A ver si me pueden dar una mano.
Tenia dos DC's activos, uno primario con w2k3 enterprise edition SP1 y otro secundario con w2k advanced server SP4.
"Aparentemente" funionaba todo de manera correcta, ERP, FTP, AD, DCHP, DNS, etc.
Digo aparentemente porque el DC secundario dejo de funcionar por problemas fisicos y ahora no puedo, entre otras cosas, agregar ninguna maquina al dominio.
Los 32 usuarios que tengo creados hoy, se loguean correctamente, y todo funciona "bien".
Ya intente despromover el DC secundario mediante NTDSUTIL:
http://support.microsoft.com/default.aspx?scid=kb;en-us;216498&Produc... Pasat las 5 FSMO:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;q255504 Verifique que sea CG (ya lo era antes)
Pero no hay caso.
Aca les dejo un DCDIAG
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site\SERV
Starting test: Connectivity
......................... SERV passed test Connectivity
Doing primary tests
Testing server: Default-First-Site\SERV
Starting test: Replications
[Replications Check,SERV] A recent replication attempt failed:
From SERVER to SERV
Naming Context:
CN=Schema,CN=Configuration,DC=ranieri,DC=local
The replication generated an error (1722):
El servidor RPC no est disponible.
The failure occurred at 2006-10-09 10:45:11.
The last success occurred at 2006-10-05 17:48:54.
355 failures have occurred since the last success.
[SERVER] DsBindWithSpnEx() failed with error 1722,
El servidor RPC no est disponible..
The source remains down. Please check the machine.
[Replications Check,SERV] A recent replication attempt failed:
From SERVER to SERV
Naming Context: CN=Configuration,DC=ranieri,DC=local
The replication generated an error (1722):
El servidor RPC no est disponible.
The failure occurred at 2006-10-09 10:44:50.
The last success occurred at 2006-10-05 17:48:54.
356 failures have occurred since the last success.
The source remains down. Please check the machine.
[Replications Check,SERV] A recent replication attempt failed:
From SERVER to SERV
Naming Context: DC=ranieri,DC=local
The replication generated an error (1722):
El servidor RPC no est disponible.
The failure occurred at 2006-10-09 10:44:29.
The last success occurred at 2006-10-05 17:48:54.
356 failures have occurred since the last success.
The source remains down. Please check the machine.
REPLICATION-RECEIVED LATENCY WARNING
SERV: Current time is 2006-10-09 10:47:42.
CN=Schema,CN=Configuration,DC=ranieri,DC=local
Last replication recieved from SERVER at 2006-10-05
17:48:54.
CN=Configuration,DC=ranieri,DC=local
Last replication recieved from SERVER at 2006-10-05
17:48:54.
DC=ranieri,DC=local
Last replication recieved from SERVER at 2006-10-05
17:48:54.
......................... SERV passed test Replications
Starting test: NCSecDesc
......................... SERV passed test NCSecDesc
Starting test: NetLogons
......................... SERV passed test NetLogons
Starting test: Advertising
Fatal Error:DsGetDcName (SERV) call failed, error 1355
The Locator could not find the server.
......................... SERV failed test Advertising
Starting test: KnowsOfRoleHolders
......................... SERV passed test KnowsOfRoleHolders
Starting test: RidManager
......................... SERV passed test RidManager
Starting test: MachineAccount
* SERV is not trusted for account delegation
The corresponding flag bits are missing from the computer
object's
User-Account-Control attribute. You can re-run this command
and
include the /FixMachineAccount option to attempt a repair.
......................... SERV failed test MachineAccount
Starting test: Services
......................... SERV passed test Services
Starting test: ObjectsReplicated
......................... SERV passed test ObjectsReplicated
Starting test: frssysvol
......................... SERV passed test frssysvol
Starting test: frsevent
There are warning or error events within the last 24 hours
after the
SYSVOL has been shared. Failing SYSVOL replication problems
may cause
Group Policy problems.
