Solved

Issue promoting server to a Domain Controller 2012 Stardard R2

Posted on 2014-10-01
8
326 Views
Last Modified: 2014-10-07
Hello,

We have an existing domain that has a Windows Server 2012 Standard DC/DNS server.  We are adding another server that is Windows 2012 Standard R2 as another DC and DNS server.  We brought the server online, added to the domain and added the ADDS role.

When promoting the server to a DC, the configuration hangs at the following step:

"Creating the NTDS Settins object for this Active Directory Domain COntroller on the remote AD DC fhSQL1.FHSaaS1.local"

In the event viewer Directory services log this is there:

The Active Directory Domain Services Installation Wizard (Dcpromo) was unable to establish connection with the following domain controller.
 
Domain controller:
fhsql1.FHSaaS1.local
 
Additional Data
Error value:
8524 The DSA operation is unable to proceed because of a DNS lookup failure.


Here is the script from the wizard:
#
# Windows PowerShell script for AD DS Deployment
#

Import-Module ADDSDeployment
Install-ADDSDomainController `
-NoGlobalCatalog:$false `
-Credential (Get-Credential) `
-CriticalReplicationOnly:$false `
-DatabasePath "C:\Windows\NTDS" `
-DomainName "FHSaaS1.local" `
-InstallDns:$false `
-LogPath "C:\Windows\NTDS" `
-NoRebootOnCompletion:$false `
-SiteName "Default-First-Site-Name" `
-SysvolPath "C:\Windows\SYSVOL" `
-Force:$true

This is a very straight forward task that I cannot get to work.  Passwords are correct.  I can ping using UNC..thoughts?
0
Comment
Question by:posae
  • 4
  • 4
8 Comments
 
LVL 33

Expert Comment

by:it_saige
ID: 40355602
Just got to ask, but does this server have a single NIC that is statically set with the correct IP Scheme and is it's primary DNS server the current *active* DC on the domain?  If the server has multiple NIC's are the unused ones disabled?

-saige-
0
 

Author Comment

by:posae
ID: 40355621
There are actually 3 connections (these are virtual servers in a Rackspace cloud).  It is statically set with the correct IP Scheme.  Yes the DNS server is the current active dc on the domain.  I have also configured the DNS server to only respond to DNS requests on the local IP scheme that the issue server is using
0
 
LVL 33

Expert Comment

by:it_saige
ID: 40355649
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 33

Assisted Solution

by:it_saige
it_saige earned 500 total points
ID: 40355656
Also try running a 'dcdiag /test:dns' from your *active* DC.  Do you get any errors?

-saige-
0
 

Author Comment

by:posae
ID: 40356145
so there are a bunch of errors, however, I don't care about anything that is not 192.168.4.0.  Does anything pop out?


Directory Server Diagnosis


Performing initial setup:

   Trying to find home server...

   Home Server = fhsql1

   * Identified AD Forest.
   Done gathering initial info.


Doing initial required tests

   
   Testing server: Default-First-Site-Name\FHSQL1

      Starting test: Connectivity

         ......................... FHSQL1 passed test Connectivity



Doing primary tests

   
   Testing server: Default-First-Site-Name\FHSQL1

   
      Starting test: DNS

         

         DNS Tests are running and not hung. Please wait a few minutes...

         ......................... FHSQL1 passed test DNS

   
   Running partition tests on : ForestDnsZones

   
   Running partition tests on : DomainDnsZones

   
   Running partition tests on : Schema

   
   Running partition tests on : Configuration

   
   Running partition tests on : FHSaaS1

   
   Running enterprise tests on : FHSaaS1.local

      Starting test: DNS

         Test results for domain controllers:

           
            DC: fhsql1.FHSaaS1.local

            Domain: FHSaaS1.local

           

                 
               TEST: Basic (Basc)
                  Warning: adapter [00000010] Citrix PV Ethernet Adapter has

                  invalid DNS server: 173.203.4.9 (<name unavailable>)

                  Warning: adapter [00000010] Citrix PV Ethernet Adapter has

                  invalid DNS server: 173.203.4.8 (<name unavailable>)

                  Warning: adapter [00000011] Citrix PV Ethernet Adapter has

                  invalid DNS server: 173.203.4.9 (<name unavailable>)

                  Warning: adapter [00000011] Citrix PV Ethernet Adapter has

                  invalid DNS server: 173.203.4.8 (<name unavailable>)

                  Warning: The A record for this DC was not found
                  Warning: The AAAA record for this DC was not found
                  No host records (A or AAAA) were found for this DC

                 
               TEST: Forwarders/Root hints (Forw)
                  Error: All forwarders in the forwarder list are invalid.

