none
בעיה בשרת AD 2012 R2 RRS feed

  • שאלה

  • שלום לכולם...

    חברים אבקש את עזרתכם המלומדת :

    יש לי סביבה של שרת SBS2008  ביצעתי מיגרציה העברת את כל התיבות והתפקידים התפקידים שהועברו הם :

    Schema Master:PDC.Infrastructure.RID.Domain Naming Master:

    בדקתי בNETDOM QUERY הכל מופנה לשרת החדש והכל עובד מצויין 

     שבוע שעבר ניסיתי לבדוק האם שאני מנתק את השרת ה-SBS הכל עובד גיליתי שלא

    ברגע שהשרת מנותק או כבוי אני לא מצליח לפתוח את ה-AD  פשוט מקבל שגיאה שלא נמצא global catalog   

    למרות ששניהם הם global catalog ברגע שהשרת SBS  מנותק כל התשתית ה-AD קורסת משמע לא ניתן לבצע כניסה למשתמשים ולא ניתן להיכנס לשיתופים ברשת

    שאלתי היא למה זה קורה ?האם שכחתי משהו ואם כן אז מה?

    תודה מראש .. 


    יום ראשון 14 ספטמבר 2014 18:54

תשובות

  • הי,

    לפי הלוג ישנם מספר הגדרות שאינם תקינות:

    1. הגדרות DNS לא עודכנו באופן אוטומטי וחסרות מספר הגדרות DNS

    2. חסרה רפליקציה מול תיקיות sysvol שאינם התרפלקו בצורה מלאה

    3. הגדרות DNS ברמת כ.רשת בשרת אינן נכונות יש לוודא הצבעה מול אותו שרת ומול שרת משני שאותו אתה מסיר לאחר מכן

    4. מומלץ שיהיו שני שרתי DC בארגון ולכן תקים עוד שרת שיוכל לבצע רפליקציה ויוכל להיות זמין במקרה הצורך

    אלי.


    Email:eshlomo9@hotmail.com;Twitter:https://twitter.com/EliShlomo1

    • סומן כתשובה על-ידי Eran Sharvit יום ראשון 21 ספטמבר 2014 09:43
    יום רביעי 17 ספטמבר 2014 18:52

כל התגובות

  • שלום,

    תריץ את הפקודה NETDOM QUERY FSMO בCMD

    ותרשום כאן מה אתה מקבל,

    תבדוק גם כן את התקניות של הDNS 

    תבדוק EVENT ID 

    תריץ פקודה DCDIAG /V

    dnslint /ad /s IPAddress /v /no_open- בדיקת תקינות הדי.אנ.אס.

    DCDIAG /test:DNS /DNSALL /e /v- בדיקת תקינות הדי.אנ.אס.

    בהצלחה


    אם תגובתי פתרה את בעייתך - לחץ על "סמן כתשובה" ליד סימן ה V הירוק. Yaniv Totshvili http://www.yshvili.com http://itportal.co.il blog: http://blogs.microsoft.co.il/blogs/yanivlea

    יום שני 15 ספטמבר 2014 10:21
    מנחה דיון
  • שלום לכולם...

    חברים אבקש את עזרתכם המלומדת :

    יש לי סביבה של שרת SBS2008  ביצעתי מיגרציה העברת את כל התיבות והתפקידים התפקידים שהועברו הם :

    Schema Master:PDC.Infrastructure.RID.Domain Naming Master:

    בדקתי בNETDOM QUERY הכל מופנה לשרת החדש והכל עובד מצויין 

     שבוע שעבר ניסיתי לבדוק האם שאני מנתק את השרת ה-SBS הכל עובד גיליתי שלא

    ברגע שהשרת מנותק או כבוי אני לא מצליח לפתוח את ה-AD  פשוט מקבל שגיאה שלא נמצא global catalog   

    למרות ששניהם הם global catalog ברגע שהשרת SBS  מנותק כל התשתית ה-AD קורסת משמע לא ניתן לבצע כניסה למשתמשים ולא ניתן להיכנס לשיתופים ברשת

    שאלתי היא למה זה קורה ?האם שכחתי משהו ואם כן אז מה?

    תודה מראש .. 


    היי .

    יש סיכוי לא אפשרת בשרת החדש את הGC  ?

    יהיה לנו יותר קל לעזור לך אחרי שנראה את הERROR 

    בנוסף אנא בדוק event viewer  ותציג לנו אלו ERROR אתה מקבל.

    תודה 

    יום שני 15 ספטמבר 2014 14:19
  • מצ"ב .. תוצאות DCDIAG לפני הכיבוי של שרת ה-SBS ואחריי השרת החדש הוא tamardc01 השרת הישן הוא SBS nedom : C:\Windows\system32>NETDOM QUERY FSMO Schema master TAMARDC01.tamar.local Domain naming master TAMARDC01.tamar.local PDC TAMARDC01.tamar.local RID pool manager TAMARDC01.tamar.local Infrastructure master TAMARDC01.tamar.local
    יום שלישי 16 ספטמבר 2014 17:41
  • לפני ניתוק שרת הSBS :

    C:\Windows\system32>DCDIAG /V

    Directory Server Diagnosis

    Performing initial setup:
       Trying to find home server...
       * Verifying that the local machine TAMARDC01, is a Directory Server.
       Home Server = TAMARDC01
       * Connecting to directory service on server TAMARDC01.
       * Identified AD Forest.
       Collecting AD specific global data
       * Collecting site info.
       Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=tamar,DC=local
    ,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
       The previous call succeeded
       Iterating through the sites
       Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site-Name
    ,CN=Sites,CN=Configuration,DC=tamar,DC=local
       Getting ISTG and options for the site
       * Identifying all servers.
       Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=tamar,DC=local
    ,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
       The previous call succeeded....
       The previous call succeeded
       Iterating through the list of servers
       Getting information for the server CN=NTDS Settings,CN=SBS,CN=Servers,CN=Defa
    ult-First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       Getting information for the server CN=NTDS Settings,CN=TAMARDC01,CN=Servers,C
    N=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       * Identifying all NC cross-refs.
       * Found 2 DC(s). Testing 1 of them.
       Done gathering initial info.

