Added second domain controler as a backup but Outlook will not connect?

When I disable the DC1 I launch Outlook and I get trying to connect?  I have just added a second domain controller 2012(both are 2012 DC).  The DNS works great, but I do not think the Backup DC is authenticating.
How can I validate the second domain controller without affecting my users?
Scott JohnstonIT Manager Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Neil RussellTechnical Development LeadCommented:
Is the second DC also a global catalogue server? It should be
0
Scott JohnstonIT Manager Author Commented:
yes, they are both GC type.
0
Will SzymkowskiSenior Solution ArchitectCommented:
Are you clients pointing to the second DC for DNS? also is your exchange server pointing to the second DC for DNS as well? this needs to be in place for it to work.

Will.
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

Scott JohnstonIT Manager Author Commented:
Will,
I have both DNS configured on the Workstations, I know it is working because when I disable the DC1, I can still surf the Internet using the DC2 DNS.
I have both DNS configuration setup on the workstations and the servers.
0
Neil RussellTechnical Development LeadCommented:
IF IPV6 is enabled on your 2008 DC then you MUST have it enabled on the exchange server as well.
This is a common fault but very little discussion on it.
0
Neil RussellTechnical Development LeadCommented:
Also, you do not have more than one IP Interface on the DC  do you? Multihomed DC's are a BIG NO NO.
0
Scott JohnstonIT Manager Author Commented:
neither DC has more than one active Network connection.  And I have exclude the IPV6 from all computers and servers.
0
Neil RussellTechnical Development LeadCommented:
I didnt say active.  Does the DC have more than one NIC installed? This can also cause issues, it does not need to be active.  Also for Exchange 2010 to function correctly, IPv6 should be ON.  and thus also on on the DC of 2008. Sorry if did not make that clear first time.
0
Scott JohnstonIT Manager Author Commented:
Confused?
My server has 2 Network ports...Problem?
Mail server and DC and Second DC.
IPV6 is installed but not being used on the exchange server.
OK< I will turn on ipv6 on the exchange server and both DC's, but do I need to turn it on the workstations as well?
0
Neil RussellTechnical Development LeadCommented:
No nothing to do with the workstation.

The general rule is that IF IPV6 is installed it should be enabled OR Disabled correctly in bios following MS guide on technet/msdn.

A second NIC in a DC, even if disabled, can cause issues.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Scott JohnstonIT Manager Author Commented:
Well I appreciate your comments but nothing is helping, at this point.  I look for more comments over the weekend.
Thank you
0
Will SzymkowskiSenior Solution ArchitectCommented:
When you have powered off DC1 try and run the Test Email Auto Configuration from Outlook and see what it is trying to authenticate to.

Also what version of Exchange are you running?

Check to see what DC's your Exchange are setup to use. By default Exchange should automatically place new DC's in the "domain controller servers being used by Exchange"

- Open the EMC
- click Server Configuration
- right click on a Exchange server
- Select properties, Click the System Settings Tab
- check and make sure that both DC are listed in there

Also this is not a Read-Only Domain Controller is it? I suspect it isn't however if it is that would be a reason why it would not be working.

Will.
1
Kamal KhaleefaInformation Security SpecialistCommented:
Is both dc in the same site
are they replicated well
Did you configure exchange network adaptor to point to alternative dns server ( second dc)
Are dns zones replicated
Users network adaptor v both dns servers
0
Scott JohnstonIT Manager Author Commented:
I may have figured out why I am having a problem, the 2012 DC, is using 2003 DC as a backup.  I believe this will not work correctly.  I am going to upgrade the 2003 server to a 2008 server.  I think this will help my situation?
Will, if my suspension is wrong.  I do remember something about a Read only DC, how can I verify if it is?
Or on another note if the 2012 and 2003 servers are not supported then disregard since I will be upgrading(only if I have to)?
0
Neil RussellTechnical Development LeadCommented:
"the 2012 DC, is using 2003 DC as a backup"

I dont see any mention of a 2003 DC anywhere above? Is this a mistake or do you really mean 2003?
0
Scott JohnstonIT Manager Author Commented:
Neilsr, sorry I made a mistake in my original posting.  I been overwhelmed with a migration, shipping problems and then the DC not working.  I not sure what I was thinking because I would never added a second 2012 server cause I do not have a license.  Originally the Backup DC was a2003 server, now it is a2008 server.  I going to start testing ASAP.
I was talking with a friend about my situation and he outline the problem 2012 server and 2003 server, not compatible.  The DNS works great, but AD will not.

I feel pretty stupid!
So very sorry!
0
Scott JohnstonIT Manager Author Commented:
Will:  How can I validate that it is not a read-only domain controller?
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.