.1.109

from LUtils (FSMO holder)
-----
Windows IP Configuration

   Host Name . . . . . . . . . . . . : LUtils
   Primary Dns Suffix  . . . . . . . : gilescars.com
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gilescars.com

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection
   Physical Address. . . . . . . . . : 00-0C-29-45-DA-D4
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::705e:593c:d054:d45b%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 172.16.1.109(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 172.16.1.1
   DHCPv6 IAID . . . . . . . . . . . : 234884137
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-A2-3C-DF-00-0C-29-45-DA-D4

   DNS Servers . . . . . . . . . . . : 172.16.1.109
                                       172.16.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{887892B8-824C-412D-877A-9758234BDF58}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

in zbmserver

  IP Address. . . . . . . . . . . . : 172.16.5.2
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 172.16.5.1
    DNS Servers . . . . . . . . . . . : 172.16.1.109
                                                    172.16.5.2

Add itself to the DNS server list

can you access the DNS management console on zbmserver

I would, but the DNS server on it does not even have a zone. That is what is broken. So I was told to put it to the .109 server that works until it repopulates. I had it that way and it was giving same error.

Can you paste the output from nslookup from zbmserver


nslookup zbmserver

If you can access DNS Manager

Right click on the DNS Server ZMBserver

configure a DNS Server

then create your zone

here is nslookup from zbmserver
----------------------------
Default Server:  lutils.gilescars.com
Address:  172.16.1.109

I try to create a secondary zone giving the main DC DNS ip address. It creates the zone but just shows gilescars.com in the foward zones but does not load the zone, just a red x with erro that it encountered a problem loading the zone.

even log error for above is this
---------------------------------
Event ID 6525:

A zone transfer request for the secondary zone gilescars.com was refused by the master DNS server at 172.16.1.109. Check the zone at the master server 172.16.1.109 to verify that zone transfer is enabled to this server.  To do so, use the DNS console, and select master server 172.16.1.109 as the applicable server, then in secondary zone gilescars.com Properties, view the settings on the Zone Transfers tab.  Based on the settings you choose, make any configuration adjustments there (or possibly in the Name Servers tab) so that a zone transfer can be made to this server.

Modify your .109 server to allow zone transfers and add the new server to the approved list.
http://technet.microsoft.com/en-us/library/cc771652.aspx

Then configure that server as it's own dns server and try to complete the action.


Good reading on the error and cause:
http://technet.microsoft.com/en-us/library/cc735720%28v=ws.10%29.aspx

you mean configure as primary zone and not secondary zone???

I did it as a secondary server and it added the zone successfully. Is this how it should be?

good

can you ping by FQDN now

yes, but clients still having issues connecting to the shares on this server (this is what started the troubleshooting a few hours ago)

They get an error connecting...
Login Failure: The target account name is incorrect. If I do a nslookup zbmserver (with dns set to zbmserver) i get this
-----------

*** Can't find server name for address 172.16.5.2: Non-existent domain
*** Default servers are not available
Server:  UnKnown
Address:  172.16.5.2

Name:    zbmserver.gilescars.com
Address:  172.16.5.2

Is the server zbmserver in dns as an "A" record?

Ok so three steps I would perform

1 delete the computer account for zmbxxxx from AD
2 remove and rejoin the server to the domain
3 run ipconfig /registerdns and then verify in the dns server the new record is created

this is current IP config for zbmserver
Windows IP Configuration

   Host Name . . . . . . . . . . . . : zbmserver
   Primary Dns Suffix  . . . . . . . : gilescars.com
   Node Type . . . . . . . . . . . . : Unknown
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gilescars.com

Ethernet adapter Local Area Connection 2:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet #2
   Physical Address. . . . . . . . . : 00-1E-C9-E2-9C-10
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 172.16.5.2
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 172.16.5.1
   DNS Servers . . . . . . . . . . . : 172.16.5.2
                                       172.16.1.109

and this is current dcdiag /c /q results
-----------
         REPLICATION-RECEIVED LATENCY WARNING
         ZBMSERVER:  Current time is 2014-07-16 20:30:47.
            DC=ForestDnsZones,DC=gilescars,DC=com
               Last replication recieved from ONISSAN at 2014-04-30 12:58:44.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
            DC=DomainDnsZones,DC=gilescars,DC=com
               Last replication recieved from ONISSAN at 2014-04-30 12:58:44.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
            CN=Schema,CN=Configuration,DC=gilescars,DC=com
               Last replication recieved from LUTILS at 2014-04-30 12:58:51.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Last replication recieved from ONISSAN at 2014-04-30 12:58:44.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
            CN=Configuration,DC=gilescars,DC=com
               Last replication recieved from LUTILS at 2014-04-30 12:59:24.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Last replication recieved from ONISSAN at 2014-04-30 12:58:43.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
            DC=gilescars,DC=com
               Last replication recieved from LUTILS at 2014-04-30 13:06:30.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
               Last replication recieved from ONISSAN at 2014-04-30 12:58:43.
               WARNING:  This latency is over the Tombstone Lifetime of 60 days!
         REPLICATION-RECEIVED LATENCY WARNING

          Source site:

         CN=NTDS Site Settings,CN=6902Johnston,CN=Sites,CN=Configuration,DC=gilescars,DC=com

          Current time: 2014-07-16 20:30:47

          Last update time: 2013-01-06 03:27:51

          Check if source site has an elected ISTG running.