    Doing initial required tests

       Testing server: Default-First-Site-Name\TAMARDC01
          Starting test: Connectivity
             * Active Directory LDAP Services Check
             Determining IP4 connectivity
             * Active Directory RPC Services Check
             ......................... TAMARDC01 passed test Connectivity

    Doing primary tests

       Testing server: Default-First-Site-Name\TAMARDC01
          Starting test: Advertising
             Warning: DsGetDcName returned information for \\SBS.tamar.local, when
             we were trying to reach TAMARDC01.
             SERVER IS NOT RESPONDING or IS NOT CONSIDERED SUITABLE.
             ......................... TAMARDC01 failed test Advertising
          Test omitted by user request: CheckSecurityError
          Test omitted by user request: CutoffServers
          Starting test: FrsEvent
             * The File Replication Service Event log test
             ......................... TAMARDC01 passed test FrsEvent
          Starting test: DFSREvent
             The DFS Replication Event Log.
             Skip the test because the server is running FRS.
             ......................... TAMARDC01 passed test DFSREvent
          Starting test: SysVolCheck
             * The File Replication Service SYSVOL ready test
             The registry lookup failed to determine the state of the SYSVOL.  The
             error returned  was 0x0 "The operation completed successfully.".
             Check the FRS event log to see if the SYSVOL has successfully been
             shared.
             ......................... TAMARDC01 passed test SysVolCheck
          Starting test: KccEvent
             * The KCC Event log test
             Found no KCC errors in "Directory Service" Event log in the last 15 min
    utes.
             ......................... TAMARDC01 passed test KccEvent
          Starting test: KnowsOfRoleHolders
             Role Schema Owner = CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default
    -First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
             Role Domain Owner = CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default
    -First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
             Role PDC Owner = CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default-Fi
    rst-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
             Role Rid Owner = CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default-Fi
    rst-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
             Role Infrastructure Update Owner = CN=NTDS Settings,CN=TAMARDC01,CN=Ser
    vers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
             ......................... TAMARDC01 passed test KnowsOfRoleHolders
          Starting test: MachineAccount
             Checking machine account for DC TAMARDC01 on DC TAMARDC01.
             * SPN found :LDAP/TAMARDC01.tamar.local/tamar.local
             * SPN found :LDAP/TAMARDC01.tamar.local
             * SPN found :LDAP/TAMARDC01
             * SPN found :LDAP/TAMARDC01.tamar.local/TAMAR
             * SPN found :LDAP/b5b10e36-c047-4e69-99be-0c17d519c100._msdcs.tamar.loc
    al
             * SPN found :E3514235-4B06-11D1-AB04-00C04FC2DCD2/b5b10e36-c047-4e69-99
    be-0c17d519c100/tamar.local
             * SPN found :HOST/TAMARDC01.tamar.local/tamar.local
             * SPN found :HOST/TAMARDC01.tamar.local
             * SPN found :HOST/TAMARDC01
             * SPN found :HOST/TAMARDC01.tamar.local/TAMAR
             * SPN found :GC/TAMARDC01.tamar.local/tamar.local
             ......................... TAMARDC01 passed test MachineAccount
          Starting test: NCSecDesc
             * Security Permissions check for all NC's on DC TAMARDC01.
             * Security Permissions Check for
               DC=ForestDnsZones,DC=tamar,DC=local
                (NDNC,Version 3)
             * Security Permissions Check for
               DC=DomainDnsZones,DC=tamar,DC=local
                (NDNC,Version 3)
             * Security Permissions Check for
               CN=Schema,CN=Configuration,DC=tamar,DC=local
                (Schema,Version 3)
             * Security Permissions Check for
               CN=Configuration,DC=tamar,DC=local
                (Configuration,Version 3)
             * Security Permissions Check for
               DC=tamar,DC=local
                (Domain,Version 3)
             ......................... TAMARDC01 passed test NCSecDesc
          Starting test: NetLogons
             * Network Logons Privileges Check
             Unable to connect to the NETLOGON share! (\\TAMARDC01\netlogon)
             [TAMARDC01] An net use or LsaPolicy operation failed with error 67,
             The network name cannot be found..
             ......................... TAMARDC01 failed test NetLogons
          Starting test: ObjectsReplicated
             TAMARDC01 is in domain DC=tamar,DC=local
             Checking for CN=TAMARDC01,OU=Domain Controllers,DC=tamar,DC=local in do
    main DC=tamar,DC=local on 1 servers
                Object is up-to-date on all servers.
             Checking for CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default-First-
    Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local in domain CN=Configuration
    ,DC=tamar,DC=local on 1 servers
                Object is up-to-date on all servers.
             ......................... TAMARDC01 passed test ObjectsReplicated
          Test omitted by user request: OutboundSecureChannels
          Starting test: Replications
             * Replications Check
             * Replication Latency Check
                DC=ForestDnsZones,DC=tamar,DC=local
                   Latency information for 2 entries in the vector were ignored.
                      2 were retired Invocations.  0 were either: read-only replicas
     and are not verifiably latent, or dc's no longer replicating this nc.  0 had no
     latency information (Win2K DC).
                DC=DomainDnsZones,DC=tamar,DC=local
                   Latency information for 2 entries in the vector were ignored.
                      2 were retired Invocations.  0 were either: read-only replicas
     and are not verifiably latent, or dc's no longer replicating this nc.  0 had no
     latency information (Win2K DC).
                CN=Schema,CN=Configuration,DC=tamar,DC=local
                   Latency information for 2 entries in the vector were ignored.
                      2 were retired Invocations.  0 were either: read-only replicas
     and are not verifiably latent, or dc's no longer replicating this nc.  0 had no
     latency information (Win2K DC).
                CN=Configuration,DC=tamar,DC=local
                   Latency information for 2 entries in the vector were ignored.
                      2 were retired Invocations.  0 were either: read-only replicas
     and are not verifiably latent, or dc's no longer replicating this nc.  0 had no
     latency information (Win2K DC).
                DC=tamar,DC=local
                   Latency information for 2 entries in the vector were ignored.
                      2 were retired Invocations.  0 were either: read-only replicas
     and are not verifiably latent, or dc's no longer replicating this nc.  0 had no
     latency information (Win2K DC).
             ......................... TAMARDC01 passed test Replications
          Starting test: RidManager
             * Available RID Pool for the Domain is 3114 to 1073741823
             * TAMARDC01.tamar.local is the RID Master
             * DsBind with RID Master was successful
             * rIDAllocationPool is 2614 to 3113
             * rIDPreviousAllocationPool is 2614 to 3113
             * rIDNextRID: 2614
             ......................... TAMARDC01 passed test RidManager
          Starting test: Services
             * Checking Service: EventSystem
             * Checking Service: RpcSs
             * Checking Service: NTDS
             * Checking Service: DnsCache
             * Checking Service: NtFrs
             * Checking Service: IsmServ
             * Checking Service: kdc
             * Checking Service: SamSs
             * Checking Service: LanmanServer
             * Checking Service: LanmanWorkstation
             * Checking Service: w32time
             * Checking Service: NETLOGON
             ......................... TAMARDC01 passed test Services
          Starting test: SystemLog
             * The System Event log test
             A warning event occurred.  EventID: 0x00000458
                Time Generated: 09/16/2014   19:37:20
                Event String:
                The Group Policy Client Side Extension Folder Redirection was unable
     to apply one or more settings because the changes must be processed before syst
    em startup or user logon. The system will wait for Group Policy processing to fi
    nish completely before the next startup or logon for this user, and this may res
    ult in slow startup and boot performance.
             Found no errors in "System" Event log in the last 60 minutes.
             ......................... TAMARDC01 passed test SystemLog
          Test omitted by user request: Topology
          Test omitted by user request: VerifyEnterpriseReferences
          Starting test: VerifyReferences
             The system object reference (serverReference)
             CN=TAMARDC01,OU=Domain Controllers,DC=tamar,DC=local and backlink on
             CN=TAMARDC01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configur
    ation,DC=tamar,DC=local
             are correct.
             The system object reference (serverReferenceBL)
             CN=TAMARDC01,CN=Domain System Volume (SYSVOL share),CN=File Replication
     Service,CN=System,DC=tamar,DC=local
             and backlink on
             CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default-First-Site-Name,CN=
    Sites,CN=Configuration,DC=tamar,DC=local
             are correct.
             The system object reference (frsComputerReferenceBL)
             CN=TAMARDC01,CN=Domain System Volume (SYSVOL share),CN=File Replication
     Service,CN=System,DC=tamar,DC=local
             and backlink on CN=TAMARDC01,OU=Domain Controllers,DC=tamar,DC=local
             are correct.
             ......................... TAMARDC01 passed test VerifyReferences
          Test omitted by user request: VerifyReplicas

