Toon posts:

[W2k3] domein functioneert niet meer *

Pagina: 1
Acties:
  • 984 views sinds 30-01-2008
  • Reageer

dinsdag 26 juli 2005 13:49

Acties:
  • ArjanC
  • Registratie: Juli 2001
  • Laatst online: 26-01 17:16

ArjanC

Topicstarter
Ik had hier een oude (zeus) server staan, deze heb ik nu vervangen voor een andere (hercules).
bijde servers draaien windows 2003 Server en zijn Domain controller.

om de oude server uit het netwerk te halen heb ik de nieuwe server DNS server gemaakt en hem laten synchronizeren.
toen deze helemaal klaar was heb ik alle rollen overgezet naar de nieuwe server :
code:
1
2
3
4
5
6
7
8
9
10

Schema - CN=NTDS Settings,CN=HERCULES,CN=Servers,CN=Default-First-Site,CN=Sites,
CN=Configuration,DC=coolegem,DC=org
Domain - CN=NTDS Settings,CN=HERCULES,CN=Servers,CN=Default-First-Site,CN=Sites,
CN=Configuration,DC=coolegem,DC=org
PDC - CN=NTDS Settings,CN=HERCULES,CN=Servers,CN=Default-First-Site,CN=Sites,CN=
Configuration,DC=coolegem,DC=org
RID - CN=NTDS Settings,CN=HERCULES,CN=Servers,CN=Default-First-Site,CN=Sites,CN=
Configuration,DC=coolegem,DC=org
Infrastructure - CN=NTDS Settings,CN=HERCULES,CN=Servers,CN=Default-First-Site,C
N=Sites,CN=Configuration,DC=coolegem,DC=org


daarna heb ik geprobeerd om met DCPROMO de oude server te verwijderen, maar deze gaf aan dat hij geen domein controller kan vinden en dus niet verder kan, hierna functioneerde hij niet meer als AD. wat hij nog wel zou moeten.

ik heb hem toen maar uit gezet.
in AD heb ik onder Domain Controllers de oude (zeus) server verwijderd zodat er nog maar 1 staat (Hercules).

toen kon ik mijn Exchange server niet meer benaderen. deze draait op Hercules.
als ik een NSlookup deed gaf hij aan dat hij de nameserver niet kon vinden.
omdat de DNS server nog helemaal vol zat met links naar ZEUS heb ik de zone verwijdert en weer aangemaakt.
deze is nu volgens mij weer helemaal goed (hij is weer populated met computers/server)
toen een MX record aangemaakt maar nog steeds kan hij niet de mailserver benaderen.

als ik op de server netdiag draai krijg ik deze meldingen :
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site\HERCULES
      Starting test: Connectivity
         ......................... HERCULES passed test Connectivity

Doing primary tests

   Testing server: Default-First-Site\HERCULES
      Starting test: Replications
         [ZEUS] DsBindWithSpnEx() failed with error 1722,
         The RPC server is unavailable..
         [ARES] DsBindWithSpnEx() failed with error 1722,
         The RPC server is unavailable..
         ......................... HERCULES passed test Replications
      Starting test: NCSecDesc
         ......................... HERCULES passed test NCSecDesc
      Starting test: NetLogons
         ......................... HERCULES passed test NetLogons
      Starting test: Advertising
         ......................... HERCULES passed test Advertising
      Starting test: KnowsOfRoleHolders
         ......................... HERCULES passed test KnowsOfRoleHolders
      Starting test: RidManager
         ......................... HERCULES passed test RidManager
      Starting test: MachineAccount
         ......................... HERCULES passed test MachineAccount
      Starting test: Services
         ......................... HERCULES passed test Services
      Starting test: ObjectsReplicated
         ......................... HERCULES passed test ObjectsReplicated
      Starting test: frssysvol
         ......................... HERCULES passed test frssysvol
      Starting test: frsevent
         There are warning or error events within the last 24 hours after the
         SYSVOL has been shared.  Failing SYSVOL replication problems may cause
         Group Policy problems.
         ......................... HERCULES failed test frsevent
      Starting test: kccevent
         An Error Event occured.  EventID: 0xC00005F7
            Time Generated: 07/26/2005   13:45:50
            Event String: The Intersite Messaging service using the SMTP
         An Warning Event occured.  EventID: 0x80000581
            Time Generated: 07/26/2005   13:45:50
            Event String: The Intersite Messaging service could not send a
         An Error Event occured.  EventID: 0xC000055D
            Time Generated: 07/26/2005   13:45:50
            Event String: The Intersite Messaging service could not receive
         ......................... HERCULES failed test kccevent
      Starting test: systemlog
         An Error Event occured.  EventID: 0x00000457
            Time Generated: 07/26/2005   13:12:56
            (Event String could not be retrieved)
         An Error Event occured.  EventID: 0x00000457
            Time Generated: 07/26/2005   13:16:05
            (Event String could not be retrieved)
         An Error Event occured.  EventID: 0x00000457
            Time Generated: 07/26/2005   13:25:12
            (Event String could not be retrieved)
         ......................... HERCULES failed test systemlog
      Starting test: VerifyReferences
         ......................... HERCULES passed test VerifyReferences

