none
Can't create child domain

    Question

  • I have searched the internet and found several individuals who are having the same issue, but can't seem to find any answers to the problem.  The problem is a DNS error code that I am receiving when I try and add a child domain  to an existing domain.  Here is the complete error I receive:

     

    The domain name *********** might be a NetBIOS domain name.  If this is the case, verify that the domain name is properly registered with WINS.

    If you are certain that the name is not a NetBIOS domain name, then the following information can help you troubleshoot your DNS configuration.

    The following error occurred when DNS was queried for the service location (SRV) resource record used to locate a domain controller for domain **********:

    The error was: "DNS name does not exist."
    (error code 0x0000232B RCODE_NAME_ERROR)

    The query was for the SRV record for _ldap._tcp.dc._msdcs.**********

    Common causes of this error include the following:

    - The DNS SRV records required to locate a domain controller for the domain are not registered in DNS. These records are registered with a DNS server automatically when a domain controller is added to a domain. They are updated by the domain controller at set intervals. This computer is configured to use DNS servers with following IP addresses:

    192.168.168.5

    - One or more of the following zones do not include delegation to its child zone:

    **********
    . (the root zone)

    For information about correcting this problem, click Help.

     

    (I've blanked out the actual domain name)

    Steps I followed to get to this point. 

    1.  Installed Win2k3 R2 on 2 machines

    2.  Installed DNS (Primary Zone) on machine designated to be the top level Domain Controller.  Created "A" and NS records for both machines that I intend to be DC's for the domains

    3.  Installed DNS (Secondary Zone) on machine designated to be child Domain Controller.  Verified that a DNS Zone Transfer took place.

    4.  Tested DNS from both machines to see if I could ping by IP, NETBIOS and FQDN (test was successful.

    5.  Promoted 1st Domain Controller.  After promotion, rechecked DNS on second proposed DC to see if new information had been transfered to second machine and it was.

    6.  Tried to promote Child Domain Controller and received the above error.

     

    The child domain machine is at an offsite location connected to the home office via a VPN tunnel.  But, I don't see how that can keep the server from being promoted since I can ping along the VPN in either direction and have the request resolved.  The machines are in two different time zones also, but I have them synchronized to a central time clock.

     

    The IP address listed in the error code is the IP address of my primary DNS Server/Domain Controller.

    The two statements in the error code that baffle me are:

    1.  The error was: "DNS name does not exist."
    2.  One or more of the following zones do not include delegation to its child zone:

    **********
    . (the root zone)

    The DNS Name does exist and I have set up the zone to transfer to any server.

     

    Does anyone have a tip or solution to this issue?  If so, I would greatly appreciate any help as I've spent 2 days on this and seem to be getting no where.

     

    Thanks,

    Tuesday, October 03, 2006 5:29 PM

Answers

  • you try nslookup command on child domain whether it is resolving name or not.

    if in nslookup dns address is resolving/showing correctly.

    Try mention Below.

     

    1.NetBIOS over TCP (NetBT) is disabled on Windows server, and you are using the NetBT

    2.domain name when you try to add the computer.change the time must be first as  according to the server.

    3.This operation returned because the timeout period expired(INCREASE THE TTL). 

    Saturday, October 07, 2006 8:42 PM

All replies

  • you try nslookup command on child domain whether it is resolving name or not.

    if in nslookup dns address is resolving/showing correctly.

    Try mention Below.

     

    1.NetBIOS over TCP (NetBT) is disabled on Windows server, and you are using the NetBT

    2.domain name when you try to add the computer.change the time must be first as  according to the server.

    3.This operation returned because the timeout period expired(INCREASE THE TTL). 

    Saturday, October 07, 2006 8:42 PM
  • nslookup

    Set d2

    www.google.com.sg


    Guowen Su
    Cisco Certified Network Associate
    Cisco Certified Internetwork professional - MPLS
    Certified Information Systems Security Professional
    Microsoft Partner Network 2011
    Microsoft Certified Professional
    Microsoft Certified Systems Administrator:Security
    Microsoft Certified Systems Engineer: Security
    Microsoft Certified Technology Specialist: Windows Server 2008 Active Directory, Configuration
    Microsoft Certified Technology Specialist: Windows Server 2008 Network Infrastructure, Configuration
    Microsoft Certified Technology Specialist: Windows Server 2008 Applications Infrastructure, Configuration
    Microsoft Certified Technology Specialist: Windows 7, Configuring
    Microsoft Certified IT Professional: Enterprise Administrator
    Microsoft Certified IT Professional: Server Administrator
    Certified Ethical Hacker
    Computer Hacking Forensics Investigator
    Certified Sonicwall Security Administrator
    Microsoft Geeks

    Tuesday, June 19, 2012 3:29 AM