          Test omitted by user request: DNS
          Test omitted by user request: DNS

       Running partition tests on : ForestDnsZones
          Starting test: CheckSDRefDom
             ......................... ForestDnsZones passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... ForestDnsZones passed test
             CrossRefValidation

       Running partition tests on : DomainDnsZones
          Starting test: CheckSDRefDom
             ......................... DomainDnsZones passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... DomainDnsZones passed test
             CrossRefValidation

       Running partition tests on : Schema
          Starting test: CheckSDRefDom
             ......................... Schema passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... Schema passed test CrossRefValidation

       Running partition tests on : Configuration
          Starting test: CheckSDRefDom
             ......................... Configuration passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... Configuration passed test CrossRefValidation

       Running partition tests on : tamar
          Starting test: CheckSDRefDom
             ......................... tamar passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... tamar passed test CrossRefValidation

       Running enterprise tests on : tamar.local
          Test omitted by user request: DNS
          Test omitted by user request: DNS
          Starting test: LocatorCheck
             GC Name: \\SBS.tamar.local
             Locator Flags: 0xe00013fc
             PDC Name: \\TAMARDC01.tamar.local
             Locator Flags: 0xe000f1fd
             Time Server Name: \\SBS.tamar.local
             Locator Flags: 0xe00013fc
             Preferred Time Server Name: \\SBS.tamar.local
             Locator Flags: 0xe00013fc
             KDC Name: \\SBS.tamar.local
             Locator Flags: 0xe00013fc
             ......................... tamar.local passed test LocatorCheck
          Starting test: Intersite
             Skipping site Default-First-Site-Name, this site is outside the scope
             provided by the command line arguments provided.
             ......................... tamar.local passed test Intersite

    C:\Windows\system32>









    יום שלישי 16 ספטמבר 2014 17:45
  • בדיקת DNS לפני ניתוק השרת :


                      DNS Tests are running and not hung. Please wait a few
                      minutes...
                      See DNS test in enterprise tests section for results
                      ......................... TAMARDC01 passed test DNS
             See DNS test in enterprise tests section for results
             ......................... SBS passed test DNS

       Running partition tests on : ForestDnsZones
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation

       Running partition tests on : DomainDnsZones
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation

       Running partition tests on : Schema
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation

       Running partition tests on : Configuration
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation

       Running partition tests on : tamar
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation

       Running enterprise tests on : tamar.local
          Starting test: DNS
             Test results for domain controllers:

                DC: TAMARDC01.tamar.local
                Domain: tamar.local


                   TEST: Authentication (Auth)
                      Authentication test: Successfully completed