   Running partition tests on : ForestDnsZones
      Starting test: CrossRefValidation
         ......................... ForestDnsZones passed test CrossRefValidation

      Starting test: CheckSDRefDom
         ......................... ForestDnsZones passed test CheckSDRefDom

   Running partition tests on : DomainDnsZones
      Starting test: CrossRefValidation
         ......................... DomainDnsZones passed test CrossRefValidation

      Starting test: CheckSDRefDom
         ......................... DomainDnsZones passed test CheckSDRefDom

   Running partition tests on : Schema
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom

   Running partition tests on : Configuration
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom

   Running partition tests on : coolegem
      Starting test: CrossRefValidation
         ......................... coolegem passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... coolegem passed test CheckSDRefDom

   Running enterprise tests on : coolegem.org
      Starting test: Intersite
         ......................... coolegem.org passed test Intersite
      Starting test: FsmoCheck
         Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1355
         A Global Catalog Server could not be located - All GC's are down.
         Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
         A Time Server could not be located.
         The server holding the PDC role is down.
         Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1355
         A KDC could not be located - All the KDCs are down.
         ......................... coolegem.org failed test FsmoCheck


hij ziet de server dus niet als een Domain controller??

als ik in dos : SET LOGONSERVER doe dan geeft hij nog altijd aan dat dat de \\ZEUS is.

Wat kan ik hier nog mee doen ? alle roles zijn goed overgezet (bekeken in dos en AD)

dinsdag 26 juli 2005 14:03

Acties:

Verwijderd

je dcdiag geeft aan dat hij geen global catalogserver kan vinden, waarschijnlijk is die "rol" nog toebedeeld aan zeus.

je hebt server Zeus weggehaald zonder dcpromo. Dat is vragen om dit soort ellende. Het demoten via dcpromo zorgt ervoor dat de verwijzingen in je AD naar Zeus worden verwijderd of vervangen door kloppende verwijzingen naar een ander DC.

Je geeft aan dat je zeus hebt uitgezet. Mijn suggestie is hem weer aan te zetten en tòch dpromo uit te voeren om je ad op orde te krijgen. anders moet je aan de slag met NTDSutil...

dinsdag 26 juli 2005 14:17

Acties:
  • Grolsch
  • Registratie: Maart 2003
  • Laatst online: 11:24

Grolsch

is inderdaad kloten, dat wordt stoeien met ntdsutil

lees dit maar eens:

http://support.microsoft....aspx?scid=kb;en-us;216498

PVOUPUT - 13.400WP - Twente

dinsdag 26 juli 2005 14:39

Acties:
  • ArjanC
  • Registratie: Juli 2001
  • Laatst online: 26-01 17:16

ArjanC

Topicstarter
wow ! het werkt ! bedankt!

dinsdag 26 juli 2005 18:20

Acties:
  • ArjanC
  • Registratie: Juli 2001
  • Laatst online: 26-01 17:16

ArjanC

Topicstarter
okay, nu heb nog 1 probleem. ik heb nog steeds geen global catalog server, ik heb hem in Sites and services aangevinkt maar nog steeds krijg nog steeds dit :

code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142

Domain Controller Diagnosis

Performing initial setup:
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site\HERCULES
      Starting test: Connectivity
         ......................... HERCULES passed test Connectivity

