locked
oddities to resolve in my netlogon.log RRS feed

  • General discussion

  • Good Afternoon. I am running netlogon logging on one of my domain controllers to troubleshoot some issues I am having with 5719 errors on my clients(servers).
    here is my setup:
    3 DCs
    DC1 - PDC role 2008 server
    DC2 2003 server R2 enterprise (CA)
    DC3 2003 server R2

    so I am looking at the log on DC2 and this is what I see that concerns me... (in BOLD)

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function called: Dom:DC2 Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] DsIGetDcName: Ignore single label DNS domain name DC2

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function returns 1212: Dom:DC2 Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function called: Dom:DC1.mydomain.com Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MAILSLOT] Received ping from DC2 DC1.mydomain.com (null) on <Local>

    03/30 17:01:10 [CRITICAL] Ping from DC2 for domain DC1.mydomain.com (null) for (null) on <Local> is invalid since we don't host the named domain.

    03/30 17:01:10 [CRITICAL] NetpDcGetNameIp: DC1.mydomain.com: No data returned from DnsQuery.

    03/30 17:01:10 [CRITICAL] NetpDcGetName: DC1.mydomain.com: IP and Netbios are both done.

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function returns 1355: Dom:DC1.mydomain.com Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function called: Dom:DC2 Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] DsIGetDcName: Ignore single label DNS domain name DC2

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function returns 1212: Dom:DC2 Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function called: Dom:DC1.mydomain.com Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MAILSLOT] Received ping from DC2 DC1.mydomain.com (null) on <Local>

    03/30 17:01:10 [CRITICAL] Ping from DC2 for domain DC1.mydomain.com (null) for (null) on <Local> is invalid since we don't host the named domain.

    03/30 17:01:10 [MISC] NetpDcGetName: DC1.mydomain.com similar query failed recently 46

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function returns 1355: Dom:DC1.mydomain.com Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function called: Dom:DC2 Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] DsIGetDcName: Ignore single label DNS domain name DC2

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function returns 1212: Dom:DC2 Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function called: Dom:DC3.mydomain.com Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MAILSLOT] Received ping from DC2 DC3.mydomain.com (null) on <Local>

    03/30 17:01:10 [CRITICAL] Ping from DC2 for domain DC3.mydomain.com (null) for (null) on <Local> is invalid since we don't host the named domain.

    03/30 17:01:10 [CRITICAL] NetpDcGetNameIp: DC3.mydomain.com: No data returned from DnsQuery.

    03/30 17:01:10 [CRITICAL] NetpDcGetName: DC3.mydomain.com: IP and Netbios are both done.

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function returns 1355: Dom:DC3.mydomain.com Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function called: Dom:DC2 Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] DsIGetDcName: Ignore single label DNS domain name DC2

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function returns 1212: Dom:DC2 Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function called: Dom:DC3.mydomain.com Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    03/30 17:01:10 [MAILSLOT] Received ping from DC2 DC3.mydomain.com (null) on <Local>

    03/30 17:01:10 [CRITICAL] Ping from DC2 for domain DC3.mydomain.com (null) for (null) on <Local> is invalid since we don't host the named domain.

    03/30 17:01:10 [MISC] NetpDcGetName: DC3.mydomain.com similar query failed recently 16

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function returns 1355: Dom:DC3.mydomain.com Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS


    here is what I know/what I have done so far:
    ping dc1 dc2 and dc3 all are good... all resolve and ping using netbios and fqdn
    ping -a dc1 dc2 dc3 all resolve ping by IP address
    nltest /dsgetdc:mydomain.com run on dc2 returns:
               DC: \\dc2.mydomain.com
          Address: \\192.168.104.20
         Dom Guid: 8cac2fde-c52c-4e54-93a6-5510b4b61476
         Dom Name: mydomain.com
      Forest Name: mydomain.com
     Dc Site Name: Default-First-Site-Name
    Our Site Name: Default-First-Site-Name
            Flags: DS LDAP KDC TIMESERV GTIMESERV WRITABLE DNS_DC DNS_DOMAIN DNS_FOR
    EST CLOSE_SITE
    The command completed successfully

    other nltest queries look good as well. trust, secure channel - all that.

