Solved

SYSVOL and NETLOGON shares missing - 2008R2, after demoting and removing old 2003R2 DC

Posted on 2014-11-26
5
255 Views
Last Modified: 2014-11-27
Hi guys,

We've had a site running for about 2 years, with a PDC Server 2008R2, and a 6+ year old 2003R2 as a backup DC.  Was running well, until several hard shutdowns later we had issues with clients PC's not being able to access the server via DNS name - IP was ok.  At that time DCDIAG was giving numerous errors as expected, event log was rather full.  Several hours of troubleshooting these errors later, all FSMO roles have been moved to the 2008 box (nicely, not seized), and the 2003 has been demoted and will not be used again.  Thanks to many Experts-Exchange articles to get me this far!  I also had to create and register DNS.

Only issue left, is the SYSVOL and NETLOGON shares are missing.  

Event log ID 5706
The Netlogon service could not create server share C:\Windows\SYSVOL\sysvol.  The following error occurred:
Access is denied.
Event log ID 5706
The Netlogon service could not create server share C:\Windows\SYSVOL\sysvol\whitehaven.local\SCRIPTS.  The following error occurred:
Access is denied.

I've attached results of dcdiag, dcdiag /test:dns and ipconfig /all

Have found several articles referencing the issue, though have not made much headway on this last niggling issue!

Thanks
dcdiag.txt
dns.txt
ipconfig.txt
0
Comment
Question by:scottytnz
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 10

Expert Comment

by:Walter Padrón
ID: 40467905
0
 

Author Comment

by:scottytnz
ID: 40467987
Hi,

I've been through the steps already, and again just now.  The articles seem to reference a slightly different issue, where Sysvol and scripts folders don't exist.  In this case the C:\Windows\SYSVOL\sysvol\whitehaven.local\Scripts folder exists.  I've also replicated the permissions off another server, though still get the "access is denied" error.

However, the C:\Windows\SYSVOL\sysvol\whitehaven.local\policies folder is missing if that helps?

Does the DCDIAG DNS error "Error: Can't read OS version through WMI No host records (A or AAAA) were found for this DC" help point in the right direction?

Can I simply remove the Sysvol folder structure and add them again?

Cheers,
0
 

Author Comment

by:scottytnz
ID: 40467990
Also, the SYSVOL share is also missing - not just NETLOGON.  Thanks.
0
 
LVL 10

Accepted Solution

by:
Walter Padrón earned 500 total points
ID: 40469299
I recommend the following:

1- Make a backup of your server DC
2- Use a spare server (if you don't have one use a virtual machine) and install a new DC with DNS rol
3- Stop DNS on old server
4- Check if SYSVOL/NETLOGON was created, join computers, DNS is working, etc...
5- If working move roles to new DC and rebuild the old one

It is a lot of work but safer and can be accomplished in 1 day or two without disrupt the normal work

Best regards
0
 

Author Closing Comment

by:scottytnz
ID: 40469791
Thanks, I was hoping to avoid that though will proceed with a rebuild.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

A procedure for exporting installed hotfix details of remote computers using powershell
This article explains how to install and use the NTBackup utility that comes with Windows Server.
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question