Solved

Continue to get Event ID 1055 after forceful removal of old domain controller, and running metadata cleanup.

Posted on 2016-09-14
6
57 Views
Last Modified: 2016-09-15
I came into an environment where after some digging appeared to have physically removed an old domain controller from the environment, without first  releasing the FSMO roles.  After finding this, I seized all FSMO roles sucessfully on the server, then completed a metadata cleanup.  However, even after a reboot of the current now (and only) domain controller, I still have clients showing Event ID 1055 errors in the event viewer, indicating that they are not able to authenticate with the domain controller?

I am struggling with finding a solution...
0
Comment
Question by:Chad Barbre
6 Comments
 
LVL 15

Accepted Solution

by:
WalkaboutTigger earned 500 total points
ID: 41798576
Check DNS for lingering records to the domain  - from a client machine, ping the domain name.

HOSTS or LMHOSTS file has bad static records?  I have seen this in the past where a novice admin "fixed" issues by pushing changes out to all workstation HOSTS file (located in C:\Windows\System32\Devices\ETC\).

Legacy domain replication connections not deleted as part of metadata cleanup - open ADSS and check replication connectors.
0
 
LVL 38

Expert Comment

by:Hypercat (Deb)
ID: 41798577
Did you makes sure that the OLD DC was not longer listed as a global catalog?  What about DNS - are all workstations pointing to the current server? Is time synch working on the domain?

Have you checked and either reset the computer accounts or removed and rejoined the domain to see if that fixes the issue?
1
 
LVL 16

Expert Comment

by:FOX
ID: 41798612
Is the current DC set up with DHCP?  If so make sure all the workstations are pointing the the domain controllers online.
Open DHCP>expand your Domain Controller>expand IPv4>right-click Server Options>select options...scroll down to DNS servers, put a check inside DNS servers....at the bottom add the ip(s) of your DNS server(s).

YOur workstations will now automatically point the the dns of your Domain controllers
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 

Author Comment

by:Chad Barbre
ID: 41798772
"WalkaboutTigger"- I checked the DNS records, and do show that there is still a Name Server (NS) record for the decommissioned server, and also an Alias listed.  Also there is still a "Host (A)" record still listed.  I should remove all three of these records, correct?

"Hypercat (Deb)"- Yes, I removed the old DC from ADSS, and also from ADUC.  I had not yet unjoined and re-joined the pcs from the network.  It's a network of about 11 workstaitons, so not to big of a time grabber if I have to do this.

"Fox"- Yes, the current (and only) DC is also the netowkrs DHCP.  The only DNS servers confiugered for the scope are the current server, and the netwoork firewall.
0
 
LVL 15

Expert Comment

by:WalkaboutTigger
ID: 41798829
Yes, DNS MUST be scrubbed of records pointing to the decommissioned server.  This is the most likely cause of these errors.
0
 

Author Closing Comment

by:Chad Barbre
ID: 41799726
After the removal of these records, I rebooted client machines, and did not receive these event errors upon reboot.  Communication to the DC seems to be working as expected.

Thanks for all the help!
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Synchronize a new Active Directory domain with an existing Office 365 tenant
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question