Announcement

Collapse
No announcement yet.

DNS and Active Directory

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • DNS and Active Directory

    Hi all,
    i have some problems with AD (regarding exchange 2007 installation) and DNS. When executing netdiag /test:dns i receive:

    DNS test . . . . . . . . . . . . . : Failed
    [WARNING] The DNS entries for this DC are not registered correctly on DNS se
    rver '10.10.10.5'. Please wait for 30 minutes for DNS server replication.
    [WARNING] The DNS entries for this DC are not registered correctly on DNS se
    rver '10.10.10.135'. Please wait for 30 minutes for DNS server replication.
    [FATAL] No DNS servers have the DNS records for this DC registered.

    Here's mi actual AD infrastructure:

    SABSERVER (10.10.10.5) with Windows 2003 + AD + DNS + Exchange 2003
    PDC (10.10.10.135) with WIndows 2008 + AD + DNS
    EXCH2007 (10.10.10.132) with Windows 2008 and a future installation of Exchange 2007

    Any hints ?

    Thanks, Michele

  • #2
    Re: DNS and Active Directory

    You could try restarting the Netlogon service on the DC not registered. Ths should force it to register in DNS. Beware though, this will effect clients authentication.

    Comment


    • #3
      Re: DNS and Active Directory

      or run netdiag /fix
      Marcel
      Technical Consultant
      Netherlands
      http://www.phetios.com
      http://blog.nessus.nl

      MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
      "No matter how secure, there is always the human factor."

      "Enjoy life today, tomorrow may never come."
      "If you're going through hell, keep going. ~Winston Churchill"

      Comment


      • #4
        Re: DNS and Active Directory

        Originally posted by Virtual View Post
        You could try restarting the Netlogon service on the DC not registered. Ths should force it to register in DNS. Beware though, this will effect clients authentication.
        Done on both 10.10.10.5 and 10.10.10.135 but still the same error

        Comment


        • #5
          Re: DNS and Active Directory

          Originally posted by Dumber View Post
          or run netdiag /fix
          Netdiag /fix return that:

          DNS test . . . . . . . . . . . . . : Failed
          [FIX] re-register DC DNS entry 'yyy.xxx.it.' on DNS server '10.10.10.5' succeed.
          FIX PASS - netdiag re-registered missing DNS entries for this DC successfull y on DNS server '10.10.10.5'.
          [FATAL] No DNS servers have the DNS records for this DC registered.

          and still don't work.

          Comment


          • #6
            Re: DNS and Active Directory

            I see. And the records for the DC are not in DNS still?

            Comment


            • #7
              Re: DNS and Active Directory

              What does DCDiag come up with? and also is there any DNS or other Events logged?

              Ta
              Caesar's cipher - 3

              ZKHQ BRX HYHQWXDOOB GHFLSKHU WKLV BRX ZLOO UHDOLVH LW ZDV D ZDVWH RI WLPH!

              SFX JNRS FC U6 MNGR

              Comment


              • #8
                Re: DNS and Active Directory

                Originally posted by L4ndy View Post
                What does DCDiag come up with? and also is there any DNS or other Events logged?

                Ta
                here's:

                C:\Documents and Settings\Administrator>dcdiag

                Domain Controller Diagnosis

                Performing initial setup:
                Done gathering initial info.

                Doing initial required tests

                Testing server: AreaSistemaBiblioteche\SABSERVER
                Starting test: Connectivity
                ......................... SABSERVER passed test Connectivity

                Doing primary tests

                Testing server: AreaSistemaBiblioteche\SABSERVER
                Starting test: Replications
                ......................... SABSERVER passed test Replications
                Starting test: NCSecDesc
                ......................... SABSERVER passed test NCSecDesc
                Starting test: NetLogons
                ......................... SABSERVER passed test NetLogons
                Starting test: Advertising
                ......................... SABSERVER passed test Advertising
                Starting test: KnowsOfRoleHolders
                ......................... SABSERVER passed test KnowsOfRoleHolders
                Starting test: RidManager
                ......................... SABSERVER passed test RidManager
                Starting test: MachineAccount
                ......................... SABSERVER passed test MachineAccount
                Starting test: Services
                ......................... SABSERVER passed test Services
                Starting test: ObjectsReplicated
                ......................... SABSERVER passed test ObjectsReplicated
                Starting test: frssysvol
                ......................... SABSERVER passed test frssysvol
                Starting test: frsevent
                ......................... SABSERVER passed test frsevent
                Starting test: kccevent
                ......................... SABSERVER passed test kccevent
                Starting test: systemlog
                ......................... SABSERVER passed test systemlog
                Starting test: VerifyReferences
                ......................... SABSERVER passed test VerifyReferences

