Adprep Fails: Cannot find a primary authoritative DNS server for the name
-
lunedì 30 aprile 2012 17:28
This was originally initited because I was trying to prep the forest/domain to add a 2008R2 server in.
However, when trying to run Ad[re[32 on my Server 2003 (32bit), the comman would not actually run, and no report was generated, even though a log file was created.
Now, after running Netdiag, the DNS output shows the issue seems to be/could be DNS.
The confusion I have is that the system seems to be working fine.
PING works without problems!I do see some issues in the Event Viewer, a bit non-descript, about network issues, and now realize they could also be DNS related, about slowdowns.
Anyone want to help me figure this out? Had y Server upgrade on hold now, trying to resolve it.
Thanks
Tutte le risposte
-
lunedì 30 aprile 2012 19:09Pleaase post the unedited ipconfig /all from the server .
http://www.arabitpro.com
-
lunedì 30 aprile 2012 19:16
C:\>ipconfig /allWindows IP Configuration
Host Name . . . . . . . . . . . . : Mailman
Primary Dns Suffix . . . . . . . : Firstflorida.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . : Firstflorida.comEthernet adapter MAILMAN NIC 1:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection
Physical Address. . . . . . . . . : 00-13-72-F7-E5-7B
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.4
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.4
Primary WINS Server . . . . . . . : 192.168.0.4Ethernet adapter MAILMAN NIC 2:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection
2
Physical Address. . . . . . . . . : 00-13-72-F7-E5-7C
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.8
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.4
Primary WINS Server . . . . . . . : 192.168.0.4Tunnel adapter Teredo Tunneling Pseudo-Interface:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : FF-FF-FF-FF-FF-FF-FF-FF
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : fe80::ffff:ffff:fffd%5
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : DisabledTunnel adapter Automatic Tunneling Pseudo-Interface:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Automatic Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : C0-A8-00-08
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : fe80::5efe:192.168.0.8%2
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : DisabledTunnel adapter Automatic Tunneling Pseudo-Interface:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Automatic Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : C0-A8-00-04
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : fe80::5efe:192.168.0.4%2
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Disabled -
lunedì 30 aprile 2012 19:22
Multihomed DC are not recommended by Microsfot as they can give issues. As I can see 2 Nic configured so please disable one them and give a try.
http://support.microsoft.com/kb/832478 talks about DNS http://support.microsoft.com/kb/272294
http://www.arabitpro.com
- Modificato Syed KhairuddinMVP lunedì 30 aprile 2012 19:23
-
martedì 1 maggio 2012 01:43Moderatore
Hi John,
Thanks for posting here.
I agree with Syed and will not suggest to multihomed a domain controller and will either not suggest to have interfaces with addresses form same IP segment which will also potentially cause issues. Could we try to disable one of active NIC on it and retry that ?
Expected Behavior of Multiple Adapters on Same Network
http://support.microsoft.com/kb/175767
Please also show us the Netdiag results here if that is possible.
Regards,
Tiger Li
TechNet Subscriber Support in forum
If you have any feedback on our support, please contact tnmff@microsoft.com.
Tiger Li
TechNet Community Support
-
martedì 1 maggio 2012 18:16
OK, disabled the NIC2
Here is the Netdiags, with the Updates removed for better reading.
Thanks in advance!
******
Computer Name: MAILMAN
DNS Host Name: Mailman.Firstflorida.com
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 15 Model 4 Stepping 10, GenuineIntel
Netcard queries test . . . . . . . : Passed
[WARNING] The net card 'Microsoft Tun Miniport Adapter' may not be workingPer interface results:
Adapter : MAILMAN NIC 1
Netcard queries test . . . : PassedHost Name. . . . . . . . . : Mailman
IP Address . . . . . . . . : 192.168.0.4
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.0.1
Primary WINS Server. . . . : 192.168.0.4
Dns Servers. . . . . . . . : 192.168.0.4
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Failed
The test failed. We were unable to query the WINS servers.Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{05309614-EBF4-4F53-BD04-C5DBD706AD37}
1 NetBt transport currently configured.Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'Mailman.Firstflorida.com.'. [WSAEADDRNOTAVAIL ]
The name 'Mailman.Firstflorida.com.' may not be registered in DNS.
[WARNING] Cannot find a primary authoritative DNS server for the name
'Mailman.Firstflorida.com.'. [ERROR_TIMEOUT]
The name 'Mailman.Firstflorida.com.' may not be registered in DNS.
[WARNING] Cannot find a primary authoritative DNS server for the name
'Mailman.Firstflorida.com.'. [WSAEADDRNOTAVAIL ]
The name 'Mailman.Firstflorida.com.' may not be registered in DNS.
[WARNING] Cannot find a primary authoritative DNS server for the name
'Mailman.Firstflorida.com.'. [ERROR_TIMEOUT]
The name 'Mailman.Firstflorida.com.' may not be registered in DNS.
[WARNING] The DNS entries for this DC are not registered correctly on DNS server '0.0.0.0'. Please wait for 30 minutes for DNS server replication.
