none
Netlogon and SYSVOL shares not created after Server 2012 introduced to 2008 Domain

    Question

  • Hi there,

    I've found similar issues but not the exact same. I have recently set up two new Server 2012 Domain controllers into an existing 2008 Domain.

    Although adding the Domain server to the new C's seemed to work OK (using the new wizard without DCPROMO etc)

    * The Sysvol and Netlogon shares do not exist on either of the new Server 2012 DC's.

    * Replication does not seem to be happening. (Active directory is populated with Users and Computers etc though)

    * The domain functional level is still 2008. Results of DC Diag are below (domain name changed).

    * I have NOT upgraded the 2008 (64 bit) server as this will be demoted/decommissioned soon.

    I have read every article I can find to sort this but nothing has helped. I have flushed and registerd DNS, Stop Started DNS and Netlogon services and Checked the DNS settings (all set to themselves and another local host).

                                                                                                                                                                                                                                                       Any advice appreciated!!

    =============================
    Directory Server Diagnosis


    Performing initial setup:

       Trying to find home server...

       * Verifying that the local machine HCSHV1, is a Directory Server. 
       Home Server = HCSHV1

       * Connecting to directory service on server HCSHV1.

       * Identified AD Forest. 
       Collecting AD specific global data 
       * Collecting site info.

       Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
       The previous call succeeded 
       Iterating through the sites 
       Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local
       Getting ISTG and options for the site
       * Identifying all servers.

       Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
       The previous call succeeded....
       The previous call succeeded
       Iterating through the list of servers 
       Getting information for the server CN=NTDS Settings,CN=MYDOMAIN-EX01,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local 
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       Getting information for the server CN=NTDS Settings,CN=HCSHV1,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local 
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       Getting information for the server CN=NTDS Settings,CN=HCSHV2,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local 
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       * Identifying all NC cross-refs.

       * Found 3 DC(s). Testing 1 of them.

       Done gathering initial info.


    Doing initial required tests


       Testing server: Default-First-Site\HCSHV1

          Starting test: Connectivity

             * Active Directory LDAP Services Check
             Determining IP4 connectivity 
             * Active Directory RPC Services Check
             ......................... HCSHV1 passed test Connectivity



    Doing primary tests


       Testing server: Default-First-Site\HCSHV1

          Starting test: Advertising

             Warning: DsGetDcName returned information for

             \\MYDOMAIN-EX01.MYDOMAIN.local, when we were trying to reach HCSHV1.

             SERVER IS NOT RESPONDING or IS NOT CONSIDERED SUITABLE.

             ......................... HCSHV1 failed test Advertising

          Test omitted by user request: CheckSecurityError

          Test omitted by user request: CutoffServers

          Starting test: FrsEvent

             * The File Replication Service Event log test 
             There are warning or error events within the last 24 hours after the

             SYSVOL has been shared.  Failing SYSVOL replication problems may cause

             Group Policy problems. 
             A warning event occurred.  EventID: 0x800034FD

                Time Generated: 03/04/2013   17:39:42

                Event String:

                File Replication Service is initializing the system volume with data from another domain controller. Computer HCSHV1 cannot become a domain controller until this process is complete. The system volume will then be shared as SYSVOL. 



                To check for the SYSVOL share, at the command prompt, type: 

                net share 



                When File Replication Service completes the initialization process, the SYSVOL share will appear. 



                The initialization of the system volume can take some time. The time is dependent on the amount of data in the system volume, the availability of other domain controllers, and the replication interval between domain controllers.

             A warning event occurred.  EventID: 0x800034C4

                Time Generated: 03/04/2013   17:41:27

                Event String:

                The File Replication Service is having trouble enabling replication from MYDOMAIN-EX01.MYDOMAIN.local to HCSHV1 for c:\windows\sysvol\domain using the DNS name MYDOMAIN-EX01.MYDOMAIN.local. FRS will keep retrying. 

                 Following are some of the reasons you would see this warning. 



                 [1] FRS can not correctly resolve the DNS name MYDOMAIN-EX01.MYDOMAIN.local from this computer. 

                 [2] FRS is not running on MYDOMAIN-EX01.MYDOMAIN.local. 

                 [3] The topology information in the Active Directory Domain Services for this replica has not yet replicated to all the Domain Controllers. 



                 This event log message will appear once per connection, After the problem is fixed you will see another event log message indicating that the connection has been established.

             A warning event occurred.  EventID: 0x800034C4

                Time Generated: 03/04/2013   17:49:26

                Event String:

                The File Replication Service is having trouble enabling replication from HCSHV2 to HCSHV1 for c:\windows\sysvol\domain using the DNS name HCSHV2.MYDOMAIN.local. FRS will keep retrying. 

                 Following are some of the reasons you would see this warning. 



