Announcement

Collapse
No announcement yet.

Active Directory broken ?

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Active Directory broken ?

    I’ve been MIA since Monday morning trying to solve a crisis with my home office network servers. Of course, being the tech idiot and geek that I am, I run my own Microsoft Exchanger Server and maintain a domain controller, yadda yadda yadda. What happened Monday morning? Well, I got a new MacBook Pro. Cause for celebration, yeah? I started by trying to setup Active Directory services on the new computer, and me, being the tech idiot and unnecessarily rushing the process while looking after my 10 month old daughter, inadvertently specified my domain controller’s computer name as the MacBook Pro’s name when I added the the new computer to the domain. Well, SHEEEEAT! All hell broke loose with Active Directory–so much that Active Directory’s DNS zones registered the MacBook Pro’s IP as the IP for the lookup of my domain controller, and I only have one primary DNS service running on my network. I have a secondary DNS, but that doesn’t allow me change jack, and that secondary DNS is running Windows 2000 Server, not Windows Server 2003.

    It’s now Thursday and every tech note I could find on Microsoft won’t help me get rid of the error messages I’m seeing on my poor domain controller. Luckily, I have an older domain controller (I don't think I demoted it yet, but maybe it is) that’s been offline for the last eight months, and I don’t make many changes to Active Directory, so rolling back to that data shouldn’t be a problem. BUT, and here’s the huge but, that machine has been on the fritz, not completing boot cycles, hanging randomly, etc. So, I cloned that machine’s hard drive to some a new drive and put it in a Pentium 4 box and ran the Windows Server 2003 install CD and performed a repair. So far, everything looks intact, but I haven’t rebooted the monster domain controller that’s run amuck yet. All e-mail @theMakers.com is down at the moment, and I’m hoping to have it resolved tonight.

    BTW, I should mention that I did have backups on the monster domain controller, but the last backup was CORRUPT! The damn BKF file couldn’t be read by NTBACKUP and the most valuable information there–System State–could not be extracted “as is” by all of these damn popular BKF repair utilities. Those are great if you need to recover documents, but system recovery? FORGET IT!

    Today, I found a thread on this forum that seemed to offer me some hope:

    http://forums.petri.com/showthread.php?t=17417

    The troublehshooting steps that Dr. Kernel prescribed to the poster were invaluable, and some things were messed up, like the Enterprise Domain Controllers permissions, which I fixed. However, I'm still get DCDIAG errors and nltest /sc_query:my_domain errors ("ERROR_NO_SUCH_DOMAIN"). The DNS service can't connect to Active Directory, which results in error events in the DNS log of course.

    I'm waiting for my domain controller to reboot, and I'll post more "exact" error messsages next. Thanks in advance for any suggestions!
    Last edited by flashfreaker; 1st May 2008, 20:21.

  • #2
    Re: Active Directory broken ?

    So here are the errors that DCDIAG outputs (all other tests passed):

    Code:
        Starting test: kccevent
             An Error Event occured.  EventID: 0xC00007AB
                Time Generated: 05/01/2008   12:22:33
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0xC00007A9
                Time Generated: 05/01/2008   12:22:33
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0xC00007AB
                Time Generated: 05/01/2008   12:22:33
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0xC00007A9
                Time Generated: 05/01/2008   12:22:33
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0xC00007A8
                Time Generated: 05/01/2008   12:22:33
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0xC00007A9
                Time Generated: 05/01/2008   12:22:33
                (Event String could not be retrieved)
             An Warning Event occured.  EventID: 0x80000677
                Time Generated: 05/01/2008   12:22:33
                (Event String could not be retrieved)
             An Error Event occured.  EventID: 0xC0000466
                Time Generated: 05/01/2008   12:22:33
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:22:51
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:23:55
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:23:55
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:23:55
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:23:55
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:23:55
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:23:55
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:25:00
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:25:00
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:25:00
                (Event String could not be retrieved)
             An Information Event occured.  EventID: 0x40000497
                Time Generated: 05/01/2008   12:25:00
                (Event String could not be retrieved)
             ......................... SERVER failed test kccevent
    Here is the output of the nltest queries that the other thread mentions:

    Code:
    nltest /dsgetdc: /pdc /force /avoidself
    DsGetDcName failed: Status = 1355 0x54b ERROR_NO_SUCH_DOMAIN
    
    nltest /sc_query:domainname
    I_NetLogonControl failed: Status = 1355 0x54b ERROR_NO_SUCH_DOMAIN
    
    nltest /sc_verify:domainname
    I_NetLogonControl failed: Status = 1355 0x54b ERROR_NO_SUCH_DOMAIN
    I went in to update the registry's debug values for the Knowledge Consistency Checker to "5" so that (hopefully) I'll see more in the Event Logs about this KCCEVENT information.

