none
Can not join the Domain controller.. RRS feed

  • Question

  • Can not join the Domain controller..

    Two machines in Google Cloud Services, they are on the public network

    The firewall is closed

    dcdiag /Dnsall  all is pass

    machine1: it is a client
    machine2: Configured Domain controller And DNS Service

    but machine1 can not join the machine2's domain..

    what should i do?

    Friday, July 3, 2020 9:07 AM

Answers

  • Domain join over internet isn't possible. You'll need to provide a connection to the domain via VPN for this to work. You MUST be able to connect to the domain internal DNS server and this is only possible with VPN in your case.

     

    (please don't forget to mark helpful replies as answer)

     

     



    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows Server] Datacenter Management

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees, and confers no rights.

    • Marked as answer by huisky Sunday, July 5, 2020 3:00 PM
    Saturday, July 4, 2020 12:56 PM

All replies

  • Did you run Packet capture while Joining the machine to Domain? From the errors I believe the client is not able to conact the DC


    Thanks HA

    Saturday, July 4, 2020 9:49 AM
  • Domain join over internet isn't possible. You'll need to provide a connection to the domain via VPN for this to work. You MUST be able to connect to the domain internal DNS server and this is only possible with VPN in your case.

     

    (please don't forget to mark helpful replies as answer)

     

     



    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows Server] Datacenter Management

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees, and confers no rights.

    • Marked as answer by huisky Sunday, July 5, 2020 3:00 PM
    Saturday, July 4, 2020 12:56 PM
  • Hello Huisky,

    If these machines are on a private network LAN segment, make sure that DNS is working and able to resolve their local IP. It looks from your screenshot that fengchao resolves to 10.154.0.2, so make sure both machines are in the same subnet LAN 10.154.0.0

    The client must be on the 10.154.0.0 network, it must be able to resolve the domain name to the DC's correct IP address and the communications ports between the two must be open: DNS, NetBIOS, Kerberos, RPC and others.

    If the DC is in the cloud and the client local, you will need a communications channel such as a VPN in order to connect and join as previously mentioned.


    Miguel Fra
    Falcon IT Services
    https://www.falconitservices.com

     


    • Edited by Miguel Fra Saturday, July 4, 2020 5:49 PM
    Saturday, July 4, 2020 5:42 PM
  • thanks for your suggestions,i have joined the domain via vpn
    Sunday, July 5, 2020 3:02 PM
  • Glad to hear, you're welcome. 

     

     



    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows Server] Datacenter Management

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees, and confers no rights.

    Sunday, July 5, 2020 3:04 PM
  • Hi. sir, i have a new question...

    there are many virtual machines in Azure.
    machine1 and machine2 are in internal network, Ip is 192.168.0.x
    machine1 and machine3 are in public network

    now,in machine3, i deployed Domain controllers and VPN server(SoftEther VPN).
    machine1 can joined the domain via VPN, but lost the intranet connection with machine2. 

    machine2 is a linux machine,it is no need to join the domain.

    so,How can I join the domain via VPN as well as  stay internal connection with machine2 ?

    Tuesday, July 7, 2020 7:45 AM
  • I'd try asking this one in newly migrated QnA forums here.

    https://docs.microsoft.com/en-us/answers/topics/azure-active-directory.html

    https://docs.microsoft.com/en-us/answers/index.html

    here you can Ask a question and assign appropriate tags.

    https://docs.microsoft.com/en-us/answers/topics.html?sort=name

     



    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows Server] Datacenter Management

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees, and confers no rights.

    Tuesday, July 7, 2020 12:08 PM