[FATAL] No DNS servers have the DNS records for this DC registered.Redir and Browser test . . . . . . : Failed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{05309614-EBF4-4F53-BD04-C5DBD706AD37}
The redir is bound to 1 NetBt transport.List of NetBt transports currently bound to the browser
NetBT_Tcpip_{05309614-EBF4-4F53-BD04-C5DBD706AD37}
The browser is bound to 1 NetBt transport.
[FATAL] Cannot send mailslot message to '\\mailman*\MAILSLOT\NET\NETLOGON' via redir. [ERROR_BAD_NETPATH]DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Failed
'mailman': Cannot find DC to get DC list from [test skipped].Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Failed
Cannot find DC to run LDAP tests on. The error occurred was: The specified domain either does not exist or could not be contacted.This computer cannot be joined to the [mailman] domain because of one of the
following reasons.
1. The DNS SRV record for [mailman] is not registered in DNS; or
2. A zone from the following list of DNS zones does not include delegation
to its child zone.
Such zones can include [_ldap._tcp.dc._msdcs.mailman], and root zone.
Ask your network/DNS administrator to perform the following actions: To
find out why the SRV record for [mailman] is not registered in the DNS,
run the dcdiag command prompt tool with the command RegisterInDNS on the
domain controller that did not perform the registration.
[WARNING] Cannot find DC in domain 'mailman'. [ERROR_NO_SUCH_DOMAIN]Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : SkippedThe command completed successfully
*****************************
-
mercoledì 2 maggio 2012 03:13Moderatore
DNS test . . . . . . . . . . . . . : Failed
[WARNING] Cannot find a primary authoritative DNS server for the name
'Mailman.Firstflorida.com.'. [WSAEADDRNOTAVAIL ]
The name 'Mailman.Firstflorida.com.' may not be registered in DNS.
[WARNING] Cannot find a primary authoritative DNS server for the name
'Mailman.Firstflorida.com.'. [ERROR_TIMEOUT]
The name 'Mailman.Firstflorida.com.' may not be registered in DNS.
[WARNING] Cannot find a primary authoritative DNS server for the name
'Mailman.Firstflorida.com.'. [WSAEADDRNOTAVAIL ]
The name 'Mailman.Firstflorida.com.' may not be registered in DNS.
[WARNING] Cannot find a primary authoritative DNS server for the name
'Mailman.Firstflorida.com.'. [ERROR_TIMEOUT]
The name 'Mailman.Firstflorida.com.' may not be registered in DNS.
[WARNING] The DNS entries for this DC are not registered correctly on DNS server '0.0.0.0'. Please wait for 30 minutes for DNS server replication.
[FATAL] No DNS servers have the DNS records for this DC registered.Redir and Browser test . . . . . . : Failed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{05309614-EBF4-4F53-BD04-C5DBD706AD37}
The redir is bound to 1 NetBt transport.List of NetBt transports currently bound to the browser
NetBT_Tcpip_{05309614-EBF4-4F53-BD04-C5DBD706AD37}
The browser is bound to 1 NetBt transport.
[FATAL] Cannot send mailslot message to '\\mailman*\MAILSLOT\NET\NETLOGON' via redir. [ERROR_BAD_NETPATH]LDAP test. . . . . . . . . . . . . : Failed
Cannot find DC to run LDAP tests on. The error occurred was: The specified domain either does not exist or could not be contacted.This computer cannot be joined to the [mailman] domain because of one of the
following reasons.
1. The DNS SRV record for [mailman] is not registered in DNS; or
2. A zone from the following list of DNS zones does not include delegation
to its child zone.
Such zones can include [_ldap._tcp.dc._msdcs.mailman], and root zone.
Ask your network/DNS administrator to perform the following actions: To
find out why the SRV record for [mailman] is not registered in the DNS,
run the dcdiag command prompt tool with the command RegisterInDNS on the
domain controller that did not perform the registration.
[WARNING] Cannot find DC in domain 'mailman'. [ERROR_NO_SUCH_DOMAIN]Hi John,
Thanks for posting here.
So have we set SOA for zone “Mailman.Firstflorida.com” on DNS server ?
Is this host(192.168.0.4) correctly holding DNS service and AD integrated zone on it? Try to verify that with following workaround:
Verify DNS registration for domain controllers using the nslookup command
http://technet.microsoft.com/en-us/library/cc738991(WS.10).aspx
Troubleshooting Active Directory—Related DNS Problems
http://technet.microsoft.com/en-us/library/bb727055.aspx
Regards,
Tiger Li
TechNet Subscriber Support in forum
If you have any feedback on our support, please contact tnmff@microsoft.com.
Tiger Li
TechNet Community Support
-
mercoledì 2 maggio 2012 14:39
Apparently when this was riginally set up, and moved from Win Server 2K to Server2K3, the DNS/AD never was done right!?
Here is the output from the NSLOOKUP RRType SOA:
*** mailman.firstflorida.com can't find netaccounts: Non-existent domain
> nslookup
Server: mailman.firstflorida.com
Address: 192.168.0.4*** mailman.firstflorida.com can't find nslookup: Non-existent domain
> set q=SOA
> _ldap._tcp.dc._msdcs.mailman.firstflorida.com
Server: mailman.firstflorida.com
Address: 192.168.0.4*** mailman.firstflorida.com can't find _ldap._tcp.dc._msdcs.mailman.firstflorid
a.com: Non-existent domain
.png)