    I just can't figure out what is happening here. why the ping errors that we don't host the named domain - yet we DO host the domain and it IS pingable?
    Why the 1355 errors (which I think means domain doesn't exist)? It seems to be querying  for the domain dc2.mydomain.com - but my domain name is mydomain.com - why is is querying for the domain controller? I thought it might be looking for the PDC but that is dc1.mydomain.com and it doesn't like that one either!

    Now netlogon is working ok and processing requests correctly for the moment. I think my 5719 is related to network communication - but I keep seeing these other errors and want to get them worked out as well.

    I normally google until my fingers fall off looking for answers but google has been very little help with this issue so any direction you can give will be helpful.

    Thanks in advance...
    Monday, March 30, 2009 9:22 PM

All replies

  • Howdie!

    What does the DNS configuration on DC2 look like? Can you use nslookup and target it to use DC2 as the server for resolving queries? Can you resolve the domain as well as the fully qualified domain names of all DCs?

    A client doesn't look for the PDC for authentication/logon. It actually looks at what site it is in and queries DNS for DCs in the same site. It would then ask any random DC (given there is no priority set in DNS and they are in the same site) for authentication.

    Cheers,
    Florian
    Microsoft MVP - Group Policy -- blog: http://www.frickelsoft.net/blog
    Tuesday, March 31, 2009 6:33 AM
  • What does the DNS configuration on DC2 look like?

    The DNS on DC2 is this:
    primary: pointing to itself
    secondary: pointing to DC3

    My DC2 has two NICS but one of them is unregistered/never registered in DNS  using KB292822 -Not ideal for a DNS on a DC - but necessary until I can get some more boxes.


    Can you use nslookup and target it to use DC2 as the server for resolving queries? Can you resolve the domain as well as the fully qualified domain names of all DCs?

    using nslookup server=dc2:
    query - result

    mydomain.com - 192.168.104.20 192.168.104.21 192.168.100.74  (we have two sites - DC2 is in the 104 subnet site - DC3 is in 100 site)

    dc1.mydomain.com - 192.168.104.21
    dc2.mydomain.com - 192.168.104.20
    dc3.mydomain.com - 192.168.100.74

    site1 = dc1 and dc2
    site2 = dc3

    replication is working properly - although it is slow.

    Any clues you can provide are appreciated. I can feel my hair turning gray trying to ferret out these issues!

    Here is the connection info from netlogon.log gathered after restarting the netlogon service... I am pretty sure it is connecting properly:

    03/31 09:40:17 [MISC] NlExit: Netlogon exiting 0 0x0

    03/31 09:40:17 [DOMAIN] MYDOMAIN: NlDeleteDomain called

    03/31 09:40:17 [DOMAIN] MYDOMAIN: Domain RefCount is zero. Domain being rundown.

    03/31 09:40:17 [DOMAIN] ForestDnsZones.Mydomain.com: NlDeleteDomain called

    03/31 09:40:17 [DOMAIN] ForestDnsZones.Mydomain.com: Domain RefCount is zero. Domain being rundown.

    03/31 09:40:17 [DOMAIN] NlDeleteDomain called

    03/31 09:40:17 [DOMAIN] Domain RefCount is zero. Domain being rundown.

