Solved

SYSVOL and NETLOGON shares missing - 2008R2, after demoting and removing old 2003R2 DC

Posted on 2014-11-26
5
237 Views
Last Modified: 2014-11-27
Hi guys,

We've had a site running for about 2 years, with a PDC Server 2008R2, and a 6+ year old 2003R2 as a backup DC.  Was running well, until several hard shutdowns later we had issues with clients PC's not being able to access the server via DNS name - IP was ok.  At that time DCDIAG was giving numerous errors as expected, event log was rather full.  Several hours of troubleshooting these errors later, all FSMO roles have been moved to the 2008 box (nicely, not seized), and the 2003 has been demoted and will not be used again.  Thanks to many Experts-Exchange articles to get me this far!  I also had to create and register DNS.

Only issue left, is the SYSVOL and NETLOGON shares are missing.  

Event log ID 5706
The Netlogon service could not create server share C:\Windows\SYSVOL\sysvol.  The following error occurred:
Access is denied.
Event log ID 5706
The Netlogon service could not create server share C:\Windows\SYSVOL\sysvol\whitehaven.local\SCRIPTS.  The following error occurred:
Access is denied.

I've attached results of dcdiag, dcdiag /test:dns and ipconfig /all

Have found several articles referencing the issue, though have not made much headway on this last niggling issue!

Thanks
dcdiag.txt
dns.txt
ipconfig.txt
0
Comment
Question by:scottytnz
  • 3
  • 2
5 Comments
 
LVL 10

Expert Comment

by:Walter Padrón
Comment Utility
0
 

Author Comment

by:scottytnz
Comment Utility
Hi,

I've been through the steps already, and again just now.  The articles seem to reference a slightly different issue, where Sysvol and scripts folders don't exist.  In this case the C:\Windows\SYSVOL\sysvol\whitehaven.local\Scripts folder exists.  I've also replicated the permissions off another server, though still get the "access is denied" error.

However, the C:\Windows\SYSVOL\sysvol\whitehaven.local\policies folder is missing if that helps?

Does the DCDIAG DNS error "Error: Can't read OS version through WMI No host records (A or AAAA) were found for this DC" help point in the right direction?

Can I simply remove the Sysvol folder structure and add them again?

Cheers,
0
 

Author Comment

by:scottytnz
Comment Utility
Also, the SYSVOL share is also missing - not just NETLOGON.  Thanks.
0
 
LVL 10

Accepted Solution

by:
Walter Padrón earned 500 total points
Comment Utility
I recommend the following:

1- Make a backup of your server DC
2- Use a spare server (if you don't have one use a virtual machine) and install a new DC with DNS rol
3- Stop DNS on old server
4- Check if SYSVOL/NETLOGON was created, join computers, DNS is working, etc...
5- If working move roles to new DC and rebuild the old one

It is a lot of work but safer and can be accomplished in 1 day or two without disrupt the normal work

Best regards
0
 

Author Closing Comment

by:scottytnz
Comment Utility
Thanks, I was hoping to avoid that though will proceed with a rebuild.
0

Featured Post

The problems with reply email signatures

Do you wish that you could place an email signature under a reply? Well, unfortunately, you can't. That great Exchange/Office 365 signature you've created will just appear at the bottom of an email chain. What a pain! Is there really no way to solve this? Well, there might be...

Join & Write a Comment

If you migrate a Terminal Server licenses server inside the 2008 server family, you can takte advantage of the build-in migration tool. If you like to migrate an older 2003 Server (and the installed client CALs) to a 2008 R2 server for example, you …
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now