                Running partition tests on : ForestDnsZones
                Starting test: CrossRefValidation
                ......................... ForestDnsZones passed test CrossRefValidation

                Starting test: CheckSDRefDom
                ......................... ForestDnsZones passed test CheckSDRefDom

                Running partition tests on : DomainDnsZones
                Starting test: CrossRefValidation
                ......................... DomainDnsZones passed test CrossRefValidation

                Starting test: CheckSDRefDom
                ......................... DomainDnsZones passed test CheckSDRefDom

                Running partition tests on : Schema
                Starting test: CrossRefValidation
                ......................... Schema passed test CrossRefValidation
                Starting test: CheckSDRefDom
                ......................... Schema passed test CheckSDRefDom

                Running partition tests on : Configuration
                Starting test: CrossRefValidation
                ......................... Configuration passed test CrossRefValidation
                Starting test: CheckSDRefDom
                ......................... Configuration passed test CheckSDRefDom

                Running partition tests on : asb
                Starting test: CrossRefValidation
                ......................... asb passed test CrossRefValidation
                Starting test: CheckSDRefDom
                ......................... asb passed test CheckSDRefDom

                Running enterprise tests on : asb.unisi.it
                Starting test: Intersite
                ......................... asb.unisi.it passed test Intersite
                Starting test: FsmoCheck
                ......................... asb.unisi.it passed test FsmoCheck

                C:\Documents and Settings\Administrator>

                and on event log no any error !

                Michele

                Comment


                • #9
                  Re: DNS and Active Directory

                  I take it other machines can still register with DNS? Does the same apply to machines that have static and DHCP addresses? You could try a ipconfig /registerdns as well as a long shot. Also, is the DNS Client service Started?

                  Sounds like something deeper but just in case.

                  Comment


                  • #10
                    Re: DNS and Active Directory

                    Originally posted by Virtual View Post
                    I take it other machines can still register with DNS? Does the same apply to machines that have static and DHCP addresses? You could try a ipconfig /registerdns as well as a long shot. Also, is the DNS Client service Started?

                    Sounds like something deeper but just in case.
                    DNS service is started and the other 2 machines have fixed IP and are also inside DNS as A and PTR records. If i ping each others using DNS names they are resolved correctly.

                    Any other hints ?

                    Thanks, Michele

                    Comment


                    • #11
                      Re: DNS and Active Directory

                      I take it the records still haven't appeared in DNS for the DC? Does the PDC machine have all FSMO roles? Is the DNS AD integrated?

                      Comment


                      • #12
                        Re: DNS and Active Directory

                        Originally posted by Virtual View Post
                        I take it the records still haven't appeared in DNS for the DC? Does the PDC machine have all FSMO roles? Is the DNS AD integrated?
                        Mmmmm....how i can check them ?

                        Thanks, Michele

                        Comment


                        • #13
                          Re: DNS and Active Directory

                          Originally posted by O-Zone View Post
                          Mmmmm....how i can check them ?
                          Check what?

                          If you're asking how to check if the DNS records are there, check in DNS...

                          If you're asking how to check FSMO roles... well Google is a good start? http://support.microsoft.com/kb/234790

                          If you're asking how to check if the DNS zone is AD integrated, then look at the properties of the DNS zone.
                          Gareth Howells

                          BSc (Hons), MBCS, MCP, MCDST, ICCE

                          Any advice is given in good faith and without warranty.

                          Please give reputation points if somebody has helped you.

                          "For by now I could have stretched out my hand and struck you and your people with a plague that would have wiped you off the Earth." (Exodus 9:15) - I could kill you with my thumb.

                          "Everything that lives and moves will be food for you." (Genesis 9:3) - For every animal you don't eat, I'm going to eat three.

                          Comment


                          • #14
                            Re: DNS and Active Directory

                            Originally posted by gforceindustries View Post
                            If you're asking how to check if the DNS records are there, check in DNS...

                            If you're asking how to check FSMO roles... well Google is a good start? http://support.microsoft.com/kb/234790

                            If you're asking how to check if the DNS zone is AD integrated, then look at the properties of the DNS zone.
                            DNS records are there (sabserver = 10.10.10.5, pdc = 10.10.10.135, exch2007 = 10.10.10.132), the DNS zones are integrated in AD and the FSMO is "sabserver".

                            And now ? Thanks, Michele

                            Comment


                            • #15
                              Re: DNS and Active Directory

                              I see. Looks as if the records are there in DNS. You could check the SPNs on the Exchange 2007 server.

                              windowsitpro.com/article/articleid/97920/microsoft-exchange-server-and-spns-part-1.html -

                              Comment

                              Working...
                              X