    03/31 09:40:17 [SITE] 192.168.100.0/24: Subnet deleted

    03/31 09:40:17 [SITE] 192.168.104.0/22: Subnet deleted

    03/31 09:40:17 [SITE] Setting site name to '(null)'

    03/31 09:40:19 [INIT] Group Policy is not defined for Netlogon

    03/31 09:40:19 [INIT] Following are the effective values after parsing

    03/31 09:40:19 [INIT]    Sysvol = C:\WINDOWS\SYSVOL\sysvol

    03/31 09:40:19 [INIT]    Scripts = (null)

    03/31 09:40:19 [INIT]    RpcDacl = (null)

    03/31 09:40:19 [INIT]    SiteName (0) = Default-First-Site-Name

    03/31 09:40:19 [INIT]    Pulse = 300 (0x12c)

    03/31 09:40:19 [INIT]    Randomize = 1 (0x1)

    03/31 09:40:19 [INIT]    PulseMaximum = 7200 (0x1c20)

    03/31 09:40:19 [INIT]    PulseConcurrency = 10 (0xa)

    03/31 09:40:19 [INIT]    PulseTimeout1 = 10 (0xa)

    03/31 09:40:19 [INIT]    PulseTimeout2 = 300 (0x12c)

    03/31 09:40:19 [INIT]    MaximumMailslotMessages = 500 (0x1f4)

    03/31 09:40:19 [INIT]    MailslotMessageTimeout = 10 (0xa)

    03/31 09:40:19 [INIT]    MailslotDuplicateTimeout = 2 (0x2)

    03/31 09:40:19 [INIT]    ExpectedDialupDelay = 0 (0x0)

    03/31 09:40:19 [INIT]    ScavengeInterval = 900 (0x384)

    03/31 09:40:19 [INIT]    MaximumPasswordAge = 30 (0x1e)

    03/31 09:40:19 [INIT]    LdapSrvPriority = 0 (0x0)

    03/31 09:40:19 [INIT]    LdapSrvWeight = 100 (0x64)

    03/31 09:40:19 [INIT]    LdapSrvPort = 389 (0x185)

    03/31 09:40:19 [INIT]    LdapGcSrvPort = 3268 (0xcc4)

    03/31 09:40:19 [INIT]    KdcSrvPort = 88 (0x58)

    03/31 09:40:19 [INIT]    KerbIsDoneWithJoinDomainEntry = 0 (0x0)

    03/31 09:40:19 [INIT]    DnsTtl = 600 (0x258)

    03/31 09:40:19 [INIT]    DnsRefreshInterval = 86400 (0x15180)

    03/31 09:40:19 [INIT]    CloseSiteTimeout = 900 (0x384)

    03/31 09:40:19 [INIT]    SiteNameTimeout = 300 (0x12c)

    03/31 09:40:19 [INIT]    DuplicateEventlogTimeout = 14400 (0x3840)

    03/31 09:40:19 [INIT]    MaxConcurrentApi = 0 (0x0)

    03/31 09:40:19 [INIT]    NegativeCachePeriod = 45 (0x2d)

    03/31 09:40:19 [INIT]    BackgroundRetryInitialPeriod = 600 (0x258)

    03/31 09:40:19 [INIT]    BackgroundRetryMaximumPeriod = 3600 (0xe10)

    03/31 09:40:19 [INIT]    BackgroundRetryQuitTime = 0 (0x0)

    03/31 09:40:19 [INIT]    BackgroundSuccessfulRefreshPeriod = 4294967295 (0xffffffff)

    03/31 09:40:19 [INIT]    NonBackgroundSuccessfulRefreshPeriod = 1800 (0x708)

    03/31 09:40:19 [INIT]    DnsFailedDeregisterTimeout = 172800 (0x2a300)

    03/31 09:40:19 [INIT]    MaxLdapServersPinged = 55 (0x37)

    03/31 09:40:19 [INIT]    SiteCoverageRefreshInterval = 3600 (0xe10)

    03/31 09:40:19 [INIT]    FtInfoUpdateInterval = 86400 (0x15180)

    03/31 09:40:19 [INIT]    DBFlag = 545325055 (0x2080ffff)

    03/31 09:40:19 [INIT]    MaximumLogFileSize = 20000000 (0x1312d00)