                 [1] FRS can not correctly resolve the DNS name HCSHV2.MYDOMAIN.local from this computer. 

                 [2] FRS is not running on HCSHV2.MYDOMAIN.local. 

                 [3] The topology information in the Active Directory Domain Services for this replica has not yet replicated to all the Domain Controllers. 



                 This event log message will appear once per connection, After the problem is fixed you will see another event log message indicating that the connection has been established.

             A warning event occurred.  EventID: 0x800034C4

                Time Generated: 03/04/2013   17:49:26

                Event String:

                The File Replication Service is having trouble enabling replication from MYDOMAIN-EX01 to HCSHV1 for c:\windows\sysvol\domain using the DNS name MYDOMAIN-EX01.MYDOMAIN.local. FRS will keep retrying. 

                 Following are some of the reasons you would see this warning. 



                 [1] FRS can not correctly resolve the DNS name MYDOMAIN-EX01.MYDOMAIN.local from this computer. 

                 [2] FRS is not running on MYDOMAIN-EX01.MYDOMAIN.local. 

                 [3] The topology information in the Active Directory Domain Services for this replica has not yet replicated to all the Domain Controllers. 



                 This event log message will appear once per connection, After the problem is fixed you will see another event log message indicating that the connection has been established.

             A warning event occurred.  EventID: 0x800034FD

                Time Generated: 03/05/2013   11:59:50

                Event String:

                File Replication Service is initializing the system volume with data from another domain controller. Computer HCSHV1 cannot become a domain controller until this process is complete. The system volume will then be shared as SYSVOL. 



                To check for the SYSVOL share, at the command prompt, type: 

                net share 



                When File Replication Service completes the initialization process, the SYSVOL share will appear. 



                The initialization of the system volume can take some time. The time is dependent on the amount of data in the system volume, the availability of other domain controllers, and the replication interval between domain controllers.

             A warning event occurred.  EventID: 0x800034C4

                Time Generated: 03/05/2013   12:01:42

                Event String:

                The File Replication Service is having trouble enabling replication from MYDOMAIN-EX01.MYDOMAIN.local to HCSHV1 for c:\windows\sysvol\domain using the DNS name MYDOMAIN-EX01.MYDOMAIN.local. FRS will keep retrying. 

                 Following are some of the reasons you would see this warning. 



                 [1] FRS can not correctly resolve the DNS name MYDOMAIN-EX01.MYDOMAIN.local from this computer. 

                 [2] FRS is not running on MYDOMAIN-EX01.MYDOMAIN.local. 

                 [3] The topology information in the Active Directory Domain Services for this replica has not yet replicated to all the Domain Controllers. 



                 This event log message will appear once per connection, After the problem is fixed you will see another event log message indicating that the connection has been established.

             A warning event occurred.  EventID: 0x800034C4

                Time Generated: 03/05/2013   12:09:39

                Event String:

                The File Replication Service is having trouble enabling replication from HCSHV2 to HCSHV1 for c:\windows\sysvol\domain using the DNS name HCSHV2.MYDOMAIN.local. FRS will keep retrying. 

                 Following are some of the reasons you would see this warning. 



                 [1] FRS can not correctly resolve the DNS name HCSHV2.MYDOMAIN.local from this computer. 

                 [2] FRS is not running on HCSHV2.MYDOMAIN.local. 

                 [3] The topology information in the Active Directory Domain Services for this replica has not yet replicated to all the Domain Controllers. 



                 This event log message will appear once per connection, After the problem is fixed you will see another event log message indicating that the connection has been established.

             A warning event occurred.  EventID: 0x800034C4

                Time Generated: 03/05/2013   12:09:42

                Event String:

                The File Replication Service is having trouble enabling replication from MYDOMAIN-EX01 to HCSHV1 for c:\windows\sysvol\domain using the DNS name MYDOMAIN-EX01.MYDOMAIN.local. FRS will keep retrying. 

                 Following are some of the reasons you would see this warning. 



                 [1] FRS can not correctly resolve the DNS name MYDOMAIN-EX01.MYDOMAIN.local from this computer. 

                 [2] FRS is not running on MYDOMAIN-EX01.MYDOMAIN.local. 

                 [3] The topology information in the Active Directory Domain Services for this replica has not yet replicated to all the Domain Controllers. 



                 This event log message will appear once per connection, After the problem is fixed you will see another event log message indicating that the connection has been established.

             ......................... HCSHV1 passed test FrsEvent

          Starting test: DFSREvent

             The DFS Replication Event Log. 
             Skip the test because the server is running FRS.

             ......................... HCSHV1 passed test DFSREvent

          Starting test: SysVolCheck

             * The File Replication Service SYSVOL ready test 
             The registry lookup failed to determine the state of the SYSVOL.  The

             error returned  was 0x0 "The operation completed successfully.".