                   TEST: Basic (Basc)
                      The OS
                      Microsoft Windows Server 2012 R2 Standard (Service Pack level:
     0.0)
                      is supported.
                      NETLOGON service is running
                      kdc service is running
                      DNSCACHE service is running
                      DNS service is running
                      DC is a DNS server
                      Network adapters information:
                      Adapter [00000010] vmxnet3 Ethernet Adapter:
                         MAC address is 00:50:56:BE:60:10
                         IP Address is static
                         IP address: 192.168.222.2, fe80::54dd:6d8a:f9c6:deaf
                         DNS servers:
                            192.168.222.2 (TAMARDC01) [Valid]
                      The A host record(s) for this DC was found
                      The SOA record for the Active Directory zone was found
                      The Active Directory zone on this DC/DNS server was found prim
    ary
                      Root zone on this DC/DNS server was not found

                   TEST: Forwarders/Root hints (Forw)
                      Recursion is enabled
                      Forwarders Information:
                         194.90.1.5 (<name unavailable>) [Valid]
                         212.143.212.143 (<name unavailable>) [Valid]

                   TEST: Delegations (Del)
                      Delegation information for the zone: tamar.local.
                         Delegated domain name: _msdcs.tamar.local.
                            DNS server: sbs.tamar.local. IP:192.168.222.10 [Valid]

                   TEST: Dynamic update (Dyn)
                      Test record dcdiag-test-record added successfully in zone tama
    r.local
                      Warning: Failed to delete the test record dcdiag-test-record i
    n zone tamar.local
                      [Error details: 9505 (Type: Win32 - Description: Unsecured DNS
     packet.)]

                   TEST: Records registration (RReg)
                      Network Adapter [00000010] vmxnet3 Ethernet Adapter:
                         Matching CNAME record found at DNS server 192.168.222.2:
                         b5b10e36-c047-4e69-99be-0c17d519c100._msdcs.tamar.local

                         Matching A record found at DNS server 192.168.222.2:
                         TAMARDC01.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.50977130-5dae-4111-8f77-9e58ab02525d.domains._ms
    dcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kerberos._tcp.dc._msdcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.dc._msdcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kerberos._tcp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kerberos._udp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kpasswd._tcp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.Default-First-Site-Name._sites.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.tam
    ar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.tamar.l
    ocal

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kerberos._tcp.Default-First-Site-Name._sites.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.gc._msdcs.tamar.local

                         Matching A record found at DNS server 192.168.222.2:
                         gc._msdcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _gc._tcp.Default-First-Site-Name._sites.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.tamar.l
    ocal

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.pdc._msdcs.tamar.local


                   TEST: External name resolution (Ext)
                      Internet name www.microsoft.com was resolved successfully


                DC: SBS.tamar.local
                Domain: tamar.local


                   TEST: Authentication (Auth)
                      Authentication test: Successfully completed

                   TEST: Basic (Basc)
                      The OS
                      Microsoftr Windows Serverr 2008 Standard FE  (Service Pack lev
    el: 2.0)
                      is supported.
                      NETLOGON service is running
                      kdc service is running
                      DNSCACHE service is running
                      DNS service is running
                      DC is a DNS server
                      Network adapters information:
                      Adapter [00000013] Intel(R) PRO/1000 MT Network Connection:
                         MAC address is 00:50:56:BE:2A:32
                         IP Address is static
                         IP address: 192.168.222.10, fe80::c6f:c1a4:9512:b243
                         DNS servers:
                            192.168.222.10 (sbs.tamar.local.) [Valid]
                      The A host record(s) for this DC was found
                      The SOA record for the Active Directory zone was found
                      The Active Directory zone on this DC/DNS server was found prim
    ary
                      Root zone on this DC/DNS server was not found

                   TEST: Forwarders/Root hints (Forw)
                      Recursion is enabled
                      Forwarders Information:
                         194.90.1.5 (<name unavailable>) [Valid]
                         212.143.212.143 (<name unavailable>) [Valid]

                   TEST: Delegations (Del)
                      Delegation information for the zone: tamar.local.
                         Delegated domain name: _msdcs.tamar.local.
                            DNS server: sbs.tamar.local. IP:192.168.222.10 [Valid]

                   TEST: Dynamic update (Dyn)
                      Test record dcdiag-test-record added successfully in zone tama
    r.local
                      Warning: Failed to delete the test record dcdiag-test-record i
    n zone tamar.local
                      [Error details: 9505 (Type: Win32 - Description: Unsecured DNS
     packet.)]

                   TEST: Records registration (RReg)
                      Network Adapter
                      [00000013] Intel(R) PRO/1000 MT Network Connection:
                         Matching CNAME record found at DNS server 192.168.222.10:
                         c148c0da-ebfc-4c3c-bbdf-e278de20412f._msdcs.tamar.local

                         Matching A record found at DNS server 192.168.222.10:
                         SBS.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _ldap._tcp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _ldap._tcp.50977130-5dae-4111-8f77-9e58ab02525d.domains._ms
    dcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _kerberos._tcp.dc._msdcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _ldap._tcp.dc._msdcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _kerberos._tcp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _kerberos._udp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _kpasswd._tcp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _ldap._tcp.Default-First-Site-Name._sites.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.tam
    ar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.tamar.l
    ocal

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _kerberos._tcp.Default-First-Site-Name._sites.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _ldap._tcp.gc._msdcs.tamar.local

                         Matching A record found at DNS server 192.168.222.10:
                         gc._msdcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _gc._tcp.Default-First-Site-Name._sites.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.10:
                         _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.tamar.l
    ocal


                   TEST: External name resolution (Ext)
                      Internet name www.microsoft.com was resolved successfully

             Summary of test results for DNS servers used by the above domain
             controllers:

                DNS server: 192.168.222.10 (sbs.tamar.local.)
                   All tests passed on this DNS server
                   Name resolution is functional._ldap._tcp SRV record for the fores
    t root domain is registered
                   DNS delegation for the domain  _msdcs.tamar.local. is operational
     on IP 192.168.222.10


