none
Server 2012 R2 failover cluster test fail to recognize second server domain role

    Question

  • The setup consist of two nodes:

    Each node using windows server Datacenter 2012 R2

    Each node have the Active Directory Domain Services (AD DS) role installed. One is Primary domain controller and second is secondary domain controller on Node2

    The failover cluster fail the test. Getting the below message

    Validate Active Directory Configuration
    Description: Validate that all the nodes have the same domain, domain role, and organizational unit.
    Validating that all nodes have the same domain, domain role, and organizational unit.
    Fqdn Domain Domain Role Site Name Organizational Unit
    Node1.mansib.local mansib.local Primary Domain Controller Default-First-Site-Name OU=Domain Controllers
    Node2.mansib.local mansib.local An unknown error occurred. Default-First-Site-Name OU=Domain Controllers


    The domain role of some servers could not be determined.
    The server Node2.mansib.local does not have the service principal name (SPN) MSServerClusterMgmtAPI/NODE2. This SPN is needed for cluster APIs to authenticate to the server by using Kerberos. To add SPNs on the server computer object, use the Set-ADComputer cmdlet with the -ServicePrincipalNames parameter.
    The server Node2.mansib.local does not have the service principal name (SPN) MSServerClusterMgmtAPI/Node2.mansib.local. This SPN is needed for cluster APIs to authenticate to the server by using Kerberos. To add SPNs on the server computer object, use the Set-ADComputer cmdlet with the -ServicePrincipalNames parameter.
    It could not be determined whether node Node2.mansib.local is a read-only domain controller because of this error: The object does not exist.

    Friday, October 25, 2013 9:36 PM

Answers

All replies