Announcement

Collapse
No announcement yet.

DCPROMO; adding child domain to pdc, pls help

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • DCPROMO; adding child domain to pdc, pls help

    Hello

    Im trying to add a child domain (branch office) to the headquarters domain server but without success. When adding there are two erros in the event log

    Errors:
    Event ID: 1125 Source: NTDS Replication (details bellow)
    Event ID: 1168 Source: NTDS General (details bellow)
    dcpromo.log (details bellow)
    network monitor (details bellow)

    My network scenario:
    Root DC: Windows Server 2003 R2 x64 (subnet: 192.168.102.10 name: dc01.mycompany.local)
    ipconfig:
    Child DC: Windows Server R2 x86 (subnet: 192.168.103.10 name: dc02 )
    Both networks are connected via VPN (Cisco 2811 “main network” and Cisco 1821 “child dc”) the link between both is 2MBIT.
    FQDN Child Domain: childnetwork.mycompany.local

    Tests:
    Can Ping both computers by IP address and netbios name.
    Can ping mycompany.local network all nodes using FQDN (i.e. DC01.mycompany.local)
    Join main server as a member and then DCPROMO.

    What I do:
    The child domain is configured with root DC dns server.
    Installed DNS server into child.
    Run DCPromo “domain controller for a new ...” > “Child domain in” > “username/passwd and fqdn of domain” > “Parent domain: 'mycompany.local'; domain: chidnetwork;” > “netbios: childnetwork” > “permissions compatible with server 2003 ...”.

    What I've tried:
    dcdiag tests, successful.
    Force kerberos to use tcp instead udp (udp uses connectionless,)
    Have the child server joined the domaim and then DCPROMO
    All possible configurations to the DNS.

    Microsoft KB's without luck:
    http://support.microsoft.com/kb/311078
    http://support.microsoft.com/kb/265090
    http://support.microsoft.com/kb/232070/en-us
    http://support.microsoft.com/?id=255248
    http://support.microsoft.com/?id=244474
    http://support.microsoft.com/kb/930850 (fix already included in R2 SP2?)
    etc...



    Logs/Errors:

    Event Type: Error
    Event Source: NTDS Replication
    Event Category: Setup
    Event ID: 1125
    Date: 16/06/2007
    Time: 19:12:16
    User: NT AUTHORITY\ANONYMOUS LOGON
    Computer: DC02
    Description:
    The Active Directory Installation Wizard (Dcpromo) was unable to establish connection with the following domain controller.

    Domain controller:
    a8c64e5b-a2a2-451b-bf3b-3f08ea3b928a._msdcs.mycompany.local

    Additional Data
    Error value:
    1908 Could not find the domain controller for this domain.