......................... SERV failed test frsevent
Starting test: kccevent
......................... SERV passed test kccevent
Starting test: systemlog
......................... SERV passed test systemlog
Starting test: VerifyReferences
......................... SERV passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test
CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test
CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test
CheckSDRefDom
Running partition tests on : ranieri
Starting test: CrossRefValidation
......................... ranieri passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... ranieri passed test CheckSDRefDom
Running enterprise tests on : ranieri.local
Starting test: Intersite
......................... ranieri.local passed test Intersite
Starting test: FsmoCheck
Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error
1355
A Global Catalog Server could not be located - All GC's are
down.
Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed,
error 1355
A Good Time Server could not be located.
Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1355
A KDC could not be located - All the KDCs are down.
......................... ranieri.local failed test FsmoCheck
Y aca un NETDIAG
...................................
Computer Name: SERV
DNS Host Name: serv.ranieri.local
System info : Windows 2000 Server (Build 3790)
Processor : x86 Family 15 Model 4 Stepping 10, GenuineIntel
List of installed hotfixes :
KB890046
KB893756
KB896358
KB896422
KB896424
KB896428
KB898715
KB899587
KB899588
KB899589
KB899591
KB900725
KB901017
KB901214
KB902400
KB904706
KB905414
KB908519
KB908531
KB910437
KB911280
KB911562
KB911567
KB911927
KB912919
KB914388
KB914389
KB916281
KB917159
KB917344
KB917422
KB917537
KB917734
KB917953
KB918439
KB918899
KB920214
KB920670
KB920683
KB920685
KB921398
KB921883
KB922582
KB922616
KB925486
Q147222
Netcard queries test . . . . . . . : Passed
GetStats failed for 'Paralelo directo'. [ERROR_NOT_SUPPORTED]
GetStats failed for 'Minipuerto WAN (PPTP)'. [ERROR_NOT_SUPPORTED]
GetStats failed for 'Minipuerto WAN (PPPOE)'. [ERROR_NOT_SUPPORTED]
[WARNING] The net card 'Minipuerto WAN (IP)' may not be working
because it has not received any packets.
GetStats failed for 'Minipuerto WAN (L2TP)'. [ERROR_NOT_SUPPORTED]
Per interface results:
Adapter : Conexión de área local
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : serv
IP Address . . . . . . . . : 192.168.0.2
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.0.49
Primary WINS Server. . . . : 192.168.0.2
Dns Servers. . . . . . . . : 127.0.0.1
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03>
'Messenger Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Failed
[WARNING] Ths system volume has not been completely replicated to
the local machine. This machine is not working properly as a DC.
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{9E72C9E4-E037-4859-BC72-53AE79F1ADE9}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00>
'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names
defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Passed
PASS - All the DNS entries for DC are registered on DNS server
'127.0.0.1' and other DCs also have some of the names registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{9E72C9E4-E037-4859-BC72-53AE79F1ADE9}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{9E72C9E4-E037-4859-BC72-53AE79F1ADE9}
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Failed
[FATAL] Cannot find DC in domain 'RANIERI'.
[ERROR_NO_SUCH_DOMAIN]
DC list test . . . . . . . . . . . : Failed
'RANIERI': Cannot find DC to get DC list from [test skipped].
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Skipped
'RANIERI': Cannot find DC to get DC list from [test skipped].
LDAP test. . . . . . . . . . . . . : Failed
Cannot find DC to run LDAP tests on. The error occurred was: El
dominio especificado no existe o no se pudo establecer conexión con
él.
[WARNING] Cannot find DC in domain 'RANIERI'.
[ERROR_NO_SUCH_DOMAIN]
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed
information
The command completed successfully
Tengo un backup del System State del DC caido, intente levantarlo desde otra maquina siguiendo este documento:
http://support.microsoft.com/search/preview.aspx?scid=kb;en-us;Q263532 Pero tampoco tuve exito.
La verdad no se que mas hacer, cualquier ayuda sera bienvenida, desde ya muy agradecido por su tiempo.
slds
Problemas con AD
