DCDIAG error 67 The network name cannot be found
Hi,
I have 2 servers and both are DCs. My main dc, MAX, is a sbs2003 with all the roles and is my Exchange 2003 server also.
My file server FS1 is my second DC and it'S a 2003 R2.
I'm preparing my 2003 domain to get upgrade 20 2012 so when doing all checkups and found this:
When doing dcdiag /test:netlogons I get
"Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SR
Starting test: Connectivity
......................... SRV-FS1 passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SR
Starting test: NetLogons
[SRV-FS1] An net use or LsaPolicy operation failed with error 67, The network name cannot be found..
......................... SRV-FS1 failed test NetLogons
Running partition tests on : ForestDnsZones
Running partition tests on : DomainDnsZones
Running partition tests on : Schema
Running partition tests on : Configuration
Running partition tests on : mc
Running enterprise tests on : mc.local"
I have no error on MAX.
Also in the event viewer I had event ids 13501 13508 on fs1 and 13568 13501 13526 13570 on MAX.
But following lots of documentations on the web I did a non authoritative restore using the "D2" reg key and now those are gone.
both NETLOGON folders don't replicate and I think I have noticed problems with GPOs also... but except for that, my users are fine.
Now I am not sure but I think the only way to fix that is by doing an Autoritative restore?.
Can someone confirm me this?
And how to you do that. Do I do it on MAX or FS1 : that's not clear.
tx!
I have 2 servers and both are DCs. My main dc, MAX, is a sbs2003 with all the roles and is my Exchange 2003 server also.
My file server FS1 is my second DC and it'S a 2003 R2.
I'm preparing my 2003 domain to get upgrade 20 2012 so when doing all checkups and found this:
When doing dcdiag /test:netlogons I get
"Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SR
Starting test: Connectivity
......................... SRV-FS1 passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SR
Starting test: NetLogons
[SRV-FS1] An net use or LsaPolicy operation failed with error 67, The network name cannot be found..
......................... SRV-FS1 failed test NetLogons
Running partition tests on : ForestDnsZones
Running partition tests on : DomainDnsZones
Running partition tests on : Schema
Running partition tests on : Configuration
Running partition tests on : mc
Running enterprise tests on : mc.local"
I have no error on MAX.
Also in the event viewer I had event ids 13501 13508 on fs1 and 13568 13501 13526 13570 on MAX.
But following lots of documentations on the web I did a non authoritative restore using the "D2" reg key and now those are gone.
both NETLOGON folders don't replicate and I think I have noticed problems with GPOs also... but except for that, my users are fine.
Now I am not sure but I think the only way to fix that is by doing an Autoritative restore?.
Can someone confirm me this?
And how to you do that. Do I do it on MAX or FS1 : that's not clear.
tx!
Are there currently any 13568 errors in the FRS log of either DC? It sounds like one of them may still be in a journal-wrap state.
ASKER
I have those errors (in the attach word) but not the journal-wrap since my non authoritative restore on the 4th ...
On a now SBS server I would recommend demoting SRV-MAX then promoting it but it is hosting Exchange..
I am looking into this further for you
I am looking into this further for you
See if the following KB applies to your environment http://support.microsoft.com/kb/908370
Do you have AV installed on your DC? If so what are you using?
Do you have AV installed on your DC? If so what are you using?
ASKER
woo demoting a main dc when the second one is not an smb that's scary ;) I'm reading your kb but just to answer you:it's kaspersky and, without concluding to anything, it has been running as is for a while so not sure if it could be it.
Nah, don't demote SRV-MAX. I think compdigit meant that he'd only recommend that on a non-SBS server. I'd be tempted to go the other way and demote SRV-FS1, but don't do that yet. On each server, go to Start > Run and type the following:
\\srv-max.muc.local\sysvol
\\srv-fs1.muc.local\sysvol
Post whatever errors you get and make sure you note which server you're running the command from. If by some chance you're able to establish both connections from each server with no errors, close the connections and establish them again using only the NetBIOS names of the destination servers:
\\srv-max\sysvol
\\srv-fs1\sysvol
Let us know the results.
\\srv-max.muc.local\sysvol
\\srv-fs1.muc.local\sysvol
Post whatever errors you get and make sure you note which server you're running the command from. If by some chance you're able to establish both connections from each server with no errors, close the connections and establish them again using only the NetBIOS names of the destination servers:
\\srv-max\sysvol
\\srv-fs1\sysvol
Let us know the results.
DrDave242 is correct I was not stating to demote the server. If it was a regular Windows 2003 server I would say yes but SBS is a different ball game
Did you every check out link I posted before??? Also is AV installed
Did you every check out link I posted before??? Also is AV installed
ASKER
compdigit44: yes but not finish since the link brings more links ... continuing
DrDave: on srv-fs1
wow! \\srv-max\sysvol\ = Windows cannot find "\\srv-max\sysvol\. Check the spelling and try again, or try....