                DNS server: 192.168.222.2 (TAMARDC01)
                   All tests passed on this DNS server
                   Name resolution is functional._ldap._tcp SRV record for the fores
    t root domain is registered

                DNS server: 194.90.1.5 (<name unavailable>)
                   All tests passed on this DNS server

                DNS server: 212.143.212.143 (<name unavailable>)
                   All tests passed on this DNS server

             Summary of DNS test results:

                                                Auth Basc Forw Del  Dyn  RReg Ext
                _________________________________________________________________
                Domain: tamar.local
                   TAMARDC01                    PASS PASS PASS PASS WARN PASS PASS
                   SBS                          PASS PASS PASS PASS WARN PASS PASS

             ......................... tamar.local passed test DNS
          Test omitted by user request: LocatorCheck
          Test omitted by user request: Intersite

    C:\Users\avibs>

    יום שלישי 16 ספטמבר 2014 17:46
  • DCDIAG  אחרי ניתוק שרת ה-SBS:

    Microsoft Windows [Version 6.3.9600]
    (c) 2013 Microsoft Corporation. All rights reserved.

    C:\Windows\system32>DCDIAG /V

    Directory Server Diagnosis

    Performing initial setup:
       Trying to find home server...
       * Verifying that the local machine TAMARDC01, is a Directory Server.
       Home Server = TAMARDC01
       * Connecting to directory service on server TAMARDC01.
       * Identified AD Forest.
       Collecting AD specific global data
       * Collecting site info.
       Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=tamar,DC=local
    ,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
       The previous call succeeded
       Iterating through the sites
       Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site-Name
    ,CN=Sites,CN=Configuration,DC=tamar,DC=local
       Getting ISTG and options for the site
       * Identifying all servers.
       Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=tamar,DC=local
    ,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
       The previous call succeeded....
       The previous call succeeded
       Iterating through the list of servers
       Getting information for the server CN=NTDS Settings,CN=SBS,CN=Servers,CN=Defa
    ult-First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       Getting information for the server CN=NTDS Settings,CN=TAMARDC01,CN=Servers,C
    N=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       * Identifying all NC cross-refs.
       * Found 2 DC(s). Testing 1 of them.
       Done gathering initial info.

    Doing initial required tests

       Testing server: Default-First-Site-Name\TAMARDC01
          Starting test: Connectivity
             * Active Directory LDAP Services Check
             Determining IP4 connectivity
             * Active Directory RPC Services Check
             ......................... TAMARDC01 passed test Connectivity

