none
Windows server 2012 r2 problém s DNS

    Dotaz

  • Dobrý den,

    mám problém na serveru 2012r2, je to hlavní server na kterém běží active directory, dns,dhcp. Nastal problém u dns, nějak se mi ztratily data z forward zone. Dá se nějak přeinstalovat dns v active directory???

    Mám starou datovou image systému pouze C:\windows\*.* šlo by z toho vytáhnout to dns?

    C:\Users\Administrator>dcdiag /fix

    Directory Server Diagnosis

    Performing initial setup:
       Trying to find home server...
       Home Server = SRV-AD
       * Identified AD Forest.
       Done gathering initial info.

    Doing initial required tests

       Testing server: Default-First-Site-Name\SRV-AD
          Starting test: Connectivity
             ......................... SRV-AD passed test Connectivity

    Doing primary tests

       Testing server: Default-First-Site-Name\SRV-AD
          Starting test: Advertising
             ......................... SRV-AD passed test Advertising
          Starting test: FrsEvent
             ......................... SRV-AD passed test FrsEvent
          Starting test: DFSREvent
             There are warning or error events within the last 24 hours after the
             SYSVOL has been shared.  Failing SYSVOL replication problems may cause
             Group Policy problems.
             ......................... SRV-AD failed test DFSREvent
          Starting test: SysVolCheck
             ......................... SRV-AD passed test SysVolCheck
          Starting test: KccEvent
             ......................... SRV-AD passed test KccEvent
          Starting test: KnowsOfRoleHolders
             ......................... SRV-AD passed test KnowsOfRoleHolders
          Starting test: MachineAccount
             ......................... SRV-AD passed test MachineAccount
          Starting test: NCSecDesc
             ......................... SRV-AD passed test NCSecDesc
          Starting test: NetLogons
             ......................... SRV-AD passed test NetLogons
          Starting test: ObjectsReplicated
             ......................... SRV-AD passed test ObjectsReplicated
          Starting test: Replications
             ......................... SRV-AD passed test Replications
          Starting test: RidManager
             ......................... SRV-AD passed test RidManager
          Starting test: Services
             ......................... SRV-AD passed test Services
          Starting test: SystemLog
             An error event occurred.  EventID: 0x00002720
                Time Generated: 02/09/2016   08:33:13
                Event String:
                The application-specific permission settings do not grant Local Acti
    vation permission for the COM Server application with CLSID
             An error event occurred.  EventID: 0x00002720
                Time Generated: 02/09/2016   08:33:13
                Event String:
                The application-specific permission settings do not grant Local Acti
    vation permission for the COM Server application with CLSID
             An error event occurred.  EventID: 0x00002720
                Time Generated: 02/09/2016   08:33:13
                Event String:
                The application-specific permission settings do not grant Local Acti
    vation permission for the COM Server application with CLSID
             A warning event occurred.  EventID: 0x000727A5
                Time Generated: 02/09/2016   08:33:14
                Event String:
                The WinRM service is not listening for WS-Management requests.
             A warning event occurred.  EventID: 0x80040020
                Time Generated: 02/09/2016   08:33:50
                Event String:
                The driver detected that the device \Device\Harddisk0\DR0 has its wr
    ite cache enabled. Data corruption may occur.
             A warning event occurred.  EventID: 0x80040020
                Time Generated: 02/09/2016   08:33:50
                Event String:
                The driver detected that the device \Device\Harddisk0\DR0 has its wr
    ite cache enabled. Data corruption may occur.
             A warning event occurred.  EventID: 0x80040020
                Time Generated: 02/09/2016   08:33:50
                Event String:
                The driver detected that the device \Device\Harddisk0\DR0 has its wr
    ite cache enabled. Data corruption may occur.
             A warning event occurred.  EventID: 0x000727AA
                Time Generated: 02/09/2016   08:34:19
                Event String:
                The WinRM service failed to create the following SPNs: WSMAN/SRV-AD.
    domain.local; WSMAN/SRV-AD.
             A warning event occurred.  EventID: 0x00002724
                Time Generated: 02/09/2016   08:34:20
                Event String:
                This computer has at least one dynamically assigned IPv6 address.For
     reliable DHCPv6 server operation, you should use only static IPv6 addresses.
             An error event occurred.  EventID: 0x00000423
                Time Generated: 02/09/2016   08:34:25
                Event String:
                The DHCP service failed to see a directory server for authorization.

             An error event occurred.  EventID: 0x00000416
                Time Generated: 02/09/2016   08:34:26
                Event String:
                The DHCP/BINL service on the local machine, belonging to the Windows
     Administrative domain todex.local, has determined that it is not authorized to
    start.  It has stopped servicing clients.  The following are some possible reaso
    ns for this:
             An error event occurred.  EventID: 0x00000423
                Time Generated: 02/09/2016   08:34:27
                Event String:
                The DHCP service failed to see a directory server for authorization.