And what ever unc path I enter it's the same message! I click on the down arrow to get one from History like \\pc-20013\c$ and it's the same problem. Windows cannot see "\\" anymore! I wonder if it's since I did the non-Autoritative restore?
but that's way worse then just a sysvol synch now!
And from srv-max both command works.
Except that on fs1and under my domain, I see Do_Not_Remove_FtFrs... and Policies and scripts but under MAX I see
DO_NOT_REMOVE_NtFrs... and NtFrs_PreExisting____See_E
DrDave: on srv-fs1
wow! \\srv-max\sysvol\ = Windows cannot find "\\srv-max\sysvol\. Check the spelling and try again, or try....
And what ever unc path I enter it's the same message! I click on the down arrow to get one from History like \\pc-20013\c$ and it's the same problem. Windows cannot see "\\" anymore! I wonder if it's since I did the non-Autoritative restore?
but that's way worse then just a sysvol synch now!
And from srv-max both command works.
Except that on fs1and under my domain, I see Do_Not_Remove_FtFrs... and Policies and scripts but under MAX I see
DO_NOT_REMOVE_NtFrs... and NtFrs_PreExisting____See_E
from srv-fs1 are you able to see any network resources?
From SRv-max can you upload the results of net view
From SRv-max can you upload the results of net view
ASKER
If I go under Entire Network I only see
Microsoft Terminal Services
VMware Shared Folders
no Windows Windows network
here the result of net view on srv-max
netview-srv-max.jpg
Microsoft Terminal Services
VMware Shared Folders
no Windows Windows network
here the result of net view on srv-max
netview-srv-max.jpg
Have any changes or updates been install on the servers late?
Is AV software installed?
When is the last time either has been rebooted?
Is AV software installed?
When is the last time either has been rebooted?
ASKER
- No updates, it's turn off but I overdue to install them
- Kaspersky
- it's been a while...
As someone mention on the web, when I look at regedit Hkey_local_machine/system/
- Kaspersky
- it's been a while...
As someone mention on the web, when I look at regedit Hkey_local_machine/system/
Does each provider listed have a networkprovider subkey listed under HKEY_LOCAL_MACHINE\SYSTEM\
Also do you mean VMHGfs??? Is the server a VM?
You can change the provider order using the following method..
https://technet.microsoft.com/en-us/library/cc732472%28v=ws.10%29.aspx
Do both serve have Kaspersky does it have the firewall disabled? IS the windows firewall disabled?
Also do you mean VMHGfs??? Is the server a VM?
You can change the provider order using the following method..
https://technet.microsoft.com/en-us/library/cc732472%28v=ws.10%29.aspx
Do both serve have Kaspersky does it have the firewall disabled? IS the windows firewall disabled?
ASKER
1- Yes (lanmanworkstation - networkprovider = ntlanman.dll) same for the other 2
2- is vmhgfs case sensitive??
3- Do you think changing the provider order will change something?
4- both have kaspersky but the kaspersky fw is not enable
5- no windows firewall also.
2- is vmhgfs case sensitive??
3- Do you think changing the provider order will change something?
4- both have kaspersky but the kaspersky fw is not enable
5- no windows firewall also.
ASKER
Since there are tons (84) of updates no installed yet on FS1 I wonder if I shouldn't just start with doing all of them to see if the case was fixed by them?
And it will also reboot since it's been a while (238 days!).
And it will also reboot since it's been a while (238 days!).
Let's how off on installing anything right now....
1) Take a reboot
2) If that fails change you Network provider order to Local Are Network and Client for Windows network is first
Let me know how you make out and we will move forward from here
1) Take a reboot
2) If that fails change you Network provider order to Local Are Network and Client for Windows network is first
Let me know how you make out and we will move forward from here
ASKER
Sorry compdigit44 but I already done the updates before I saw your answer.... I wasn't myself too hot of doing changes in the middle of a problem since it complicates the issue some times but I only choose the updates that were "bug fixes" and nothing else and one of them fixed the issues! :)
Now my NETLOGON folder replicates instantly one side to the other and vice versa, and the sysvol is accessible and also it started opening unc paths so all issues were fixed :)
I inherited of those servers and never thought that the auto-updates were not activated so now they are.
Thank you for your assistance, it's appreciated
Now my NETLOGON folder replicates instantly one side to the other and vice versa, and the sysvol is accessible and also it started opening unc paths so all issues were fixed :)
I inherited of those servers and never thought that the auto-updates were not activated so now they are.
Thank you for your assistance, it's appreciated
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
1) Results of dcdiag /v /e >c:\dcdiag.txt from both servers
2) repadmin /showrepl >c:\readmin.txt
3)ipconfig /all >c:\ip.txt