             Check the FRS event log to see if the SYSVOL has successfully been

             shared. 
             ......................... HCSHV1 passed test SysVolCheck

          Starting test: KccEvent

             * The KCC Event log test
             Found no KCC errors in "Directory Service" Event log in the last 15 minutes.
             ......................... HCSHV1 passed test KccEvent

          Starting test: KnowsOfRoleHolders

             Role Schema Owner = CN=NTDS Settings,CN=MYDOMAIN-EX01,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local
             Role Domain Owner = CN=NTDS Settings,CN=MYDOMAIN-EX01,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local
             Role PDC Owner = CN=NTDS Settings,CN=MYDOMAIN-EX01,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local
             Role Rid Owner = CN=NTDS Settings,CN=MYDOMAIN-EX01,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local
             Role Infrastructure Update Owner = CN=NTDS Settings,CN=MYDOMAIN-EX01,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local
             ......................... HCSHV1 passed test KnowsOfRoleHolders

          Starting test: MachineAccount

             Checking machine account for DC HCSHV1 on DC HCSHV1.
             * SPN found :LDAP/HCSHV1.MYDOMAIN.local/MYDOMAIN.local
             * SPN found :LDAP/HCSHV1.MYDOMAIN.local
             * SPN found :LDAP/HCSHV1
             * SPN found :LDAP/HCSHV1.MYDOMAIN.local/MYDOMAIN
             * SPN found :LDAP/fa868127-4d35-4fef-9f39-b72d66ea75f0._msdcs.MYDOMAIN.local
             * SPN found :E3514235-4B06-11D1-AB04-00C04FC2DCD2/fa868127-4d35-4fef-9f39-b72d66ea75f0/MYDOMAIN.local
             * SPN found :HOST/HCSHV1.MYDOMAIN.local/MYDOMAIN.local
             * SPN found :HOST/HCSHV1.MYDOMAIN.local
             * SPN found :HOST/HCSHV1
             * SPN found :HOST/HCSHV1.MYDOMAIN.local/MYDOMAIN
             * SPN found :GC/HCSHV1.MYDOMAIN.local/MYDOMAIN.local
             ......................... HCSHV1 passed test MachineAccount

          Starting test: NCSecDesc

             * Security Permissions check for all NC's on DC HCSHV1.
             The forest is not ready for RODC. Will skip checking ERODC ACEs.
             * Security Permissions Check for

               DC=ForestDnsZones,DC=MYDOMAIN,DC=local
                (NDNC,Version 3)
             * Security Permissions Check for

               DC=DomainDnsZones,DC=MYDOMAIN,DC=local
                (NDNC,Version 3)
             * Security Permissions Check for

               CN=Schema,CN=Configuration,DC=MYDOMAIN,DC=local
                (Schema,Version 3)
             * Security Permissions Check for

               CN=Configuration,DC=MYDOMAIN,DC=local
                (Configuration,Version 3)
             * Security Permissions Check for

               DC=MYDOMAIN,DC=local
                (Domain,Version 3)
             ......................... HCSHV1 passed test NCSecDesc

          Starting test: NetLogons

             * Network Logons Privileges Check
             Unable to connect to the NETLOGON share! (\\HCSHV1\netlogon)

             [HCSHV1] An net use or LsaPolicy operation failed with error 67,

             The network name cannot be found..

             ......................... HCSHV1 failed test NetLogons

          Starting test: ObjectsReplicated

             HCSHV1 is in domain DC=MYDOMAIN,DC=local
             Checking for CN=HCSHV1,OU=Domain Controllers,DC=MYDOMAIN,DC=local in domain DC=MYDOMAIN,DC=local on 1 servers
                Object is up-to-date on all servers.
             Checking for CN=NTDS Settings,CN=HCSHV1,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local in domain CN=Configuration,DC=MYDOMAIN,DC=local on 1 servers
                Object is up-to-date on all servers.
             ......................... HCSHV1 passed test ObjectsReplicated

          Test omitted by user request: OutboundSecureChannels

          Starting test: Replications

             * Replications Check
             * Replication Latency Check
                DC=ForestDnsZones,DC=MYDOMAIN,DC=local
                   Latency information for 3 entries in the vector were ignored.
                      3 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's no longer replicating this nc.  0 had no latency information (Win2K DC).  
                DC=DomainDnsZones,DC=MYDOMAIN,DC=local
                   Latency information for 3 entries in the vector were ignored.
                      3 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's no longer replicating this nc.  0 had no latency information (Win2K DC).  
                CN=Schema,CN=Configuration,DC=MYDOMAIN,DC=local
                   Latency information for 3 entries in the vector were ignored.
                      3 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's no longer replicating this nc.  0 had no latency information (Win2K DC).  
                CN=Configuration,DC=MYDOMAIN,DC=local
                   Latency information for 3 entries in the vector were ignored.
                      3 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's no longer replicating this nc.  0 had no latency information (Win2K DC).  
                DC=MYDOMAIN,DC=local
                   Latency information for 3 entries in the vector were ignored.
                      3 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's no longer replicating this nc.  0 had no latency information (Win2K DC).  
             ......................... HCSHV1 passed test Replications

