Unable to Create Child Domain


  • I was working on a test environment and have a root forest domain and want to create a child domain the issue I am having is that when I join the new VM to the parent domain then try to promote it to a DC to create the new child domain It stops at replicating Schema Directories and the DC Promo log shows that the RPC Service is unavailable that it cant find the domain controller listed. the new dc is across a wan with its primary and seconday dns pointing to the dns servers in the root domain it is able to join the root forest but I did notice it will not pull any GPOs. but can not get it to create the child domain
    Monday, January 16, 2017 10:05 PM

All replies

  • This is either a DNS resolution issue or RPC traffic is restricted / blocked on firewall level.

    For the DNS resolution, I would advise that you try the IP settings I recommended here then force a DNS registration using ipconfig /registerdns. The link for my guide is the following:

    It also includes the ports to open and you can use PortQryUI to check them.

    This posting is provided AS IS with no warranties or guarantees , and confers no rights.

    Ahmed MALEK

    My Website Link

    My Linkedin Profile

    My MVP Profile

    Tuesday, January 17, 2017 1:30 AM
  • Hi,
    Regarding unavailable RPC error, firstly, please have a try to temporally turn off the firewall or any third party antivirus software on the server and domain controller, and check if the needed ports are opened, then see if the error disappear again when you promote server as domain controller.
    We could follow the articles as below to start troubleshooting RPC error.
    How IT Works Troubleshooting RPC Errors
    Windows Server Troubleshooting: "The RPC server is unavailable"
    Best regards,

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact

    Tuesday, January 17, 2017 8:03 AM
  • Hi

     You should verfiy the accessbility with parent and child domain side's.You can verify with PortQryUI or other network tools;

    PortQryUI ;

    check for ports;

    and details about "How Domains and Forests Work"

    This posting is provided AS IS with no warranties or guarantees,and confers no rights. Best regards Burak Uğur

    Tuesday, January 17, 2017 1:57 PM