none
Error while Joining Desktop to Domain

    Question

  • Hi

    we have windows server 2008 R2 domain network. Previously some issue in <g class="gr_ gr_195 gr-alert gr_gramm gr_run_anim Grammar only-ins doubleReplace replaceWithoutSep" data-gr-id="195" id="195">domain</g> so we decide to re-install active directory and DNS (example Previously domain was abconline.com and now <g class="gr_ gr_196 gr-alert gr_gramm gr_run_anim Grammar only-ins replaceWithoutSep" data-gr-id="196" id="196">domain</g> is abc.com) also install AD and <g class="gr_ gr_199 gr-alert gr_gramm gr_run_anim Style multiReplace" data-gr-id="199" id="199">DNS ,</g> <g class="gr_ gr_175 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del multiReplace" data-gr-id="175" id="175">nslookup</g> is working but.

    we have dis-join Desktop from <g class="gr_ gr_350 gr-alert gr_gramm gr_run_anim Grammar only-ins replaceWithoutSep" data-gr-id="350" id="350">old</g> domain and make in <g class="gr_ gr_335 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del multiReplace" data-gr-id="335" id="335">Wrokgroup</g>.

    now when we try to join any <g class="gr_ gr_451 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del multiReplace" data-gr-id="451" id="451">pc</g> it showing <g class="gr_ gr_658 gr-alert gr_gramm gr_run_anim Style multiReplace" data-gr-id="658" id="658">error ,</g> but <g class="gr_ gr_570 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del multiReplace" data-gr-id="570" id="570">nslookup</g> working fine on <g class="gr_ gr_655 gr-alert gr_gramm gr_run_anim Grammar only-ins replaceWithoutSep" data-gr-id="655" id="655">desktop</g> still not able to join in <g class="gr_ gr_656 gr-alert gr_gramm gr_run_anim Grammar only-ins doubleReplace replaceWithoutSep" data-gr-id="656" id="656">domain</g>.

    Any help will highly appreciate.


    Arvind

    • Moved by nzpcmad1 Thursday, February 2, 2017 7:07 PM From ADFS
    Thursday, February 2, 2017 1:06 PM

All replies

  • Hi Arvind,

    The machine or the server that you are trying to join to the domain, Have you mentioned the DC IP address under DNS 

    In Run > Type  NCPA.CPL > Open the network properties that you are connected to (Wireless or Wired) > Open IPV4 settings > Under Use the following DNS server address > Type the IP address of the Domain controller i.e. Preferred dns server (Should be pointing to the Domain controller IP address 

    Your description is not clear you might want to edit the info as well 

    Hope this helps 



    • Edited by Akabe Thursday, February 2, 2017 1:14 PM
    • Proposed as answer by Wendy JiangModerator Monday, February 13, 2017 9:51 AM
    Thursday, February 2, 2017 1:13 PM
  • already Preferred DNS Server IP is the domain controller IP 

    Arvind

    Thursday, February 2, 2017 1:16 PM
  • As checked in more details.

    The following error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain "mgh.com":

    The error was: "DNS name does not exist."
    (error code 0x0000232B RCODE_NAME_ERROR)

    The query was for the SRV record for _ldap._tcp.dc._msdcs.mgh.com

    Common causes of this error include the following:

    - The DNS SRV records required to locate a AD DC for the domain are not registered in DNS. These records are registered with a DNS server automatically when a AD DC is added to a domain. They are updated by the AD DC at set intervals. This computer is configured to use DNS servers with the following IP addresses:


    8.2.2.2
    192.168.1.5

    - One or more of the following zones do not include delegation to its child zone:

    mgh.com
    com
    . (the root zone)


    Arvind

    Thursday, February 2, 2017 1:20 PM
  • What if you try to set the Primary DNS suffix of this computer

    My computer > Properties >Computer name > "To rename this computer"  click on Change button > It will pop up a new windows > Navigate to More > Primary DNS suffix of this computer > Domain.com

    Thursday, February 2, 2017 1:30 PM
  • after adding DNS Suffix and try to join in domain , have same error.

    Arvind

    Thursday, February 2, 2017 1:37 PM
  • Are you able to ping DC ip from the machine and vice versa
    • Edited by Akabe Thursday, February 2, 2017 1:42 PM
    Thursday, February 2, 2017 1:42 PM
  • yes, ping from server and desktop side and <g class="gr_ gr_57 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del multiReplace" data-gr-id="57" id="57">nslookup</g> also working fine

    Arvind

    Thursday, February 2, 2017 1:43 PM
  • In ADDS > Under Computer object container > add the client machine > Then try to add the pc to the domain
    Thursday, February 2, 2017 1:48 PM
  • Yes, tried but <g class="gr_ gr_11 gr-alert gr_gramm gr_run_anim Grammar only-ins replaceWithoutSep" data-gr-id="11" id="11">same</g> issue,

    can you check below <g class="gr_ gr_172 gr-alert gr_gramm gr_run_anim Punctuation multiReplace" data-gr-id="172" id="172">error.</g>

    The following error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain "mgh.com":

    The error was: "DNS name does not exist."
    (error code 0x0000232B RCODE_NAME_ERROR)

    The query was for the SRV record for _ldap._tcp.dc._msdcs.mgh.com

    Common causes of this error include the following:

    - The DNS SRV records required to locate <g class="gr_ gr_175 gr-alert gr_gramm gr_run_anim Grammar multiReplace" data-gr-id="175" id="175">a AD</g> DC for the domain are not registered in DNS. These records are registered with a DNS server automatically when <g class="gr_ gr_177 gr-alert gr_gramm gr_run_anim Grammar multiReplace" data-gr-id="177" id="177">a AD</g> DC is added to a domain. They are updated by the AD DC at set intervals. This computer is configured to use DNS servers with the following IP addresses:


    8.2.2.2
    192.168.1.5

    - One or more of the following zones do not include delegation to its child zone:

    mgh.com
    com
    . (the root zone)


    Arvind

    Thursday, February 2, 2017 2:43 PM
  • Based on the above error, It points out to the SRV record of your DC

    Go to DC> DNS manager > See if the SRV entry is present there 

    Also you can manually add the A record pointing to the client machine in DNS manager and see if you able to join the domain

    Thursday, February 2, 2017 4:12 PM
  • Are you able to ping mgh.com or is your name resolution working as expected ?

    Error mentioned by you is talking about connectivity issues wherein your machine is not able to locate the domain services.

    You can also refer to net setup logs which will give you more idea where exactly domain joining is getting failed.


    Thursday, February 2, 2017 8:59 PM
  • This generally points to a DNS resolution error, however you can attempt to do this in the command line as well and see if that works.

    Add-computer -domainname <domain_name>

    or via CMD:

    netdom join <machinename> /domain:<domain_name> /userd:<domain_name\samaccountname> /passwordd:*


    Thursday, February 2, 2017 9:12 PM
  • Hi Arvind,

    Is this issue resolved? do u require any assistance

    Thursday, February 9, 2017 10:04 AM
  • From affected machine try to do nslookup to your domain name, check if "_gc" and "_ldap" SRV records are present  in DNS manager.

    Kindly mark this reply as answer if it is  helpful.

    Thursday, February 9, 2017 11:45 AM
  • finally i have remover ad and configure again... now it is working finr

    Arvind

    Monday, February 13, 2017 10:13 AM
  • Good to know Arvind

    Please mark any closet, helpful post/answer and probably that might help someone else 


    • Edited by Akabe Monday, February 13, 2017 10:19 AM
    Monday, February 13, 2017 10:14 AM