             A warning event occurred.  EventID: 0x00001796
                Time Generated: 02/09/2016   08:34:32
                Event String:
                Microsoft Windows Server has detected that NTLM authentication is pr
    esently being used between clients and this server. This event occurs once per b
    oot of the server on the first time a client uses NTLM with this server.
             A warning event occurred.  EventID: 0x00000090
                Time Generated: 02/09/2016   08:34:33
                Event String:
                The time service has stopped advertising as a good time source.
             ......................... SRV-AD failed test SystemLog
          Starting test: VerifyReferences
             ......................... SRV-AD passed test VerifyReferences


       Running partition tests on : ForestDnsZones
          Starting test: CheckSDRefDom
             ......................... ForestDnsZones passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... ForestDnsZones passed test
             CrossRefValidation

       Running partition tests on : DomainDnsZones
          Starting test: CheckSDRefDom
             ......................... DomainDnsZones passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... DomainDnsZones passed test
             CrossRefValidation

       Running partition tests on : Schema
          Starting test: CheckSDRefDom
             ......................... Schema passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... Schema passed test CrossRefValidation

       Running partition tests on : Configuration
          Starting test: CheckSDRefDom
             ......................... Configuration passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... Configuration passed test CrossRefValidation

       Running partition tests on : domain
          Starting test: CheckSDRefDom
             ......................... domain passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... domain passed test CrossRefValidation

       Running enterprise tests on : todex.local
          Starting test: LocatorCheck
             ......................... domain.local passed test LocatorCheck
          Starting test: Intersite
             ......................... domain.local passed test Intersite


    • Upravený MarosIT 9. února 2016 8:41
    9. února 2016 8:14

Odpovědi

Všechny reakce

  • Takze se jedna o AD integrated zonu? Na dalsich DNS je take poskozena?

    MP


    P.S. co tam proboha dela 8.8.8.8 ?!?!?!  Ty kombinujes AD DNS s "internetovym / ne-AD" DNSkem? To je velke fuj!
    9. února 2016 9:23
    Moderátor
  • Takze se jedna o AD integrated zonu? Na dalsich DNS je take poskozena?

    MP


    P.S. co tam proboha dela 8.8.8.8 ?!?!?!  Ty kombinujes AD DNS s "internetovym / ne-AD" DNSkem? To je velke fuj!

    Ano jednalo se o integrovanou zonu, snad se mi ji podařilo opravit, to je tak, když člověk přebírá server po někom... Snad se mi to povedlo, akorát nevím jak se to zachovalo v replikaci na druhý server.

    C:\>dcdiag /test:dns

    Directory Server Diagnosis

    Performing initial setup:
       Trying to find home server...
       Home Server = SRV-AD
       * Identified AD Forest.
       Done gathering initial info.

    Doing initial required tests

       Testing server: Default-First-Site-Name\SRV-AD
          Starting test: Connectivity
             ......................... SRV-AD passed test Connectivity

    Doing primary tests

       Testing server: Default-First-Site-Name\SRV-AD

          Starting test: DNS

             DNS Tests are running and not hung. Please wait a few minutes...
             ......................... SRV-AD passed test DNS

       Running partition tests on : ForestDnsZones

       Running partition tests on : DomainDnsZones

       Running partition tests on : Schema

       Running partition tests on : Configuration

       Running partition tests on : domain

       Running enterprise tests on : domain.local
          Starting test: DNS
             ......................... domain.local passed test DNS

    9. února 2016 9:35
  • AD integrated se opravi / naplni po restartech domenovych radicu.

    CO TEN 8.8.8.8 ?!?!

    MP

    9. února 2016 10:11
    Moderátor
  • on ho měl nastavený na sítové kartě jako třetí DNS, smazal jsem ho a pak už ok. Nechápu proč ho tam rval
    • Upravený MarosIT 9. února 2016 10:21
    9. února 2016 10:17
  • Jeste bych pro jistotu zkontroloval

    1. jestli je system cisty - ntdsutil

    2. zda probehla spravne replikace mezi DC1 a DC2

    3. GC

    4. protokol udalosti

    DCDIAG si spuste v modu, kdy na sebe rekne vsechno /v

    M.

    10. února 2016 5:44
    Moderátor
  • Dobrý den,

    1 poradíte mi jak ověřit ??
    2 replikace probíhá v pořádku
    3 GC je taky ok
    4 jediný problém je v remote desktop services event id 20499


    10. února 2016 10:35
  • 1. Napadlo mne to pri zmince, ze to je zdedeny system. Muze tam byt ledacos a metadata cleanup je se znacnou davkou opatrnosti ten vhodny postup (s nastrojem ntdsutil). Pro inspiraci zde

    https://technet.microsoft.com/en-us/library/cc976711.aspx

    4. a. Pres regedit pridejte parameter DisableTaskOffload s hodnotou 1 typu DWORD (32-bit)

         HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters

         (Odpojte se a opet se pripojte)

         b. Varianta s prilis dlouhym presmerovanim slozky/slozek

    M. 


    10. února 2016 11:39
    Moderátor