We have a Domain Controller with a RPC problem. The server is running Windows Server 2003, every once in a while we get the following error in the Event log:
"This computer was not able to set up a secure session with a domain controller in domain UXOR due to the following:
The RPC server is unavailable. This may lead to authentication problems. Make sure that this computer is connected to the network. If the problem persists, please contact your domain administrator.
If this computer is a domain controller for the specified domain, it sets up the secure session to the primary domain controller emulator in the specified domain. Otherwise, this computer sets up the secure session to any domain controller in the specified domain."
This leads to some other issues with the server, e.g. the server is not able to get the correct time:
05-06-2011 10:38:14 W32Time Error None 29 N/A TOKYO The time provider NtpClient is configured to acquire time from one or more time sources, however none of the sources are currently accessible. No attempt to contact a source will be made for 15 minutes. NtpClient has no source of accurate time. 05-06-2011 10:38:14 W32Time Error None 17 N/A TOKYO Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'denver.uxor.local'. NtpClient will try the DNS lookup again in 15 minutes. The error was: No such service is known. The service cannot be found in the specified name space. (0x8007277C)
I have checked the following on the server:
1. The firewall is not blocking the RPC port
2. The RPC service is started and set to Automatic
Any help is _greatly appriciated_
Kind regards Mads Nielsen
- Changed type Tiger Li Monday, June 27, 2011 10:36 AM
Please make sure that your PDC sync time with a public NTP server and that all domain members / client computers sync time with the PDC.
Also, make sure that there is no DNS resolution problems.
Please use Microsoft Skydrive to upload the output of these commands on all DCs that you have:
ipconfig /all >c:\ipconfig.txt [from each DC/DNS Server]
dcdiag /v /c /d /e /s:dcname >c:\dcdiag.txt
repadmin /showrepl dc* /verbose /all /intersite >c:\repl.txt ["dc* is a place holder for the starting name of the DCs if they all begin the same (if more then one DC exists)]
dnslint /ad /s "DCipaddress" (http://support.microsoft.com/kb/321045)
Once done, post a link here.