          Check replication from source site to this server.
         REPLICATION-RECEIVED LATENCY WARNING

          Source site:

         CN=NTDS Site Settings,CN=OpelousasNissan,CN=Sites,CN=Configuration,DC=gilescars,DC=com

          Current time: 2014-07-16 20:30:47

          Last update time: 2014-04-30 12:33:44

          Check if source site has an elected ISTG running.

          Check replication from source site to this server.
         REPLICATION-RECEIVED LATENCY WARNING

          Source site:

         CN=NTDS Site Settings,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gilescars,DC=com

          Current time: 2014-07-16 20:30:47

          Last update time: 2014-04-30 12:36:53

          Check if source site has an elected ISTG running.

          Check replication from source site to this server.
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         DsReplicaSyncAllW failed with error The naming context specified for this replication operation is invalid..
         [LUTILS] DsBindWithSpnEx() failed with error -2146893022,
         The target principal name is incorrect..
         Warning: LUTILS is the Schema Owner, but is not responding to DS RPC Bind.
         [LUTILS] LDAP bind failed with error 8341,
         A directory service error has occurred..
         Warning: LUTILS is the Schema Owner, but is not responding to LDAP Bind.
         Warning: LUTILS is the Domain Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the Domain Owner, but is not responding to LDAP Bind.
         Warning: LUTILS is the PDC Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the PDC Owner, but is not responding to LDAP Bind.
         Warning: LUTILS is the Rid Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the Rid Owner, but is not responding to LDAP Bind.
         Warning: LUTILS is the Infrastructure Update Owner, but is not responding to DS RPC Bind.
         Warning: LUTILS is the Infrastructure Update Owner, but is not responding to LDAP Bind.
         ......................... ZBMSERVER failed test KnowsOfRoleHolders
         ......................... ZBMSERVER failed test RidManager
         ** Did not run Outbound Secure Channels test
         because /testdomain: was not entered
         An Error Event occured.  EventID: 0x000001D3
            Time Generated: 07/16/2014   20:28:59
            Event String: NTDS (420) NTDSA: Index INDEX_00020078 of table

         An Warning Event occured.  EventID: 0x8000059B
            Time Generated: 07/16/2014   20:28:59
            Event String: The Knowledge Consistency Checker (KCC)

         An Error Event occured.  EventID: 0xC000046A
            Time Generated: 07/16/2014   20:28:59
            Event String: The Knowledge Consistency Checker (KCC) was

         An Warning Event occured.  EventID: 0x80000785
            Time Generated: 07/16/2014   20:28:59
            Event String: The attempt to establish a replication link for

         An Warning Event occured.  EventID: 0x80000785
            Time Generated: 07/16/2014   20:28:59
            Event String: The attempt to establish a replication link for

         An Warning Event occured.  EventID: 0x80000785
            Time Generated: 07/16/2014   20:28:59
            Event String: The attempt to establish a replication link for

         ......................... ZBMSERVER failed test kccevent
         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:32:54
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:46:54
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:48:43
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:56:12
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:56:49
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:56:50
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:56:56
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:56:56
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:56:56
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   19:56:57
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x0000165B
            Time Generated: 07/16/2014   20:00:28
            Event String: The session setup from computer 'ALS-RM-MGR'

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:01:52
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x000016AD
            Time Generated: 07/16/2014   20:02:47
            Event String: The session setup from the computer ALS-RM-MGR

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:03:57
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:04:32
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:05:08
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:05:43
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   20:06:32
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:07:05
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x0000168E
            Time Generated: 07/16/2014   20:07:05
            Event String: The dynamic registration of the DNS record

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   20:10:49
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x00000423
            Time Generated: 07/16/2014   20:10:49
            Event String: The DHCP service failed to see a directory server

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   20:10:54
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   20:13:59
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   20:15:58
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   20:16:07
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   20:23:12
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   20:28:59
            Event String: The kerberos client received a

         An Error Event occured.  EventID: 0x40000004
            Time Generated: 07/16/2014   20:30:32
            Event String: The kerberos client received a

         ......................... ZBMSERVER failed test systemlog
         The following problems were found while verifying various important DN

         references.  Note, that  these problems can be reported because of

         latency in replication.  So follow up to resolve the following

         problems, only if the same problem is reported on all DCs for a given

         domain or if  the problem persists after replication has had

         reasonable time to replicate changes.
            [1] Problem: Missing Expected Value

             Base Object: CN=LNISSAN,OU=Domain Controllers,DC=gilescars,DC=com

             Base Object Description: "DC Account Object"

             Value Object Attribute Name: serverReferenceBL

             Value Object Description: "Server Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs Account Object.