    Comment


    • #3
      Re: Active Directory broken ?

      And here's more info from the DCDIAG test (exceeded post limit):

      Code:
        Starting test: systemlog
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:25:32
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:26:07
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:26:42
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:27:17
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:27:53
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:28:28
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:29:03
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:29:38
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:30:13
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:30:49
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:31:24
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:31:59
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:32:36
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   11:33:12
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0xC25A001D
                  Time Generated: 05/01/2008   11:59:01
                  (Event String could not be retrieved)
               An Error Event occured.  EventID: 0xC0001F60
                  Time Generated: 05/01/2008   12:04:50
                  Event String: The browser service has failed to retrieve the
      
               An Error Event occured.  EventID: 0x00000423
                  Time Generated: 05/01/2008   12:08:56
                  Event String: The DHCP service failed to see a directory server
      
               An Error Event occured.  EventID: 0x00000416
                  Time Generated: 05/01/2008   12:08:56
                  Event String: The DHCP/BINL service on the local machine,
      
               An Error Event occured.  EventID: 0x00000423
                  Time Generated: 05/01/2008   12:08:56
                  Event String: The DHCP service failed to see a directory server
      
               An Error Event occured.  EventID: 0xC0000021
                  Time Generated: 05/01/2008   12:10:21
                  (Event String could not be retrieved)
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:10:56
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:11:31
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:12:18
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:12:53
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:13:28
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:14:03
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:14:39
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:15:14
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:15:49
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:16:24
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:16:59
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:17:35
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:18:10
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:18:45
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:19:20
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:19:55
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:20:31
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:21:06
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:21:41
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:22:16
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:22:51
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:23:27
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:24:02
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:24:37
                  Event String: The dynamic registration of the DNS record
      
               An Error Event occured.  EventID: 0x0000168E
                  Time Generated: 05/01/2008   12:25:12
                  Event String: The dynamic registration of the DNS record
      
               ......................... SERVER failed test systemlog

      Comment


      • #4
        Re: Active Directory broken ?

        remove the macbook pro from the domain.
        run netdiag /fix on the DC as a start.

        Hey cool, I just noticed you have knowledge of Flash.
        I just started programming in Flash
        Last edited by Dumber; 1st May 2008, 20:51.
        Marcel
        Technical Consultant
        Netherlands
        http://www.phetios.com
        http://blog.nessus.nl

        MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
        "No matter how secure, there is always the human factor."

        "Enjoy life today, tomorrow may never come."
        "If you're going through hell, keep going. ~Winston Churchill"

        Comment


        • #5
          Re: Active Directory broken ?

          Many thanks for your reply! The MacBook Pro machine is no longer running on the network--I don't know how I'd remove it otherwise (it has no netbios name in the AD Users and Computers snap-in). Also, I just tried to run:
          Code:
          netdom verify flaction.com
          And I received an "Access is denied" response.

          I googled "netdom verify access is denied", and ran across this technote:

          http://support.microsoft.com/kb/260575

          and followed that procedure to reset the machine password. Waiting for the server to finishing rebooting...

          Comment


          • #6
            Re: Active Directory broken ?

            But also run netdiag /fix.
            It's truly an amazing tool
            I've managed to fix quite a lot of my customers with this small and simple tool.
            Marcel
            Technical Consultant
            Netherlands
            http://www.phetios.com
            http://blog.nessus.nl

            MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
            "No matter how secure, there is always the human factor."

            "Enjoy life today, tomorrow may never come."
            "If you're going through hell, keep going. ~Winston Churchill"

            Comment

            Working...
            X