    03/31 09:40:19 [INIT]    RefusePasswordChange = FALSE

    03/31 09:40:19 [INIT]    AllowReplInNonMixed = FALSE

    03/31 09:40:19 [INIT]    AvoidSamRepl = TRUE

    03/31 09:40:19 [INIT]    AvoidLsaRepl = TRUE

    03/31 09:40:19 [INIT]    SignSecureChannel = TRUE

    03/31 09:40:19 [INIT]    SealSecureChannel = TRUE

    03/31 09:40:19 [INIT]    RequireSignOrSeal = TRUE

    03/31 09:40:19 [INIT]    RequireStrongKey = FALSE

    03/31 09:40:19 [INIT]    SysVolReady = TRUE

    03/31 09:40:19 [INIT]    UseDynamicDns = TRUE

    03/31 09:40:19 [INIT]    RegisterDnsARecords = FALSE

    03/31 09:40:19 [INIT]    AvoidPdcOnWan = FALSE

    03/31 09:40:19 [INIT]    AutoSiteCoverage = TRUE

    03/31 09:40:19 [INIT]    AvoidDnsDeregOnShutdown = TRUE

    03/31 09:40:19 [INIT]    DnsUpdateOnAllAdapters = FALSE

    03/31 09:40:19 [INIT]    Nt4Emulator = FALSE

    03/31 09:40:19 [INIT]    DisablePasswordChange = FALSE

    03/31 09:40:19 [INIT]    NeutralizeNt4Emulator = TRUE

    03/31 09:40:19 [INIT]    AllowSingleLabelDnsDomain = FALSE

    03/31 09:40:19 [INIT]    AllowExclusiveSysvolShareAccess = FALSE

    03/31 09:40:19 [INIT]    AllowExclusiveScriptsShareAccess = FALSE

    03/31 09:40:19 [INIT]    AvoidLocatorAccountLookup = FALSE

    03/31 09:40:19 [INIT]    NeverPing = FALSE

    03/31 09:40:19 [INIT] Command line parsed successfully ...

    03/31 09:40:19 [SITE] Setting site name to 'Default-First-Site-Name'

    03/31 09:40:19 [SITE] Adding subnet to site mappings from the DS

    03/31 09:40:19 [SITE] 192.168.100.0/24: Site Internal100Network is not site this DC is in.

    03/31 09:40:19 [SITE] 192.168.100.0/24: Adding Subnet for site 'Internal100Network'

    03/31 09:40:19 [SITE] 192.168.104.0/22: Adding Subnet for site 'Default-First-Site-Name'

    03/31 09:40:19 [SESSION] Winsock Addrs: 192.168.104.20 192.168.100.73 (2)

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsLdap: _ldap._tcp.Mydomain.com. 600 IN SRV 0 100 389 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsLdapAtSite: _ldap._tcp.Default-First-Site-Name._sites.Mydomain.com. 600 IN SRV 0 100 389 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsDcByGuid: _ldap._tcp.8cac2fde-c52c-4e54-93a6-5510b4b61476.domains._msdcs.Mydomain.com. 600 IN SRV 0 100 389 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsDsaCname: 84b889ee-2195-4db1-a016-49e9db7c25c8._msdcs.Mydomain.com. 600 IN CNAME DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsKdc: _kerberos._tcp.dc._msdcs.Mydomain.com. 600 IN SRV 0 100 88 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsKdcAtSite: _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.Mydomain.com. 600 IN SRV 0 100 88 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsDc: _ldap._tcp.dc._msdcs.Mydomain.com. 600 IN SRV 0 100 389 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsDcAtSite: _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.Mydomain.com. 600 IN SRV 0 100 389 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsRfc1510Kdc: _kerberos._tcp.Mydomain.com. 600 IN SRV 0 100 88 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsRfc1510KdcAtSite: _kerberos._tcp.Default-First-Site-Name._sites.Mydomain.com. 600 IN SRV 0 100 88 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsRfc1510UdpKdc: _kerberos._udp.Mydomain.com. 600 IN SRV 0 100 88 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsRfc1510Kpwd: _kpasswd._tcp.Mydomain.com. 600 IN SRV 0 100 464 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsRfc1510UdpKpwd: _kpasswd._udp.Mydomain.com. 600 IN SRV 0 100 464 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsLdap: _ldap._tcp.ForestDnsZones.Mydomain.com. 600 IN SRV 0 100 389 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsLdapAtSite: _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.Mydomain.com. 600 IN SRV 0 100 389 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsLdap: _ldap._tcp.DomainDnsZones.Mydomain.com. 600 IN SRV 0 100 389 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] NlDnsInitialize: Previously registered name noticed: NlDnsLdapAtSite: _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.Mydomain.com. 600 IN SRV 0 100 389 DC2.Mydomain.com.