    Doing primary tests

       Testing server: Default-First-Site-Name\TAMARDC01
          Starting test: Advertising
             Fatal Error:DsGetDcName (TAMARDC01) call failed, error 1355
             The Locator could not find the server.
             ......................... TAMARDC01 failed test Advertising
          Test omitted by user request: CheckSecurityError
          Test omitted by user request: CutoffServers
          Starting test: FrsEvent
             * The File Replication Service Event log test
             ......................... TAMARDC01 passed test FrsEvent
          Starting test: DFSREvent
             The DFS Replication Event Log.
             Skip the test because the server is running FRS.
             ......................... TAMARDC01 passed test DFSREvent
          Starting test: SysVolCheck
             * The File Replication Service SYSVOL ready test
             The registry lookup failed to determine the state of the SYSVOL.  The
             error returned  was 0x0 "The operation completed successfully.".
             Check the FRS event log to see if the SYSVOL has successfully been
             shared.
             ......................... TAMARDC01 passed test SysVolCheck
          Starting test: KccEvent
             * The KCC Event log test
             Found no KCC errors in "Directory Service" Event log in the last 15 min
    utes.
             ......................... TAMARDC01 passed test KccEvent
          Starting test: KnowsOfRoleHolders
             Role Schema Owner = CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default
    -First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
             Role Domain Owner = CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default
    -First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
             Role PDC Owner = CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default-Fi
    rst-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
             Role Rid Owner = CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default-Fi
    rst-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
             Role Infrastructure Update Owner = CN=NTDS Settings,CN=TAMARDC01,CN=Ser
    vers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
             ......................... TAMARDC01 passed test KnowsOfRoleHolders
          Starting test: MachineAccount
             Checking machine account for DC TAMARDC01 on DC TAMARDC01.
             * SPN found :LDAP/TAMARDC01.tamar.local/tamar.local
             * SPN found :LDAP/TAMARDC01.tamar.local
             * SPN found :LDAP/TAMARDC01
             * SPN found :LDAP/TAMARDC01.tamar.local/TAMAR
             * SPN found :LDAP/b5b10e36-c047-4e69-99be-0c17d519c100._msdcs.tamar.loc
    al
             * SPN found :E3514235-4B06-11D1-AB04-00C04FC2DCD2/b5b10e36-c047-4e69-99
    be-0c17d519c100/tamar.local
             * SPN found :HOST/TAMARDC01.tamar.local/tamar.local
             * SPN found :HOST/TAMARDC01.tamar.local
             * SPN found :HOST/TAMARDC01
             * SPN found :HOST/TAMARDC01.tamar.local/TAMAR
             * SPN found :GC/TAMARDC01.tamar.local/tamar.local
             ......................... TAMARDC01 passed test MachineAccount
          Starting test: NCSecDesc
             * Security Permissions check for all NC's on DC TAMARDC01.
             * Security Permissions Check for
               DC=ForestDnsZones,DC=tamar,DC=local
                (NDNC,Version 3)
             * Security Permissions Check for
               DC=DomainDnsZones,DC=tamar,DC=local
                (NDNC,Version 3)
             * Security Permissions Check for
               CN=Schema,CN=Configuration,DC=tamar,DC=local
                (Schema,Version 3)
             * Security Permissions Check for
               CN=Configuration,DC=tamar,DC=local
                (Configuration,Version 3)
             * Security Permissions Check for
               DC=tamar,DC=local
                (Domain,Version 3)
             ......................... TAMARDC01 passed test NCSecDesc
          Starting test: NetLogons
             * Network Logons Privileges Check
             Unable to connect to the NETLOGON share! (\\TAMARDC01\netlogon)
             [TAMARDC01] An net use or LsaPolicy operation failed with error 67,
             The network name cannot be found..
             ......................... TAMARDC01 failed test NetLogons
          Starting test: ObjectsReplicated
             TAMARDC01 is in domain DC=tamar,DC=local
             Checking for CN=TAMARDC01,OU=Domain Controllers,DC=tamar,DC=local in do
    main DC=tamar,DC=local on 1 servers
                Object is up-to-date on all servers.
             Checking for CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default-First-
    Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local in domain CN=Configuration
    ,DC=tamar,DC=local on 1 servers
                Object is up-to-date on all servers.
             ......................... TAMARDC01 passed test ObjectsReplicated
          Test omitted by user request: OutboundSecureChannels
          Starting test: Replications
             * Replications Check
             [SBS] DsBindWithSpnEx() failed with error 1722,
             The RPC server is unavailable..
             RPC Extended Error Info not available. Use group policy on the local
             machine at "Computer Configuration/Administrative
             Templates/System/Remote Procedure Call" to enable it.
             ......................... TAMARDC01 failed test Replications
          Starting test: RidManager
             * Available RID Pool for the Domain is 3114 to 1073741823
             * TAMARDC01.tamar.local is the RID Master
             * DsBind with RID Master was successful
             * rIDAllocationPool is 2614 to 3113
             * rIDPreviousAllocationPool is 2614 to 3113
             * rIDNextRID: 2614
             ......................... TAMARDC01 passed test RidManager
          Starting test: Services
             * Checking Service: EventSystem
             * Checking Service: RpcSs
             * Checking Service: NTDS
             * Checking Service: DnsCache
             * Checking Service: NtFrs
             * Checking Service: IsmServ
             * Checking Service: kdc
             * Checking Service: SamSs
             * Checking Service: LanmanServer
             * Checking Service: LanmanWorkstation
             * Checking Service: w32time
             * Checking Service: NETLOGON
             ......................... TAMARDC01 passed test Services
          Starting test: SystemLog
             * The System Event log test
             A warning event occurred.  EventID: 0x00000458
                Time Generated: 09/16/2014   19:37:20
                Event String:
                The Group Policy Client Side Extension Folder Redirection was unable
     to apply one or more settings because the changes must be processed before syst
    em startup or user logon. The system will wait for Group Policy processing to fi
    nish completely before the next startup or logon for this user, and this may res
    ult in slow startup and boot performance.
             A warning event occurred.  EventID: 0x00000018
                Time Generated: 09/16/2014   20:29:49
                Event String:
                Time Provider NtpClient: No valid response has been received from do
    main controller SBS.tamar.local after 8 attempts to contact it. This domain cont
    roller will be discarded as a time source and NtpClient will attempt to discover
     a new domain controller from which to synchronize. The error was: The peer is u
    nreachable.
             An error event occurred.  EventID: 0x0000041E
                Time Generated: 09/16/2014   20:30:34
                Event String:
                The processing of Group Policy failed. Windows could not obtain the
    name of a domain controller. This could be caused by a name resolution failure.
    Verify your Domain Name System (DNS) is configured and working correctly.
             ......................... TAMARDC01 failed test SystemLog
          Test omitted by user request: Topology
          Test omitted by user request: VerifyEnterpriseReferences
          Starting test: VerifyReferences
             The system object reference (serverReference)
             CN=TAMARDC01,OU=Domain Controllers,DC=tamar,DC=local and backlink on
             CN=TAMARDC01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configur
    ation,DC=tamar,DC=local
             are correct.
             The system object reference (serverReferenceBL)
             CN=TAMARDC01,CN=Domain System Volume (SYSVOL share),CN=File Replication
     Service,CN=System,DC=tamar,DC=local
             and backlink on
             CN=NTDS Settings,CN=TAMARDC01,CN=Servers,CN=Default-First-Site-Name,CN=
    Sites,CN=Configuration,DC=tamar,DC=local
             are correct.
             The system object reference (frsComputerReferenceBL)
             CN=TAMARDC01,CN=Domain System Volume (SYSVOL share),CN=File Replication
     Service,CN=System,DC=tamar,DC=local
             and backlink on CN=TAMARDC01,OU=Domain Controllers,DC=tamar,DC=local
             are correct.
             ......................... TAMARDC01 passed test VerifyReferences
          Test omitted by user request: VerifyReplicas

          Test omitted by user request: DNS
          Test omitted by user request: DNS

       Running partition tests on : ForestDnsZones
          Starting test: CheckSDRefDom
             ......................... ForestDnsZones passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... ForestDnsZones passed test
             CrossRefValidation

       Running partition tests on : DomainDnsZones
          Starting test: CheckSDRefDom
             ......................... DomainDnsZones passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... DomainDnsZones passed test
             CrossRefValidation

       Running partition tests on : Schema
          Starting test: CheckSDRefDom
             ......................... Schema passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... Schema passed test CrossRefValidation

       Running partition tests on : Configuration
          Starting test: CheckSDRefDom
             ......................... Configuration passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... Configuration passed test CrossRefValidation

       Running partition tests on : tamar
          Starting test: CheckSDRefDom
             ......................... tamar passed test CheckSDRefDom
          Starting test: CrossRefValidation
             ......................... tamar passed test CrossRefValidation

