none
dcdiag /test:dns failing RRS feed

  • Question

  • Hi

    I am currently using two Domain Controllers on windows 2012R2. Testing dcdiag /test:dns works fine.

    But when i shutdown the first server i installed, the remaining other does not function properly : i have 4015 dns errors "The DNS server has encountered a critical error from the Active Directory" without details.

    If i now run dcdiag /test:dns, i get the following error : result for the Delegation test is "broken delegated domain _msdcs.mydomain.local" i.e.

    ptr record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server <ip of my server 1, the one which is off) Name resolution not functional. _ldap._tcp.mydomain.local failed on the dns server <server 1 ip>

    Finally i also noticed that i have no reverse dns : nslookup <ip of server 1 or 2> results in "non-existent domain".

    Can you help me to sort this out in a clean way ?

    Thanks

    ps : i'm sorry for the shortened logs but my windows is french and i have to translate...

    • Edited by olivyet Tuesday, February 28, 2017 4:05 PM
    Tuesday, February 28, 2017 3:55 PM

All replies

  • Hi Olivyet,

    >>4015 dns errors "The DNS server has encountered a critical error from the Active Directory" without details.

    As far as I know, event id 4015 is related replication issue, have you configured delegation on DNS server?

    Please ensure you delegation function properly.

    Please check link below to troubleshoot issue:

    Troubleshooting zone problems

    https://technet.microsoft.com/en-us/library/cc731210(v=ws.11).aspx

    >>Finally i also noticed that i have no reverse dns : nslookup <ip of server 1 or 2> results in "non-existent domain".

    Have you configured reservation zone for clients?

    Best Regards

    John


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.


    • Edited by John Lii Wednesday, March 1, 2017 8:34 AM
    Wednesday, March 1, 2017 8:32 AM
  • Just make sure that all existing DC/DNS servers are added under Name Servers tab in your zone properties. 

    Regards,
    Rafic

    If you found this post helpful, please give it a "Helpful" vote.
    If it answered your question, remember to mark it as an "Answer".
    This posting is provided "AS IS" with no warranties and confers no rights! Always test ANY suggestion in a test environment before implementing!

    • Proposed as answer by John Lii Monday, March 27, 2017 2:00 AM
    • Unproposed as answer by olivyet Friday, May 12, 2017 2:46 PM
    Wednesday, March 1, 2017 10:01 AM
  • Hi,

    Just want to confirm the current situations.

    Please feel free to let us know if you need further assistance.

    Best Regards,

    John


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, March 27, 2017 2:00 AM
  • Hi John,

     

    (Sorry it took a long time to answer, it will be faster next time.)

     

    I don't have delegation in my dns/ad so it can't be the reason why it's not working.

    Furthermore, all my addresses are static so there is no reservation zone.

     

    I corrected reverse dns errors (missing reverse records in dns) and it solved my "reverse dns" problems but my dns service has still undetailed critical errors

     

    and dcdiag /test:dns still results in :

    result for the Delegation test is "broken delegated domain _msdcs.mydomain.local" i.e.

    ptr record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server <ip of my server 1, the one which is off) Name resolution not functional. _ldap._tcp.mydomain.local failed on the dns server <server 1 ip>

     

    (which sounds normal as server 1 is off.)

     

    I also noticed that i have a dfs error : The namespace cannot be queried. The specified server cannot perform the requested operation.

    Maybe I should look this way…

     

    Sorry again for the delay

    Olivyet


    • Edited by olivyet Tuesday, May 9, 2017 1:07 PM
    Tuesday, May 9, 2017 10:15 AM