             
            [2] Problem: Missing Expected Value

             Base Object:

            CN=WIN-P19OT9GARQJ,OU=Domain Controllers,DC=gilescars,DC=com

             Base Object Description: "DC Account Object"

             Value Object Attribute Name: serverReferenceBL

             Value Object Description: "Server Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs Account Object.

             
            [3] Problem: Missing Expected Value

             Base Object:

            CN=RONSERVER1,OU=Domain Controllers,DC=gilescars,DC=com

             Base Object Description: "DC Account Object"

             Value Object Attribute Name: serverReferenceBL

             Value Object Description: "Server Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs Account Object.

             
            [4] Problem: Missing Expected Value

             Base Object:

            CN=JRASBACKUP,OU=Domain Controllers,DC=gilescars,DC=com

             Base Object Description: "DC Account Object"

             Value Object Attribute Name: serverReferenceBL

             Value Object Description: "Server Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs Account Object.

             
            [5] Problem: Missing Expected Value

             Base Object:

            CN=ALEXSVR1,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: frsComputerReference

             Value Object Description: "DC Account Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article:  Q312862

             
            [6] Problem: Missing Expected Value

             Base Object:

            CN=ALEXSVR1,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
            [7] Problem: Missing Expected Value

             Base Object:

            CN=JRASBACKUP,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
            [8] Problem: Missing Expected Value

             Base Object:

            CN=LNISSAN,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
            [9] Problem: Missing Expected Value

             Base Object:

            CN=LVOLVO,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: frsComputerReference

             Value Object Description: "DC Account Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article:  Q312862

             
            [10] Problem: Missing Expected Value

             Base Object:

            CN=LVOLVO,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
            [11] Problem: Missing Expected Value

             Base Object:

            CN=RONSERVER1,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
            [12] Problem: Missing Expected Value

             Base Object:

            CN=WIN-P19OT9GARQJ,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=gilescars,DC=com

             Base Object Description: "SYSVOL FRS Member Object"

             Value Object Attribute Name: serverReference

             Value Object Description: "DSA Object"

             Recommended Action: Check if this server is deleted, and if so

            clean up this DCs SYSVOL FRS Member Object.  Also see Knowledge

            Base Article  Q312862

             
         ......................... ZBMSERVER failed test VerifyEnterpriseReferences
         [ZBMSERVER] No security related replication errors were found on this DC!  To target the connection to a specific source DC use /ReplSource:<DC>.

DNS Tests are running and not hung. Please wait a few minutes...
         Test results for domain controllers:
           
            DC: zbmserver.gilescars.com
            Domain: gilescars.com

                 
               TEST: Basic (Basc)
                  Error: No WMI connectivity
         
         Summary of DNS test results:
         
                                            Auth Basc Forw Del  Dyn  RReg Ext  
               ________________________________________________________________
            Domain: gilescars.com
               zbmserver                    PASS FAIL n/a  n/a  n/a  n/a  n/a  
         
         ......................... gilescars.com failed test DNS

trgrassijr55: yes it has an A record for Zbmserver as well as NS record (with name (same as parent folder)

becraig: I can't rejoin without demoting the server and it will not let me demote...give same error as the clients when they try to connect to the share.

just a note: I can connect to the shared drive from the workstations if I put the IP instead of the computer name.

Does the server  show in the ad as an dc

Yes that's because DNS is not working

it is listed as _gc, _kerberos & _ldap in various places.

still very strange. If I set a DNS to 172.16.1.109 (main dns) it does the same thing. However all other machines outside this site are set to .109 and they work just fine. It is only the workstations in this subnet/site. They can't connect to any shares on any domain controller. So weird.

Can you change the default gateway to  Default Gateway . . . . . . . . . : 172.16.1.1 and try again

becraig...i can't do that because I'm not in that site/subnet. It has to be 5.1 or it won't jump over the VPN to the .1 nework.

However, I think I have fixed the main issue.
- I deleted the secondary zone from DNS
- I reset the machine password on the DC/ZBMserver
- I disabled Kerberos key dist. service, restarted the DC then followed this
http://support.microsoft.com/kb/325850/en-us
- then enabled the service back and bam! the AD integrated zone was back!
workstations can now connect to shares. Just going over all the sync issues now.

Ok I did not have a clear pic of the network pick.

I am happy resetting the domain acct for the server worked.
 - I reset the machine password on the DC/ZBMserver

Had you highlighted the initial issue you were facing it would have pushed us down the right path, see my earlier comment:
https://www.experts-exchange.com/questions/28477639/DNS-not-working-on-Domain-controller.html?anchorAnswerId=40201018#a40201018

This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.