       Running enterprise tests on : tamar.local
          Test omitted by user request: DNS
          Test omitted by user request: DNS
          Starting test: LocatorCheck
             Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1355
             A Global Catalog Server could not be located - All GC's are down.
             PDC Name: \\TAMARDC01.tamar.local
             Locator Flags: 0xe000f1fd
             Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
             A Time Server could not be located.
             The server holding the PDC role is down.
             Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error
             1355
             A Good Time Server could not be located.
             Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1355
             A KDC could not be located - All the KDCs are down.
             ......................... tamar.local failed test LocatorCheck
          Starting test: Intersite
             Skipping site Default-First-Site-Name, this site is outside the scope
             provided by the command line arguments provided.
             ......................... tamar.local passed test Intersite

    C:\Windows\system32>

    יום שלישי 16 ספטמבר 2014 17:48
  • בדיקת DNS לאחר ניתוק השרת :

       The previous call succeeded
       Iterating through the list of servers
       Getting information for the server CN=NTDS Settings,CN=SBS,CN=Servers,CN=Defa
    ult-First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       Getting information for the server CN=NTDS Settings,CN=TAMARDC01,CN=Servers,C
    N=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=tamar,DC=local
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       * Identifying all NC cross-refs.
       Ldap search capability attribute search failed on server SBS, return value =
       81
       Got error while checking if the DC is using FRS or DFSR. Error:
       Win32 Error 81The VerifyReferences, FrsEvent and DfsrEvent tests might fail
       because of this error.
       * Found 2 DC(s). Testing 2 of them.
       Done gathering initial info.

    Doing initial required tests

       Testing server: Default-First-Site-Name\SBS
          Starting test: Connectivity
             * Active Directory LDAP Services Check
             Server SBS resolved to these IP addresses: 192.168.222.10, but none of
             the addresses could be reached (pinged). Please check the network.
             Error: 0x2b02 "Error due to lack of resources."
             This error more often means that the targeted server is shutdown or
             disconnected from the network.
             Got error while checking LDAP and RPC connectivity. Please check your
             firewall settings.
             ......................... SBS failed test Connectivity

       Testing server: Default-First-Site-Name\TAMARDC01
          Starting test: Connectivity
             * Active Directory LDAP Services Check
             Determining IP4 connectivity
             * Active Directory RPC Services Check
             ......................... TAMARDC01 passed test Connectivity

    Doing primary tests

       Testing server: Default-First-Site-Name\SBS
          Test omitted by user request: Advertising
          Test omitted by user request: CheckSecurityError
          Test omitted by user request: CutoffServers
          Test omitted by user request: FrsEvent
          Test omitted by user request: DFSREvent
          Test omitted by user request: SysVolCheck
          Test omitted by user request: KccEvent
          Test omitted by user request: KnowsOfRoleHolders
          Test omitted by user request: MachineAccount
          Test omitted by user request: NCSecDesc
          Test omitted by user request: NetLogons
          Test omitted by user request: ObjectsReplicated
          Test omitted by user request: OutboundSecureChannels
          Test omitted by user request: Replications
          Test omitted by user request: RidManager
          Test omitted by user request: Services
          Test omitted by user request: SystemLog
          Test omitted by user request: Topology
          Test omitted by user request: VerifyEnterpriseReferences
          Test omitted by user request: VerifyReferences
          Test omitted by user request: VerifyReplicas

       Testing server: Default-First-Site-Name\TAMARDC01
          Test omitted by user request: Advertising
          Test omitted by user request: CheckSecurityError
          Test omitted by user request: CutoffServers
          Test omitted by user request: FrsEvent
          Test omitted by user request: DFSREvent
          Test omitted by user request: SysVolCheck
          Test omitted by user request: KccEvent
          Test omitted by user request: KnowsOfRoleHolders
          Test omitted by user request: MachineAccount
          Test omitted by user request: NCSecDesc
          Test omitted by user request: NetLogons
          Test omitted by user request: ObjectsReplicated
          Test omitted by user request: OutboundSecureChannels
          Test omitted by user request: Replications
          Test omitted by user request: RidManager
          Test omitted by user request: Services
          Test omitted by user request: SystemLog
          Test omitted by user request: Topology
          Test omitted by user request: VerifyEnterpriseReferences
          Test omitted by user request: VerifyReferences
          Test omitted by user request: VerifyReplicas

             Starting test: DNS

                   Starting test: DNS

                      DNS Tests are running and not hung. Please wait a few
                      minutes...
                      See DNS test in enterprise tests section for results
                      ......................... SBS failed test DNS
             See DNS test in enterprise tests section for results
             ......................... TAMARDC01 passed test DNS

       Running partition tests on : ForestDnsZones
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation

       Running partition tests on : DomainDnsZones
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation

       Running partition tests on : Schema
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation

       Running partition tests on : Configuration
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation

       Running partition tests on : tamar
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation

       Running enterprise tests on : tamar.local
          Starting test: DNS
             Test results for domain controllers:

                DC: SBS.tamar.local
                Domain: tamar.local


                   TEST: Authentication (Auth)
                      Error: Authentication failed with specified credentials
                      [Error details: 53 (Type: Win32 - Description: The network pat
    h was not found.) - Add connection failed]

                   TEST: Basic (Basc)
                      Error: No LDAP connectivity
                      Error: No WMI connectivity
                      [Error details: 0x800706ba (Type: HRESULT - Facility: Win32, D
    escription: The RPC server is unavailable.) - Connection to WMI server failed]
                      No host records (A or AAAA) were found for this DC


                DC: TAMARDC01.tamar.local
                Domain: tamar.local


                   TEST: Authentication (Auth)
                      Authentication test: Successfully completed

                   TEST: Basic (Basc)
                      The OS
                      Microsoft Windows Server 2012 R2 Standard (Service Pack level:
     0.0)
                      is supported.
                      NETLOGON service is running
                      kdc service is running
                      DNSCACHE service is running
                      DNS service is running
                      DC is a DNS server
                      Network adapters information:
                      Adapter [00000010] vmxnet3 Ethernet Adapter:
                         MAC address is 00:50:56:BE:60:10
                         IP Address is static
                         IP address: 192.168.222.2, fe80::54dd:6d8a:f9c6:deaf
                         DNS servers:
                            192.168.222.2 (TAMARDC01) [Valid]
                      The A host record(s) for this DC was found
                      The SOA record for the Active Directory zone was found
                      The Active Directory zone on this DC/DNS server was found prim
    ary
                      Root zone on this DC/DNS server was not found

