locked
Windows 2012 - Direct Access | NLB Load Balanced Cluster second node not working RRS feed

  • Question

  • Hi,

    I followed the guide from TechNet (http://technet.microsoft.com/en-us/library/hh831836.aspx) but my Setup isn't working.

    Everything looked ok till I started with Step 4 (Add Edge2 to the Cluster).

    On the Edge2 DirectAccess Server GPO will applied. But the Network Load Balancing Manager shows not configuration. The Server Manager Displays Post-deployment Configuration required for DirectAccess and VPN at Edge2.

    On Edge1 Load Balanced Cluster will be displayed via the Remote Access Management Console with two nodes (edge1 and edge2)

    Operation Status:

    Edge1 working properly (all checks are ok/green)

    Edge2 Not working properly. (configuration cannot be retrieved from the Domain Controller)

    I tried to remove Edge2 from the load balanced Cluster but the commit via the gui isn't working:

    At least one available Server must remain in the Cluster. A Connection cannot be established to any Server that is not selected for the removal.

    I tried also to disable Load Balancing without success:

    Initializing operations before applying configuration
     Preparing to apply configuration changes...
     Backing up GPOs...
    Updating cluster settings
     Retrieving server GPO details...
     Opening the server GPO...
     Opening the client GPOs...
     Checking for edit permissions on the client GPOs...
     Checking for edit permissions on the server GPOs...
     Checking server availability...
     Error: The system cannot find the file specified.
    Finishing operations after applying configuration
     Information: Attempting to roll back the configuration...

    I tried get more Details via powershell:

    PS C:\Windows\system32> Get-RemoteAccessLoadBalancer -Computer edge1
    Get-RemoteAccessLoadBalancer : The system cannot find the file specified.
    At line:1 char:1
    + Get-RemoteAccessLoadBalancer
    + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        + CategoryInfo          : ObjectNotFound: (PS_RemoteAccessLoadBalancer:root/Microsoft/Windows/RemoteAccess/PS_RemoteAccessLoadBalancer) [Get-Rem
       oteAccessLoadBalancer], CimException
        + FullyQualifiedErrorId : HRESULT 80070002,Get-RemoteAccessLoadBalancer

    PS C:\Windows\system32> Remove-RemoteAccessLoadBalancerNode -RemoteAccessServer edge2

    Confirm
    Removing server edge2 from the the load balanced cluster will reduce cluster capacity and availability. Do you want
    to remove the server?
    [Y] Yes  [N] No  [S] Suspend  [?] Help (default is "Y"): y
    Remove-RemoteAccessLoadBalancerNode : The system cannot find the file specified.
    At line:1 char:1
    + Remove-RemoteAccessLoadBalancerNode -RemoteAccessServer edge2
    + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        + CategoryInfo          : ObjectNotFound: (PS_RemoteAccessLoadBalancerNode:root/Microsoft/Windows/RemoteAccess/PS_RemoteAccessLoadBalancer) [Rem
       ove-RemoteAccessLoadBalancerNode], CimException
        + FullyQualifiedErrorId : HRESULT 80070002,Remove-RemoteAccessLoadBalancerNode

    PS C:\Windows\system32> Set-RemoteAccessLoadBalancer -Disable -ComputerName edge1 -Force -Verbose
    VERBOSE: Retrieving server GPO details...
    VERBOSE: Opening the server GPO...
    VERBOSE: Opening the client GPOs...
    VERBOSE: Checking for edit permissions on the client GPOs...
    VERBOSE:  Disabling load balancing...
    VERBOSE: Checking for edit permissions on the server GPOs...
    VERBOSE: Checking server availability...
    VERBOSE: Retrieving computer details...
    Set-RemoteAccessLoadBalancer : The system cannot find the file specified.
    At line:1 char:1
    + Set-RemoteAccessLoadBalancer -Disable -ComputerName edge1 -For ...
    + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        + CategoryInfo          : ObjectNotFound: (PS_RemoteAccessLoadBalancer:root/Microsoft/Windows/RemoteAccess/PS_RemoteAccessLoadBalancer) [Set-Rem
       oteAccessLoadBalancer], CimException
        + FullyQualifiedErrorId : HRESULT 80070002,Set-RemoteAccessLoadBalancer


    • Edited by ba fdf Wednesday, October 9, 2013 11:05 AM
    Wednesday, October 9, 2013 9:05 AM

All replies

  • I too have this error - did you get anywhere with it?

    I have restored the DA config using the Backup and Restore script, however upon re-enabling the NLB cluster it automatically adds in the second node to the interface (but incorrectly).

    In addition, if I go to that node and confirm settings it tells me that it is unable to run the cmdlet as VPN or DA are not installed on NODE2.


    http://geekcroft.wordpress.com

    Wednesday, November 13, 2013 4:10 PM
  • Wednesday, July 23, 2014 12:02 PM
  • You can also try adding the computer account to the GPO for the DA Server before enabling WNLB - had a similar issue when between two firewalls outer and inner - also used power shell to enable which worked.

    john davies

    Friday, July 25, 2014 9:30 PM
  • That fix worked for me too. As soon as I deleted the offending servers AD account, I did a gpupdate /force on the remaining server and the cluster was normal again.

    Brad.

    Thursday, December 18, 2014 3:13 AM