    For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

  • #2
    Re: DCPROMO; adding child domain to pdc, pls help

    DCPROMO.LOG:
    dcpromoui D04.620 0376 Enter State::GetOperation CHILD
    dcpromoui D04.620 0377 Enter State::GetDomainReinstallFlag false
    dcpromoui D04.620 0378 Enter State::GetDomainControllerReinstallFlag false
    dcpromoui D04.620 0379 Enter SetAnswerFilePromoteFlags
    dcpromoui D04.620 037A 0xC0
    dcpromoui D04.620 037B Enter State::ShouldAllowAnonymousAccess false
    dcpromoui D04.620 037C Enter State::GetUserDomainName mycompany.local
    dcpromoui D04.620 037D Enter MassageUserName mycompany.local\localadmin
    dcpromoui D04.620 037E mycompany.local\localadmin
    dcpromoui D04.620 037F Enter SetupPaths
    dcpromoui D04.620 0380 Enter State::GetDatabasePath C:\WINDOWS\NTDS
    dcpromoui D04.620 0381 Enter State::GetLogPath C:\WINDOWS\NTDS
    dcpromoui D04.620 0382 Enter State::GetSYSVOLPath C:\WINDOWS\SYSVOL
    dcpromoui D04.620 0383 Enter FS::GetPathSyntax C:\WINDOWS\NTDS
    dcpromoui D04.620 0384 false
    dcpromoui D04.620 0385 Enter FS::CreateFolder C:\WINDOWS\NTDS
    dcpromoui D04.620 0386 Enter FS::GetPathSyntax C:\WINDOWS\NTDS
    dcpromoui D04.620 0387 false
    dcpromoui D04.620 0388 Enter FS::GetRootFolder C:\WINDOWS\NTDS
    dcpromoui D04.620 0389 Enter FS::GetPathSyntax C:\WINDOWS\NTDS
    dcpromoui D04.620 038A HRESULT = 0x00000000
    dcpromoui D04.620 038B Enter FS::GetPathSyntax C:\WINDOWS\NTDS
    dcpromoui D04.620 038C true
    dcpromoui D04.620 038D Enter EmptyFolder C:\WINDOWS\NTDS
    dcpromoui D04.620 038E Enter FS::IsFolderEmpty
    dcpromoui D04.620 038F Enter FS::GetPathSyntax C:\WINDOWS\NTDS
    dcpromoui D04.620 0390 true
    dcpromoui D04.620 0391 Enter FS::GetFolder C:\WINDOWS\NTDS\*.*
    dcpromoui D04.620 0392 Enter FS::SplitPath C:\WINDOWS\NTDS\*.*
    dcpromoui D04.620 0393 Enter FS::Iterator::Start
    dcpromoui D04.620 0394 skipping dot path .
    dcpromoui D04.620 0395 skipping dot path ..
    dcpromoui D04.620 0396 Enter FS::Iterator::Finish
    dcpromoui D04.620 0397 Enter FS::GetPathSyntax C:\WINDOWS\SYSVOL
    dcpromoui D04.620 0398 false
    dcpromoui D04.620 0399 Enter FS::CreateFolder C:\WINDOWS\SYSVOL
    dcpromoui D04.620 039A Enter FS::GetPathSyntax C:\WINDOWS\SYSVOL
    dcpromoui D04.620 039B false
    dcpromoui D04.620 039C Enter FS::GetRootFolder C:\WINDOWS\SYSVOL
    dcpromoui D04.620 039D Enter FS::GetPathSyntax C:\WINDOWS\SYSVOL
    dcpromoui D04.620 039E HRESULT = 0x00000000
    dcpromoui D04.620 039F Calling DsRoleDcAsDc
    dcpromoui D04.620 03A0 lpServer : (null)
    dcpromoui D04.620 03A1 lpDnsDomainName : childnetwork.mycompany.local
    dcpromoui D04.620 03A2 lpFlatDomainName : childnetwork
    dcpromoui D04.620 03A3 lpSiteName : (null)
    dcpromoui D04.620 03A4 lpDsDatabasePath : C:\WINDOWS\NTDS
    dcpromoui D04.620 03A5 lpDsLogPath : C:\WINDOWS\NTDS
    dcpromoui D04.620 03A6 lpSystemVolumeRootPath : C:\WINDOWS\SYSVOL
    dcpromoui D04.620 03A7 lpParentDnsDomainName : mycompany.local
    dcpromoui D04.620 03A8 lpParentServer : (null)
    dcpromoui D04.620 03A9 lpAccount : mycompany.local\localadmin
    dcpromoui D04.620 03AA Options : 0xC0
    dcpromoui D04.620 03AB Enter DoProgressLoop
    dcpromoui D04.620 03AC Enter State::GetOperation CHILD
    dcpromoui D04.620 03AD Enter ProgressDialog::UpdateButton
    dcpromoui D04.620 03AE Enter ProgressDialog::UpdateButton Cancel
    dcpromoui D04.620 03AF Enter ProgressDialog::UpdateText Forcing a time synch with \\DC01.mycompany.local

    dcpromoui D04.620 03B0 Enter ProgressDialog::UpdateText Creating the System Volume C:\WINDOWS\SYSVOL

    dcpromoui D04.620 03B1 Enter ProgressDialog::UpdateText Examining an existing Active Directory forest
    dcpromoui D04.620 03B2 Enter ProgressDialog::UpdateText Configuring the local domain controller to host Active Directory
    dcpromoui D04.620 03B3 Enter ProgressDialog::UpdateText Replicating the schema directory partition
    dcpromoui D04.620 03B4 Enter ProgressDialog::UpdateText Replicating CN=Schema,CN=Configuration,DC=darntonelgee,DC=loca l: received 1000 out of approximately 1659 objects
    dcpromoui D04.620 03B5 Enter ProgressDialog::UpdateText Replicating CN=Schema,CN=Configuration,DC=darntonelgee,DC=loca l: received 1999 out of approximately 1999 objects
    dcpromoui D04.620 03B6 Enter ProgressDialog::UpdateText Replicating the configuration directory partition
    dcpromoui D04.620 03B7 Enter ProgressDialog::UpdateText Replicating CN=Configuration,DC=darntonelgee,DC=local: received 1000 out of approximately 4410 objects
    dcpromoui D04.620 03B8 Enter ProgressDialog::UpdateText Replicating CN=Configuration,DC=darntonelgee,DC=local: received 1989 out of approximately 4410 objects
    dcpromoui D04.620 03B9 Enter ProgressDialog::UpdateText Replicated the configuration container.
    dcpromoui D04.620 03BA Enter ProgressDialog::UpdateText The attempted domain controller operation has completed