                 
               TEST: Records registration (RReg)
                  Network Adapter [00000010] Citrix PV Ethernet Adapter:

                     Warning:
                     Missing CNAME record at DNS server 173.203.4.9:
                     db4b1d02-5b9a-44ff-9e37-8257c2fa783f._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing A record at DNS server 173.203.4.9:
                     fhsql1.FHSaaS1.local
                     
                     Warning:
                     Missing AAAA record at DNS server 173.203.4.9:
                     fhsql1.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.651306d2-0481-41a4-9986-2eaf019fb616.domains._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kerberos._tcp.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kerberos._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kerberos._udp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kpasswd._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kerberos._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.gc._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing A record at DNS server 173.203.4.9:
                     gc._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing AAAA record at DNS server 173.203.4.9:
                     gc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _gc._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.pdc._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing CNAME record at DNS server 173.203.4.8:
                     db4b1d02-5b9a-44ff-9e37-8257c2fa783f._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing A record at DNS server 173.203.4.8:
                     fhsql1.FHSaaS1.local
                     
                     Warning:
                     Missing AAAA record at DNS server 173.203.4.8:
                     fhsql1.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.651306d2-0481-41a4-9986-2eaf019fb616.domains._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kerberos._tcp.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kerberos._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kerberos._udp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kpasswd._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kerberos._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.gc._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing A record at DNS server 173.203.4.8:
                     gc._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing AAAA record at DNS server 173.203.4.8:
                     gc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _gc._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.pdc._msdcs.FHSaaS1.local
                     
                  Network Adapter [00000011] Citrix PV Ethernet Adapter:

                     Warning:
                     Missing CNAME record at DNS server 173.203.4.9:
                     db4b1d02-5b9a-44ff-9e37-8257c2fa783f._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing A record at DNS server 173.203.4.9:
                     fhsql1.FHSaaS1.local
                     
                     Warning:
                     Missing AAAA record at DNS server 173.203.4.9:
                     fhsql1.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.651306d2-0481-41a4-9986-2eaf019fb616.domains._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kerberos._tcp.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kerberos._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kerberos._udp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kpasswd._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _kerberos._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.gc._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing A record at DNS server 173.203.4.9:
                     gc._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing AAAA record at DNS server 173.203.4.9:
                     gc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _gc._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.9:
                     _ldap._tcp.pdc._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing CNAME record at DNS server 173.203.4.8:
                     db4b1d02-5b9a-44ff-9e37-8257c2fa783f._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing A record at DNS server 173.203.4.8:
                     fhsql1.FHSaaS1.local
                     
                     Warning:
                     Missing AAAA record at DNS server 173.203.4.8:
                     fhsql1.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.651306d2-0481-41a4-9986-2eaf019fb616.domains._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kerberos._tcp.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kerberos._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kerberos._udp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kpasswd._tcp.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _kerberos._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.gc._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing A record at DNS server 173.203.4.8:
                     gc._msdcs.FHSaaS1.local
                     
                     Warning:
                     Missing AAAA record at DNS server 173.203.4.8:
                     gc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _gc._tcp.Default-First-Site-Name._sites.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.FHSaaS1.local
                     
                     Error:
                     Missing SRV record at DNS server 173.203.4.8:
                     _ldap._tcp.pdc._msdcs.FHSaaS1.local
                     
               Warning: Record Registrations not found in some network adapters

         
         Summary of test results for DNS servers used by the above domain

         controllers:

         

            DNS server: 173.203.4.8 (<name unavailable>)

               3 test failure on this DNS server

               Name resolution is not functional. _ldap._tcp.FHSaaS1.local. failed on the DNS server 173.203.4.8
               
            DNS server: 173.203.4.9 (<name unavailable>)

               3 test failure on this DNS server

               Name resolution is not functional. _ldap._tcp.FHSaaS1.local. failed on the DNS server 173.203.4.9
               
            DNS server: 128.8.10.90 (d.root-servers.net.)

               1 test failure on this DNS server

               PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 128.8.10.90              
         Summary of DNS test results:

         
                                            Auth Basc Forw Del  Dyn  RReg Ext
            _________________________________________________________________
            Domain: FHSaaS1.local

               fhsql1                       PASS FAIL FAIL PASS PASS WARN n/a  
         
         ......................... FHSaaS1.local failed test DNS
0
 
LVL 33

Expert Comment

by:it_saige
ID: 40356841
Please provide the results of:

netsh interface ipv4 show config

-saige-
0
 

Accepted Solution

by:
posae earned 0 total points
ID: 40356896
Hello...so it looks like i have solved the issue...but your posts DID help me to do so.  When we create all of our VMs (in Rackspace), it is assumed that we do not have a DNS server so all of our virtual NICs have a DNS server configured that is not on our network.  I had to change all of the NICS for BOTH VMs to point to the existing DNS server.  Once i did that, the dcdiag /test:dns worked perfectly and the DCPROMO worked instantly.

Thanks for your help.  without the troubleshooting commands I would not have stumbled across this.
0
 

Author Closing Comment

by:posae
ID: 40365561
was able to solve the issue on my own but the information provided by the expert did help
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Issue: One Windows 2008 R2 64bit server on the network unable to connect to a buffalo Device (Linkstation) with firmware version 1.56. There are a total of four servers on the network this being one of them. Troubleshooting Steps: Connect via h…
When you upgrade from Windows 8 to 8.1 or to Windows 10 or if you are like me you are on the Insider Program you may find yourself with many 450MB recovery partitions.  With a traditional disk that may not be a problem but with relatively smaller SS…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
In this Micro Tutorial viewers will learn how to restore single file or folder from Bare Metal backup image of their system. Tutorial shows how to restore files and folders from system backup. Often it is not needed to restore entire system when onl…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question