<div>
What was done?<br />
<br />
Do you have another server on which you can install the DNS service?<br />
The DNS is AD integrated, <br />
<br />
Is the DNS service still installed and is running?
</div>


<div>
my employee was trying to fix some issues with dns, but he removed it. &nbsp;then he said he tried to put it back but the information seemed to be there but the active directory won't work. &nbsp;<br />
<br />
No we don't have another server, this is the only one.<br />
When I go to the DNS management the only thing is under the reverser lookup zone and that is my server ip address. &nbsp;attaching my addiag now.<br />
<a href="https://filedb.experts-exchange.com/incoming/2014/11_w47/884343/addiag.txt" target="_blank" class="file-inline" title="addiag.txt (3 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>addiag.txt</a>
</div>


addiag.txt

<div>
DO you have forward ZONES<br />
You may need to add your AD domain to the FORWARD zones as well as _msdcs.AD_DOMAINNAME<br />
make sure they are AD integrated zones<br />
<br />
you need to run the command nltest /DSREGDNS<br />
<br />
What was the person supposed to FIX?<br />
what does your DNS looks like?
</div>


<div>
I ran the nltest/dsregdns the results are I_netlogoncontrol failed: status = 1717 0x6b5 rpc_s_unknown_if<br />
<br />
It didn't have a &nbsp;_msdcs.AD_DOMAINNAME he was running the best practice analysis to correct whatever needed. &nbsp;<br />
<br />
I had to go to sleep is the reason for my delay responding. &nbsp; Thank you for all your help. &nbsp;I am adding my forward zone now. &nbsp;It's like the services are not running. &nbsp; I can start the time or the netlogon
</div>


<div>
Was running Best Practice Analyzer on the server. which returned 33 ' Errors ' when it was completed. after doing some reading about a few of the errors people were saying the DNS was messed up. i was missing &nbsp;_msdcs.AD_DOMAINNAME folder which should have the dc/ac sub folders below that, i compared to another server we have and sure enough we were missing those zones, i couldn't create the zones because it was saying name already existed. i removed DNS Role and rebooted and reinstalled DNS role but the same information is there. we are missing sub folders under the domain, ill attach a picture and ill attach another picture of a working server on what im talking about. when we first installed this server when we installed AD Role it auto installed DNS and created the DNS for us to work with AD. when i reinstalled DNS after removing the role no information was there and i couldn't get it to talk to the AD.<br />
<br />
please help.
</div>


<div>
here is another server with working DNS. compare them and you see the issue.
</div>


workingDNS.JPG

dns.JPG

<div>
We are looking at that now.
</div>


<div>
did you try hitting the reload on the forwarding zones?<br />
<br />
try right-clicking on the DNS server and select the tasks and configure DNS server, see whether that brings the AD zones back in.<br />
<br />
Without knowing what the issue was that needed to be corrected and what was done, it is hard to guess how to reverse this when there is no additional server even Virtual for a short time.<br />
<br />
Could the person have reconfigured the DNS service settings such that ad zone was excluded?<br />
<br />
.......
</div>


<div>
we are doing a full c: drive image restore. &nbsp;Then we can see what is needed from that stand point.
</div>


<div>
hopefully, before you started the full image restored, you copied off the files/data that was changed since the image was taken to a separate/external data source.
</div>


<div>
the data was stored on a Q: Data 240gig SSD drive. C was only used for windows. server is back up. thanks
</div>


<div>
<div class="content wysiwyg-content">
One of our staff was trying to fix DNS issues, they deleted the DNS, now we can't start the netlogon, dcdiag has errors. &nbsp;I will attach it. &nbsp;We are down, the users will be there at 8am EST, please help. &nbsp;I will pull a addiag report and attach. &nbsp;It appears my dns/fsmo roles may be messed up.<br />
<a href="https://filedb.experts-exchange.com/incoming/2014/11_w47/884339/dcdiag2.txt" target="_blank" class="file-inline" title="current dcdiag messages (3 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>dcdiag2.txt</a>
</div>
</div>


dcdiag2.txt

One of our staff was trying to fix DNS issues, they deleted the DNS, now we can't start the netlogon, dcdiag has errors.  I will attach it.  We are down, the users will be there at 8am EST, please help.  I will pull a addiag report and attach.  It appears my dns/fsmo roles may be messed up.

Server 2008r2 DNS corrupt, can't fix

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.