    dcpromoui D04.620 03BB Enter ProgressDialog::UpdateButton
    dcpromoui D04.620 03BC Progress loop complete.
    dcpromoui D04.620 03BD Calling DsRoleGetDcOperationResults
    dcpromoui D04.620 03BE Error 0x0 (!0 => error)
    dcpromoui D04.620 03BF Operation results:
    dcpromoui D04.620 03C0 OperationStatus : 0x774 !0 => error
    dcpromoui D04.620 03C1 DisplayString : Active Directory could not create the object CN=childnetwork,CN=Partitions,CN=Configuration,DC= darntonelgee,DC=local. Check the event log for possible system errors.
    dcpromoui D04.620 03C2 ServerInstalledSite : (null)
    dcpromoui D04.620 03C3 OperationResultsFlags: 0x0
    dcpromoui D04.620 03C4 Enter ProgressDialog::UpdateText Active Directory could not create the object CN=childnetwork,CN=Partitions,CN=Configuration,DC= darntonelgee,DC=local. Check the event log for possible system errors.
    dcpromoui D04.620 03C5 Enter State::SetOperationResultsMessage Active Directory could not create the object CN=childnetwork,CN=Partitions,CN=Configuration,DC= darntonelgee,DC=local. Check the event log for possible system errors.
    dcpromoui D04.620 03C6 Enter State::SetOperationResultsFlags 0x0
    dcpromoui D04.620 03C7 Exception caught
    dcpromoui D04.620 03C8 catch completed
    dcpromoui D04.620 03C9 handling exception
    dcpromoui D04.620 03CA Enter State::ClearHiddenWhileUnattended
    dcpromoui D04.620 03CB Enter State::GetRunContext NT5_STANDALONE_SERVER
    dcpromoui D04.620 03CC Enter State::GetRunContext NT5_STANDALONE_SERVER
    dcpromoui D04.620 03CD Enter EnableConsoleLocking
    dcpromoui D04.620 03CE Enter RegistryKey::Create SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
    dcpromoui D04.620 03CF Enter RegistryKey::SetValue-DWORD DisableLockWorkstation
    dcpromoui D04.620 03D0 Enter State::SetOperationResults result FAILURE
    dcpromoui D04.620 03D1 Enter ProgressDialog::UpdateText
    dcpromoui D04.620 03D2 Enter State::IsOperationRetryAllowed
    dcpromoui D04.620 03D3 true
    dcpromoui D04.620 03D4 Enter ComposeFailureMessage
    dcpromoui D04.620 03D5 Enter GetErrorMessage 80070774
    dcpromoui D04.620 03D6 Enter State::GetOperationResultsMessage Active Directory could not create the object CN=childnetwork,CN=Partitions,CN=Configuration,DC= darntonelgee,DC=local. Check the event log for possible system errors.
    dcpromoui D04.620 03D7 Enter State::GetOperationResultsFlags 0x0
    dcpromoui D04.620 03D8 Enter State::SetFailureMessage The operation failed because:

    Active Directory could not create the object CN=childnetwork,CN=Partitions,CN=Configuration,DC= darntonelgee,DC=local. Check the event log for possible system errors.

    "Could not find the domain controller for this domain."
    dcpromoui D04.620 03D9 Enter State::GetFailureMessage The operation failed because:

    Active Directory could not create the object CN=childnetwork,CN=Partitions,CN=Configuration,DC= darntonelgee,DC=local. Check the event log for possible system errors.

    "Could not find the domain controller for this domain."
    dcpromoui D04.620 03DA MessageBox: Active Directory Installation Wizard : The operation failed because:

    Active Directory could not create the object CN=childnetwork,CN=Partitions,CN=Configuration,DC= darntonelgee,DC=local. Check the event log for possible system errors.

    "Could not find the domain controller for this domain."
    dcpromoui D04.620 03DB posting message to progress window
    dcpromoui D04.F18 03DC Enter ProgressDialog::UpdateText Operation Stopped
    dcpromoui D04.F18 03DD Enter ProgressDialog::OnDestroy
    dcpromoui D04.F18 03DE OPERATION FAILED
    dcpromoui D04.F18 03DF Enter State::GetNeedsReboot false
    dcpromoui D04.F18 03E0 Enter State::IsOperationRetryAllowed
    dcpromoui D04.F18 03E1 true
    dcpromoui D04.F18 03E2 Enter Wizard::SetNextPageID id = 156
    dcpromoui D04.F18 03E3 push 142
    dcpromoui D04.F18 03E4 Enter FailurePage::OnInit
    dcpromoui D04.F18 03E5 Enter MultiLineEditBoxThatForwardsEnterKey::Init
    dcpromoui D04.F18 03E6 Enter ControlSubclasser::Init
    dcpromoui D04.F18 03E7 Enter FailurePage::OnSetActive
    dcpromoui D04.F18 03E8 Enter State::GetOperationResultsCode FAILURE
    dcpromoui D04.F18 03E9 Enter State::GetFailureMessage The operation failed because:

    Active Directory could not create the object CN=childnetwork,CN=Partitions,CN=Configuration,DC= darntonelgee,DC=local. Check the event log for possible system errors.

    "Could not find the domain controller for this domain."

    Comment


    • #3
      Re: DCPROMO; adding child domain to pdc, pls help

      Not sure if I'll be able to help but:

      -Do you have a firewall between the servers?
      -Did you run dcdiag on both servers?
      -Have you tried running dcpromo while the servers were in the same location and just move it after it's a DC?

      Is this new server going to be the second DC in the forest?
      Regards,
      Jeremy

      Network Consultant/Engineer
      Baltimore - Washington area and beyond
      www.gma-cpa.com

      Comment


      • #4
        Re: DCPROMO; adding child domain to pdc, pls help

        Hi there,
        check your firewall it might be stopping replication between your dc's.

        Comment

        Working...
        X