none
nltest /query Connection Status = 1311 0x51f ERROR_NO_LOGON_SERVERS

    Question

  • dear folks,

    i have a strange issue here, i have just dcpromo a new windows 2003R2 DC.

    everytime i reboot the new DC i get error when i test netlogon with

    nltest /query ---> Connection Status = 1311 0x51f ERROR_NO_LOGON_SERVERS

    nltest /dsregdns --> Connection Status = 1311 0x51f ERROR_NO_LOGON_SERVERS

    but the nltest /sc_query commands passed.

    nltest /sc_query:XXX.com ---->
    Flags: 30 HAS_IP  HAS_TIMESERV
    Trusted DC Name \\XXX.XXX.com
    Trusted DC Connection Status Status = 0 0x0 NERR_Success
    The command completed successfully

    after more than 60mins the error will be gone.

    of if i used the nltest /sc_reset:XXX.com to fix it....but it came back after a DC reboot.

     

    please advice

     

    thanks

     

    • Edited by ksc133 Monday, January 03, 2011 7:59 AM
    Monday, January 03, 2011 6:54 AM

Answers

  • yes Kerberos Key Distribution set to start AUTO and started.

    yes error

    Event Type: Error
    Event Source: KDC
    Event Category: None
    Event ID: 11
    Date:  1/11/2011
    Time:  09:44:13
    User:  N/A
    Computer: MOWDCXX
    Description:
    There are multiple accounts with name SMTPSVC/MOWXXX of type DS_SERVICE_PRINCIPAL_NAME.

    For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.


    Hello,

    please see: http://support.microsoft.com/kb/321044


    Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
    Tuesday, January 11, 2011 11:11 AM

All replies

  • dcdiag shows below

    dcdiag

    Domain Controller Diagnosis

    Performing initial setup:
       Done gathering initial info.

    Doing initial required tests

       Testing server: MOW\MOWDC02
          Starting test: Connectivity
             ......................... MOWDC02 passed test Connectivity

    Doing primary tests

       Testing server: MOW\MOWDC02
          Starting test: Replications
             REPLICATION-RECEIVED LATENCY WARNING
             MOWDC02:  Current time is 2011-01-03 09:56:42.
                DC=ForestDnsZones,DC=XXX,DC=com
                   Last replication recieved from MUMDC01 at 2011-01-02 06:16:03.
                   Last replication recieved from ATUDC01 at 2010-12-30 09:21:25.
                DC=DomainDnsZones,DC=XXX,DC=com
                   Last replication recieved from MUMDC01 at 2011-01-02 06:16:00.
                   Last replication recieved from ATUDC01 at 2010-12-30 09:21:23.
                CN=Schema,CN=Configuration,DC=XXX,DC=com
                   Last replication recieved from MUMDC01 at 2011-01-02 06:15:54.
                   Last replication recieved from ATUDC01 at 2010-12-30 09:21:17.
                CN=Configuration,DC=XXX,DC=com
                   Last replication recieved from MUMDC01 at 2011-01-02 06:15:39.
                   Last replication recieved from ATUDC01 at 2010-12-30 09:21:13.
                DC=XXX,DC=com
                   Last replication recieved from MUMDC01 at 2011-01-02 06:15:57.
                   Last replication recieved from ATUDC01 at 2010-12-30 09:21:19.
             ......................... MOWDC02 passed test Replications
          Starting test: NCSecDesc
             ......................... MOWDC02 passed test NCSecDesc
          Starting test: NetLogons
             ......................... MOWDC02 passed test NetLogons
          Starting test: Advertising
             ......................... MOWDC02 passed test Advertising
          Starting test: KnowsOfRoleHolders
             ......................... MOWDC02 passed test KnowsOfRoleHolders
          Starting test: RidManager
             ......................... MOWDC02 passed test RidManager
          Starting test: MachineAccount
             ......................... MOWDC02 passed test MachineAccount
          Starting test: Services
             ......................... MOWDC02 passed test Services
          Starting test: ObjectsReplicated
             ......................... MOWDC02 passed test ObjectsReplicated
          Starting test: frssysvol
             ......................... MOWDC02 passed test frssysvol
          Starting test: frsevent
             ......................... MOWDC02 passed test frsevent
          Starting test: kccevent
             ......................... MOWDC02 passed test kccevent
          Starting test: systemlog
             An Error Event occured.  EventID: 0x00000457
                Time Generated: 01/03/2011   09:13:28
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0x00000457
                Time Generated: 01/03/2011   09:13:28
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0x00000457
                Time Generated: 01/03/2011   09:13:29
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0x00000457
                Time Generated: 01/03/2011   09:13:29
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0x00000457
                Time Generated: 01/03/2011   09:45:17
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0x00000457
                Time Generated: 01/03/2011   09:45:18
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0x00000457
                Time Generated: 01/03/2011   09:45:18
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0x00000457
                Time Generated: 01/03/2011   09:45:18
                (Event String could not be retrieved)
             ......................... MOWDC02 failed test systemlog
          Starting test: VerifyReferences
             ......................... MOWDC02 passed test VerifyReferences

       Running partition tests on : ForestDnsZones
          Starting test: CrossRefValidation
             ......................... ForestDnsZones passed test CrossRefValidation

          Starting test: CheckSDRefDom
             ......................... ForestDnsZones passed test CheckSDRefDom

       Running partition tests on : DomainDnsZones
          Starting test: CrossRefValidation
             ......................... DomainDnsZones passed test CrossRefValidation

          Starting test: CheckSDRefDom
             ......................... DomainDnsZones passed test CheckSDRefDom

       Running partition tests on : Schema
          Starting test: CrossRefValidation
             ......................... Schema passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Schema passed test CheckSDRefDom

       Running partition tests on : Configuration
          Starting test: CrossRefValidation
             ......................... Configuration passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Configuration passed test CheckSDRefDom

       Running partition tests on : XXX
          Starting test: CrossRefValidation
             ......................... XXX passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... XXX passed test CheckSDRefDom

       Running enterprise tests on : xxx.com
          Starting test: Intersite
             ......................... xxx.com passed test Intersite
          Starting test: FsmoCheck
             ......................... xxx.com passed test FsmoCheck

    Monday, January 03, 2011 6:58 AM
  • Hello,

    how long after restart/boot do you wait to run the command? Please post an unedited ipconfig /all from it and also from the other DC/DNS of the domain.


    Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
    Monday, January 03, 2011 9:45 AM
  • hi brother

    i waited for more that 60mins....

    nltest/query and nltest/dsregdns still "errors no logon server"

    ERROR DC MOWDC02 ipconfig

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : HP NC7781 Gigabit Server Adapter
       Physical Address. . . . . . . . . : 00-17-A4-3D-31-B2
       DHCP Enabled. . . . . . . . . . . : No
       IP Address. . . . . . . . . . . . : 10.35.12.9
       Subnet Mask . . . . . . . . . . . : 255.255.254.0
       Default Gateway . . . . . . . . . : 10.35.12.254
       DNS Servers . . . . . . . . . . . : 10.35.12.9
                                           10.35.12.12
                                           10.35.12.7
       Primary WINS Server . . . . . . . : 10.35.12.9
       Secondary WINS Server . . . . . . : 10.35.12.12
                                           10.35.12.7


    the two other DC are 10.25.12.7/12

    nltest /whowill shows ERROR DC(MOWDC02) able to authenticate users

    nltest /whowill:XXX john.XXX ß shows mowdc02 able to authenticate users

    [12:37:02] Mail message 0 sent successfully (\MAILSLOT\NET\GETDC367)

    [12:37:02] Response 0: S:MOWDC02 D:XXX A:john.XXX (Act found)

    The command completed successfully

     

    C:\Documents and Settings\john.chor.adm>nltest /whowill:XXX vincent.XXX

    [12:36:06] Mail message 0 sent successfully (\MAILSLOT\NET\GETDC184)

    [12:36:06] Response 0: S:MOWDC02 D:XXX A:vincent.XXX (Act found)

    The command completed successfully

     

    Monday, January 03, 2011 10:25 AM
  • Hello,

    as you wrote "two other DC are 10.25.12.7/12" why do you use 10.35.12.12 and 10.35.12.7 on the NIC, typo or wrong set?


    Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
    Monday, January 03, 2011 10:34 AM
  • Have you tried pointing the DC in question to another DC as its primary DNS server?

    hth
    Marcin

     

    Monday, January 03, 2011 1:19 PM
  • sorry typo error

     

    the other 2 DC are  10.35.12.12 and 10.35.12.7

    Tuesday, January 04, 2011 3:58 AM
  • yes i tried to point MOWDC02 DNS to  10.35.12.12 and 10.35.12.7 instead of itself 10.35.12.9.

     

    but still nltest/query shows "error no logon server"

    Tuesday, January 04, 2011 3:59 AM
  • the issue will only go away after more than 60mins after reboot of MOWDC02 or i run nltest/sc_reset:XXX.com or netdiag /fix.

     

    but it came back after another reboot

     

    Tuesday, January 04, 2011 4:01 AM
  • Hello,

    please check the status of the following service "Kerberos Key Distribution". Is it set to automatic and started?

    Are there any errors in the event viewer when this occurs?


    Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
    Tuesday, January 04, 2011 7:36 AM
  • Is the browser service running & set to automatic.

    http://support.microsoft.com/kb/158148

     

    Check typing set on cmd & also nltest /dsgetdc:domainname & post the result.

     


    Awinish Vishwakarma | TA - DS/Exchange
    Tuesday, January 04, 2011 10:38 AM
  • yes Kerberos Key Distribution set to start AUTO and started.

    yes error

    Event Type: Error
    Event Source: KDC
    Event Category: None
    Event ID: 11
    Date:  1/11/2011
    Time:  09:44:13
    User:  N/A
    Computer: MOWDCXX
    Description:
    There are multiple accounts with name SMTPSVC/MOWXXX of type DS_SERVICE_PRINCIPAL_NAME.

    For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

    Tuesday, January 11, 2011 10:23 AM
  • C:\Documents and Settings\john.chor.adm>nltest /dsgetdc:XXX.com
               DC: \\mowdc02.XXX.com
          Address: \\10.X.X.X
         Dom Guid: 009224b7-838b-47ca-bc50-c3523b2af232
         Dom Name: XXX.com
      Forest Name: XXX.com
     Dc Site Name: MOW
    Our Site Name: MOW
            Flags: GC DS LDAP KDC TIMESERV WRITABLE DNS_DC DNS_DOMAIN DNS_FOREST CLO
    SE_SITE
    The command completed successfully

    C:\Documents and Settings\john.chor.adm>

    Tuesday, January 11, 2011 10:26 AM
  • yes Kerberos Key Distribution set to start AUTO and started.

    yes error

    Event Type: Error
    Event Source: KDC
    Event Category: None
    Event ID: 11
    Date:  1/11/2011
    Time:  09:44:13
    User:  N/A
    Computer: MOWDCXX
    Description:
    There are multiple accounts with name SMTPSVC/MOWXXX of type DS_SERVICE_PRINCIPAL_NAME.

    For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.


    Hello,

    please see: http://support.microsoft.com/kb/321044


    Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
    Tuesday, January 11, 2011 11:11 AM