    03/31 09:40:19 [DNS] Set DnsForestName to: Mydomain.com

    03/31 09:40:19 [DOMAIN] MYDOMAIN: Adding new domain

    03/31 09:40:19 [DOMAIN] Setting our computer name to DC2 DC2.Mydomain.com

    03/31 09:40:19 [DOMAIN] Setting Netbios domain name to MYDOMAIN

    03/31 09:40:19 [DOMAIN] Setting DNS domain name to Mydomain.com.

    03/31 09:40:19 [DOMAIN] Setting Domain GUID to 8cac2fde-c52c-4e54-93a6-5510b4b61476

    03/31 09:40:19 [DOMAIN] Create domain phase 2

    03/31 09:40:19 [DOMAIN] Changing role from NONE to BDC.

    03/31 09:40:19 [MAILSLOT] NetpDcPingListIp: Mydomain.com.: Sent UDP ping to 192.168.104.21

    03/31 09:40:19 [SESSION] MYDOMAIN: NlSetStatusClientSession: Set connection status to c000005e

    03/31 09:40:19 [SESSION] NlInitTrustList: This domain has no parent in forest.

    03/31 09:40:19 [SESSION] NlAddDomainTreeToTrustList: Mydomain.com ignoring enterprise tree entry for ourself

    03/31 09:40:19 [DOMAIN] ForestDnsZones.Mydomain.com: Adding new domain

    03/31 09:40:19 [DOMAIN] (null): Setting our computer name to DC2 DC2.Mydomain.com

    03/31 09:40:19 [DOMAIN] (null): Setting DNS domain name to ForestDnsZones.Mydomain.com

    03/31 09:40:19 [DOMAIN] ForestDnsZones.Mydomain.com: Setting Domain GUID to ed5d0d8c-e86f-4fcf-a640-ea35cb61de9e

    03/31 09:40:19 [DOMAIN] DomainDnsZones.Mydomain.com: Adding new domain

    03/31 09:40:19 [DOMAIN] (null): Setting our computer name to DC2 DC2.Mydomain.com

    03/31 09:40:19 [DOMAIN] (null): Setting DNS domain name to DomainDnsZones.Mydomain.com

    03/31 09:40:19 [DOMAIN] DomainDnsZones.Mydomain.com: Setting Domain GUID to 3447e552-3910-4d41-a8d5-61dfb156407b

    03/31 09:40:19 [CRITICAL] NlUpdateDnsRootAlias: Ignoring DnsDomainNameAlias update for same alias name: (null) (null)

    03/31 09:40:19 [CRITICAL] NlUpdateDnsRootAlias: Ignoring DnsForestNameAlias update for same alias name: (null) (null)

    03/31 09:40:19 [MISC] NlpInitializeTrace succeeded 0

    03/31 09:40:19 [INIT] 'SYSVOL' share is to 'C:\WINDOWS\SYSVOL\sysvol'

    03/31 09:40:19 [INIT] 'SYSVOL' share already exists.