          Starting test: RidManager

             * Available RID Pool for the Domain is 8609 to 1073741823
             * MYDOMAIN-EX01.MYDOMAIN.local is the RID Master
             * DsBind with RID Master was successful
             * rIDAllocationPool is 7609 to 8108
             * rIDPreviousAllocationPool is 7609 to 8108
             * rIDNextRID: 7609
             ......................... HCSHV1 passed test RidManager

          Starting test: Services

             * Checking Service: EventSystem
             * Checking Service: RpcSs
             * Checking Service: NTDS
             * Checking Service: DnsCache
             * Checking Service: NtFrs
             * Checking Service: IsmServ
             * Checking Service: kdc
             * Checking Service: SamSs
             * Checking Service: LanmanServer
             * Checking Service: LanmanWorkstation
             * Checking Service: w32time
             * Checking Service: NETLOGON
             ......................... HCSHV1 passed test Services

          Starting test: SystemLog

             * The System Event log test
             Found no errors in "System" Event log in the last 60 minutes.
             ......................... HCSHV1 passed test SystemLog

          Test omitted by user request: Topology

          Test omitted by user request: VerifyEnterpriseReferences

          Starting test: VerifyReferences

             The system object reference (serverReference)

             CN=HCSHV1,OU=Domain Controllers,DC=MYDOMAIN,DC=local and backlink on

             CN=HCSHV1,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local

             are correct. 
             The system object reference (serverReferenceBL)

             CN=HCSHV1,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=MYDOMAIN,DC=local

             and backlink on

             CN=NTDS Settings,CN=HCSHV1,CN=Servers,CN=Default-First-Site,CN=Sites,CN=Configuration,DC=MYDOMAIN,DC=local

             are correct. 
             The system object reference (frsComputerReferenceBL)

             CN=HCSHV1,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=MYDOMAIN,DC=local

             and backlink on CN=HCSHV1,OU=Domain Controllers,DC=MYDOMAIN,DC=local

             are correct. 
             ......................... HCSHV1 passed test VerifyReferences

          Test omitted by user request: VerifyReplicas


          Test omitted by user request: DNS

          Test omitted by user request: DNS


       Running partition tests on : ForestDnsZones

          Starting test: CheckSDRefDom

             ......................... ForestDnsZones passed test CheckSDRefDom

          Starting test: CrossRefValidation

             ......................... ForestDnsZones passed test

             CrossRefValidation


       Running partition tests on : DomainDnsZones

          Starting test: CheckSDRefDom

             ......................... DomainDnsZones passed test CheckSDRefDom

          Starting test: CrossRefValidation

             ......................... DomainDnsZones passed test

             CrossRefValidation


       Running partition tests on : Schema

          Starting test: CheckSDRefDom

             ......................... Schema passed test CheckSDRefDom

          Starting test: CrossRefValidation

             ......................... Schema passed test CrossRefValidation


       Running partition tests on : Configuration

          Starting test: CheckSDRefDom

             ......................... Configuration passed test CheckSDRefDom

          Starting test: CrossRefValidation

             ......................... Configuration passed test CrossRefValidation


       Running partition tests on : MYDOMAIN

          Starting test: CheckSDRefDom

             ......................... MYDOMAIN passed test CheckSDRefDom

          Starting test: CrossRefValidation

             ......................... MYDOMAIN passed test CrossRefValidation


       Running enterprise tests on : MYDOMAIN.local

          Test omitted by user request: DNS

          Test omitted by user request: DNS

          Starting test: LocatorCheck

             GC Name: \\MYDOMAIN-EX01.MYDOMAIN.local

             Locator Flags: 0xe00013fd
             PDC Name: \\MYDOMAIN-EX01.MYDOMAIN.local
             Locator Flags: 0xe00013fd
             Time Server Name: \\MYDOMAIN-EX01.MYDOMAIN.local
             Locator Flags: 0xe00013fd
             Preferred Time Server Name: \\MYDOMAIN-EX01.MYDOMAIN.local
             Locator Flags: 0xe00013fd
             KDC Name: \\MYDOMAIN-EX01.MYDOMAIN.local
             Locator Flags: 0xe00013fd
             ......................... MYDOMAIN.local passed test LocatorCheck

          Starting test: Intersite

             Skipping site Default-First-Site, this site is outside the scope

             provided by the command line arguments provided. 
             ......................... MYDOMAIN.local passed test Intersite

    =============================

    Tuesday, March 05, 2013 4:10 AM

Answers

All replies