Doing primary tests

   Testing server: Default-First-Site\HERCULES
      Starting test: Replications
         [ARES] DsBindWithSpnEx() failed with error 1722,
         The RPC server is unavailable..
         [Replications Check,HERCULES] A recent replication attempt failed:
            From ZEUS to HERCULES
            Naming Context: CN=Schema,CN=Configuration,DC=coolegem,DC=org
            The replication generated an error (8524):
            The DSA operation is unable to proceed because of a DNS lookup failu
re.
            The failure occurred at 2005-07-26 17:55:54.
            The last success occurred at 2005-07-26 14:16:12.
            4 failures have occurred since the last success.
            The guid-based DNS name 628fa322-d0c2-4263-b422-1eaeae55eacb._msdcs.
coolegem.org
            is not registered on one or more DNS servers.
         [ZEUS] DsBindWithSpnEx() failed with error 1722,
         The RPC server is unavailable..
         [Replications Check,HERCULES] A recent replication attempt failed:
            From ZEUS to HERCULES
            Naming Context: CN=Configuration,DC=coolegem,DC=org
            The replication generated an error (8524):
            The DSA operation is unable to proceed because of a DNS lookup failu
re.
            The failure occurred at 2005-07-26 17:55:52.
            The last success occurred at 2005-07-26 14:14:57.
            4 failures have occurred since the last success.
            The guid-based DNS name 628fa322-d0c2-4263-b422-1eaeae55eacb._msdcs.
coolegem.org
            is not registered on one or more DNS servers.
         [Replications Check,HERCULES] A recent replication attempt failed:
            From ZEUS to HERCULES
            Naming Context: DC=coolegem,DC=org
            The replication generated an error (8524):
            The DSA operation is unable to proceed because of a DNS lookup failu
re.
            The failure occurred at 2005-07-26 17:55:57.
            The last success occurred at 2005-07-26 14:30:02.
            4 failures have occurred since the last success.
            The guid-based DNS name 628fa322-d0c2-4263-b422-1eaeae55eacb._msdcs.
coolegem.org
            is not registered on one or more DNS servers.
         ......................... HERCULES passed test Replications
      Starting test: NCSecDesc
         ......................... HERCULES passed test NCSecDesc
      Starting test: NetLogons
         ......................... HERCULES passed test NetLogons
      Starting test: Advertising
         ......................... HERCULES passed test Advertising
      Starting test: KnowsOfRoleHolders
         ......................... HERCULES passed test KnowsOfRoleHolders
      Starting test: RidManager
         ......................... HERCULES passed test RidManager
      Starting test: MachineAccount
         ......................... HERCULES passed test MachineAccount
      Starting test: Services
         ......................... HERCULES passed test Services
      Starting test: ObjectsReplicated
         ......................... HERCULES passed test ObjectsReplicated
      Starting test: frssysvol
         ......................... HERCULES passed test frssysvol
      Starting test: frsevent
         There are warning or error events within the last 24 hours after the
         SYSVOL has been shared.  Failing SYSVOL replication problems may cause
         Group Policy problems.
         ......................... HERCULES failed test frsevent
      Starting test: kccevent
         An Error Event occured.  EventID: 0xC00005F7
            Time Generated: 07/26/2005   18:15:51
            Event String: The Intersite Messaging service using the SMTP
         An Warning Event occured.  EventID: 0x80000581
            Time Generated: 07/26/2005   18:15:51
            Event String: The Intersite Messaging service could not send a
         An Error Event occured.  EventID: 0xC000055D
            Time Generated: 07/26/2005   18:15:51
            Event String: The Intersite Messaging service could not receive
         ......................... HERCULES failed test kccevent
      Starting test: systemlog
         ......................... HERCULES passed test systemlog
      Starting test: VerifyReferences
         ......................... HERCULES passed test VerifyReferences

   Running partition tests on : ForestDnsZones
      Starting test: CrossRefValidation
         ......................... ForestDnsZones passed test CrossRefValidation

      Starting test: CheckSDRefDom
         ......................... ForestDnsZones passed test CheckSDRefDom

   Running partition tests on : DomainDnsZones
      Starting test: CrossRefValidation
         ......................... DomainDnsZones passed test CrossRefValidation

      Starting test: CheckSDRefDom
         ......................... DomainDnsZones passed test CheckSDRefDom

   Running partition tests on : Schema
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom

   Running partition tests on : Configuration
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom

   Running partition tests on : coolegem
      Starting test: CrossRefValidation
         ......................... coolegem passed test CrossRefValidation
      Starting test: CheckSDRefDom
         ......................... coolegem passed test CheckSDRefDom

   Running enterprise tests on : coolegem.org
      Starting test: Intersite
         ......................... coolegem.org passed test Intersite
      Starting test: FsmoCheck
         Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1355
         A Global Catalog Server could not be located - All GC's are down.
         Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
         A Time Server could not be located.
         The server holding the PDC role is down.
         Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 135
5
         A Good Time Server could not be located.
         Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1355
         A KDC could not be located - All the KDCs are down.
         ......................... coolegem.org failed test FsmoCheck


alle FSMO roles staan goed en de server is een Global Catalog.

dinsdag 26 juli 2005 18:39

Acties:
  • ArjanC
  • Registratie: Juli 2001
  • Laatst online: 26-01 17:16

ArjanC

Topicstarter
extra info, als ik een netdom uitvoer van mijn werkstation dan geeft hij dit :

The specified domain either does not exist or could not be contacted.

dinsdag 26 juli 2005 23:15

Acties:

Verwijderd

je nieuwe dc gebruikt de goede dns server (zichzelf). netlogon service al herstart?

woensdag 27 juli 2005 11:28

Acties:
  • ArjanC
  • Registratie: Juli 2001
  • Laatst online: 26-01 17:16

ArjanC

Topicstarter
Netlogon services heb ik herstart maar dat was niet de oplossing.

ik heb nog wat gevonden op ms kb : http://support.microsoft....spx?scid=kb;en-us;q316790

door deze te doen ziet dcdiag hem weer als een domain controller en kan iedereen weer normaal inloggen.

nu alleen nog de NETLOGON share aanmaken (http://support.microsoft.com/kb/315457/)

en dan ben ik weer klaar ;) _/-\o_

[ Voor 80% gewijzigd door ArjanC op 27-07-2005 11:49 ]

Pagina: 1
Reageer

Apple iPhone 17 LG OLED evo G5 Google Pixel 10 Samsung Galaxy S25 Star Wars: Outlaws Nintendo Switch 2 Apple AirPods Pro (2e generatie) Sony PlayStation 5 Pro

Tweakers is onderdeel van DPG Media B.V.
Alle rechten voorbehouden - Auteursrecht © 1998 - 2026