    03/31 09:40:19 [INIT] 'SYSVOL' share current path is C:\WINDOWS\SYSVOL\sysvol

    03/31 09:40:19 [INIT] 'NETLOGON' share is to 'C:\WINDOWS\SYSVOL\sysvol\Mydomain.com\SCRIPTS'

    03/31 09:40:19 [INIT] 'NETLOGON' share already exists.

    03/31 09:40:19 [INIT] 'NETLOGON' share current path is C:\WINDOWS\SYSVOL\sysvol\Mydomain.com\SCRIPTS

    03/31 09:40:19 [INIT] Starting RPC server.

    03/31 09:40:19 [INIT] NlInitTcpRpc thread finished.

    03/31 09:40:19 [INIT] Started successfully

    03/31 09:40:19 [INIT] Group Policy is not defined for Netlogon

    03/31 09:40:19 [INIT] Following are the effective values after parsing

    03/31 09:40:19 [DNS] NlDnsScavenge: Starting DNS scavenge with: Normal RefreshDomainRecords 0 0

    03/31 09:40:19 [SITE] DC list: Internal100Network DC3.Mydomain.com

    03/31 09:40:19 [SITE] DC list: Default-First-Site-Name DC2.Mydomain.com

    03/31 09:40:19 [SITE] DC list: Default-First-Site-Name DC1.Mydomain.com

    03/31 09:40:19 [MISC] NlSitesGetCloseSites returns successfully

    03/31 09:40:19 [MISC] NlSitesGetCloseSites returns successfully

    03/31 09:40:19 [SITE] NDNC list: Internal100Network MYDOMAINdcb.Mydomain.com

    03/31 09:40:19 [SITE] NDNC list: Default-First-Site-Name DC2.Mydomain.com

    03/31 09:40:19 [SITE] NDNC list: Default-First-Site-Name DC1.Mydomain.com

    03/31 09:40:19 [MISC] NlSitesGetCloseSites returns successfully

    03/31 09:40:19 [MISC] NlSitesGetCloseSites returns successfully

    03/31 09:40:19 [SITE] NDNC list: Internal100Network MYDOMAINdcb.Mydomain.com

    03/31 09:40:19 [SITE] NDNC list: Default-First-Site-Name DC2.Mydomain.com

    03/31 09:40:19 [SITE] NDNC list: Default-First-Site-Name DC1.Mydomain.com

    03/31 09:40:19 [MISC] NlSitesGetCloseSites returns successfully

    03/31 09:40:19 [MISC] NlSitesGetCloseSites returns successfully

    03/31 09:40:19 [DNS] NlDnsScavengeWorker: Set DNS scavenger to run in 6 minutes (301953).

    03/31 09:40:23 [MISC] In control handler (Opcode: 4)

    03/31 09:40:25 [LOGON] MYDOMAIN: SamLogon: Generic logon of MYDOMAIN.COM\(null) from (null) Package:Kerberos Entered

    03/31 09:40:25 [LOGON] MYDOMAIN: SamLogon: Generic logon of MYDOMAIN.COM\(null) from (null) Package:Kerberos Returns 0x0


    Tuesday, March 31, 2009 1:54 PM
  • Hi,

    This issue may occur if you use a 1-GB network adapter and the Netlogon service starts before the network is ready. Please try to refer to the suggestions in the following article or just ignore this error if there is no other errors.

    Event ID 5719 is logged when you start a computer on a domain, and the computer is running Windows Server 2003, Windows XP, or Windows 2000
    http://support.microsoft.com/kb/938449

    This issue may also occur because link status fluctuates as the network adapter (also known as the network interface card, or NIC) driver initializes and as the network adapter hardware negotiates a link with the network infrastructure. The Group Policy application stack executes before the negotiation process is completed and can fail because of the absence of a valid link.

    Cannot connect to domain controller and cannot apply Group Policy with Gigabit Ethernet devices
    http://support.microsoft.com/default.aspx?scid=kb;EN-US;326152

    Try the following suggestions to disable Media Sensing to test.