                   TEST: Forwarders/Root hints (Forw)
                      Recursion is enabled
                      Forwarders Information:
                         194.90.1.5 (<name unavailable>) [Valid]
                         212.143.212.143 (<name unavailable>) [Valid]

                   TEST: Delegations (Del)
                      Delegation information for the zone: tamar.local.
                         Delegated domain name: _msdcs.tamar.local.
                            Warning: Delegation of DNS server sbs.tamar.local. is br
    oken on IP:192.168.222.10
                            Error: DNS server: sbs.tamar.local. IP:192.168.222.10
                            [Broken delegation]

                   TEST: Dynamic update (Dyn)
                      Test record dcdiag-test-record added successfully in zone tama
    r.local
                      Warning: Failed to delete the test record dcdiag-test-record i
    n zone tamar.local
                      [Error details: 9505 (Type: Win32 - Description: Unsecured DNS
     packet.)]

                   TEST: Records registration (RReg)
                      Network Adapter [00000010] vmxnet3 Ethernet Adapter:
                         Matching CNAME record found at DNS server 192.168.222.2:
                         b5b10e36-c047-4e69-99be-0c17d519c100._msdcs.tamar.local

                         Matching A record found at DNS server 192.168.222.2:
                         TAMARDC01.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.50977130-5dae-4111-8f77-9e58ab02525d.domains._ms
    dcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kerberos._tcp.dc._msdcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.dc._msdcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kerberos._tcp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kerberos._udp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kpasswd._tcp.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.Default-First-Site-Name._sites.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.tam
    ar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.tamar.l
    ocal

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _kerberos._tcp.Default-First-Site-Name._sites.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.gc._msdcs.tamar.local

                         Matching A record found at DNS server 192.168.222.2:
                         gc._msdcs.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _gc._tcp.Default-First-Site-Name._sites.tamar.local

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.tamar.l
    ocal

                         Matching  SRV record found at DNS server 192.168.222.2:
                         _ldap._tcp.pdc._msdcs.tamar.local


                   TEST: External name resolution (Ext)
                      Internet name www.microsoft.com was resolved successfully

             Summary of test results for DNS servers used by the above domain
             controllers:

                DNS server: 192.168.222.10 (sbs.tamar.local.)
                   1 test failure on this DNS server
                   PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DN
    S server 192.168.222.10               [Error details: 1460 (Type: Win32 - Descri
    ption: This operation returned because the timeout period expired.)]
                   DNS delegation for the domain _msdcs.tamar.local. is broken on IP
     192.168.222.10

                   [Error details: 1460 (Type: Win32 - Description: This operation r
    eturned because the timeout period expired.)]

                DNS server: 192.168.222.2 (TAMARDC01)
                   All tests passed on this DNS server
                   Name resolution is functional._ldap._tcp SRV record for the fores
    t root domain is registered

                DNS server: 194.90.1.5 (<name unavailable>)
                   All tests passed on this DNS server

                DNS server: 212.143.212.143 (<name unavailable>)
                   All tests passed on this DNS server

             Summary of DNS test results:

                                                Auth Basc Forw Del  Dyn  RReg Ext
                _________________________________________________________________
                Domain: tamar.local
                   SBS                          FAIL FAIL n/a  n/a  n/a  n/a  n/a
                   TAMARDC01                    PASS PASS PASS FAIL WARN PASS PASS

             ......................... tamar.local failed test DNS
          Test omitted by user request: LocatorCheck
          Test omitted by user request: Intersite

    C:\Windows\system32>

    יום שלישי 16 ספטמבר 2014 17:50
  • מצ"ב גם הודעת שגיאה :

    • נערך על-ידי AVIBS יום שלישי 16 ספטמבר 2014 17:55
    יום שלישי 16 ספטמבר 2014 17:51
  • מצ"ב הודעת הEVENT ID :

    מחכה לתשובתכם תודה תודה רבה מראש....

    מחכה לתשובה תודה תודה רבה מראש..
    • נערך על-ידי AVIBS יום שלישי 16 ספטמבר 2014 18:02
    יום שלישי 16 ספטמבר 2014 18:02
  • אכן על פי השגיאה יש בעיה תקשורת מול הGC  מצרף לך לינק :

    http://technet.microsoft.com/en-us/library/cc756476(v=ws.10).aspx

    תבדוק בבקשה שקיים לך רשומה SRV RECORD  בDNS בשם global catalog 

    יום שלישי 16 ספטמבר 2014 19:48
  • הי,

    לפי הלוג ישנם מספר הגדרות שאינם תקינות:

    1. הגדרות DNS לא עודכנו באופן אוטומטי וחסרות מספר הגדרות DNS

    2. חסרה רפליקציה מול תיקיות sysvol שאינם התרפלקו בצורה מלאה

    3. הגדרות DNS ברמת כ.רשת בשרת אינן נכונות יש לוודא הצבעה מול אותו שרת ומול שרת משני שאותו אתה מסיר לאחר מכן

    4. מומלץ שיהיו שני שרתי DC בארגון ולכן תקים עוד שרת שיוכל לבצע רפליקציה ויוכל להיות זמין במקרה הצורך

    אלי.


    Email:eshlomo9@hotmail.com;Twitter:https://twitter.com/EliShlomo1

    • סומן כתשובה על-ידי Eran Sharvit יום ראשון 21 ספטמבר 2014 09:43
    יום רביעי 17 ספטמבר 2014 18:52
  • תודה אבדוק את הנושא..
    יום ראשון 21 ספטמבר 2014 18:55
  • תודה אבדוק את הנושא..
    יום ראשון 21 ספטמבר 2014 18:55