    How to disable the Media Sensing feature for TCP/IP in Windows
    http://support.microsoft.com/kb/239924/

    If the issue persists, please help to collect MPS Report on problematic computers for troubleshooting.

    A.    Download MPS Reporting Tool (MPSRPT_PFE.EXE) from the following link:
    (http://www.microsoft.com/downloads/details.aspx?FamilyID=00ad0eac-720f-4441-9ef6-ea9f657b5c2f&DisplayLang=en)

    Please note: The link may be truncated when you read the E-mail. Be sure to include all text between '(' and ')' when navigating to the download location.

    B . Right click MPSRPT_PFE.EXE and select Run as Administrator to run this tool, and you will see a Command Window start up.

    C . Please type Y with the message of <Include the MSINFO32 report? (defaults to Y in 15 seconds)[Y,N]?

    D . When the tool is done you will see an Explorer Window opening up the %systemroot%\MPSReports\Setup\Reports\cab folder and containing a <Computername>MPSReports.cab file. After collecting, please use Windows Live SkyDrive (http://www.skydrive.live.com/) to upload the file and then give me the download address.

    Thanks.

    This posting is provided "AS IS" with no warranties, and confers no rights.
    Wednesday, April 1, 2009 12:59 AM
  • Howdie!

    I'm sorry for asking a stupid question but - is that only happening on machine restart (DC2)? If so, can you switch the two DNS servers in the DC's network config (primary: DC3, secondary: Dc2)?

    Cheers,
    Florian
    Microsoft MVP - Group Policy -- blog: http://www.frickelsoft.net/blog
    Wednesday, April 1, 2009 5:59 AM
  • Howdie!

    I'm sorry for asking a stupid question but - is that only happening on machine restart (DC2)? If so, can you switch the two DNS servers in the DC's network config (primary: DC3, secondary: Dc2)?

    Cheers,
    Florian
    Microsoft MVP - Group Policy -- blog: http://www.frickelsoft.net/blog


    No, the 5719 error is happening on my clients long after the boot/restart. I am aware that I may get the 5719 error on restart.
    And the 5719 is happening on a client machine. This is the netlogon.log from my domain controller.
    I am trying to troubleshoot why I am getting the 5719. It points to some kind of communication problem and my first thought was DNS problems. That is why I am concerned when I see these errors in the netlogon.log on the domain controller:

    03/30 17:01:10 [CRITICAL] Ping from DC2 for domain DC1.mydomain.com (null) for (null) on <Local> is invalid since we don't host the named domain.

    03/30 17:01:10 [CRITICAL] NetpDcGetNameIp: DC1.mydomain.com: No data returned from DnsQuery.

    03/30 17:01:10 [MISC] MYDOMAIN: DsGetDcName function returns 1355: Dom:DC1.mydomain.com Acct:(null) Flags: WRITABLE LDAPONLY DNS RET_DNS

    I will look at the suggestions from Marvyn and see if he can help any. These errors just seem extremely odd and happen all day long - not just when I restart the machine or restart the netlogon service.
    I would think that they are flagged CRITICAL for a reason? I feel like I have jumped through every hoop except tearing down my entire DNS/DC infrastructure to get these to go away. Although I am sure there are always other things to try and I am open to other ideas as well!

    Wednesday, April 1, 2009 2:09 PM
  • Hi,

    I have the same problem on my 2008 R2 DC. Did you manage to find a solution?

    Monday, May 14, 2012 3:02 PM
  • This is very old thread, my suggestion is just raise your own thread with the necessary details of the issue and the environment.

    Thanks for understanding.


    Awinish Vishwakarma - MVP - Directory Services

    My Blog: awinish.wordpress.com

    Disclaimer This posting is provided AS-IS with no warranties/guarantees and confers no rights.

    Monday, May 14, 2012 3:51 PM
  • Did you get any solution to this issue within your 2008R2 DCs?
    Wednesday, March 26, 2014 10:52 PM