Announcement

Collapse
No announcement yet.

SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

    Hi,
    I hope I'm placing this correct section of this forum.
    Here is the problem:
    (sorry about the length)
    I was ask by a client to ad several new computers to their server.
    It is a one server environment. DNS Server, DHCP Sever, File Server. OS is Windows Server 2003 Standard R2.
    Client has 14 machines connected on the network: 10 XP Pro and 4 Win7 Pro 64-bit. They have 4 HP LJ 4000 printers.
    Last of the four Win7 machines were aded in May, this year, without any problems.
    Yesterday I brought new Win 7 machine to the client, for testing purposes over the weekend.
    When I tried to connect to domain, I got the following message:

    Error code 0x0000232B RCODE_NAME_ERROR on the Windows 7 Machine

    Note: This information is intended for a network administrator.
    If you are not your network's administrator,
    notify the administrator that you received this information,
    which has been recorded in the file C:\Windows\debug\dcdiag.txt.

    The following error occurred when DNS was queried for the service
    location (SRV) resource record used to locate
    an Active Directory Domain Controller (AD DC) for domain "xxxxxxxxxxx.local":

    The error was: "DNS name does not exist."
    (error code 0x0000232B RCODE_NAME_ERROR)

    The query was for the SRV record for _ldap._tcp.dc._msdcs.xxxxxxxxxx.local

    Common causes of this error include the following:

    - The DNS SRV records required to locate a AD DC for the domain are not registered in DNS. These records are registered with a DNS server automatically when a AD DC is added to a domain. They are updated by the AD DC at set intervals. This computer is configured to use DNS servers with the following IP addresses:

    192.168.0.56

    - One or more of the following zones do not include delegation to its child zone:
    xxxxxxxxxxx.local
    local
    . (the root zone)


    Here is the info of the Win7 machine ipconfig:

    Ipconfig from the Windows 7 Machine

    Microsoft Windows [Version 6.1.7601]
    Copyright (c) 2009 Microsoft Corporation. All rights reserved.

    C:\>ipconfig /all

    Windows IP Configuration

    Host Name . . . . . . . . . . . . : WIN7RA
    Primary Dns Suffix . . . . . . . :
    Node Type . . . . . . . . . . . . : Hybrid
    IP Routing Enabled. . . . . . . . : No
    WINS Proxy Enabled. . . . . . . . : No

    Ethernet adapter Local Area Connection:

    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
    Physical Address. . . . . . . . . : 10-78-D2-D8-EB-38
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    IPv4 Address. . . . . . . . . . . : 192.168.0.213(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 192.168.0.2
    DNS Servers . . . . . . . . . . . : 192.168.0.56
    NetBIOS over Tcpip. . . . . . . . : Enabled


    C:\>


    Since the error was pointing to the server, I've checked the event viewer:

    Warning in DNS Server:
    4521
    The DNS server encountered error 9002 attempting to load zone . from Active Directory. The DNS server will attempt to load this zone again on the next timeout cycle. This can be caused by high Active Directory load and may be a transient condition.

    ____________________________________________

    Warning in System:
    5781
    Dynamic registration or deletion of one or more DNS records associated with DNS domain 'xxxxxxxxxxx.local.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).

    Possible causes of failure include:
    - TCP/IP properties of the network connections of this computer contain wrong IP address(es) of the preferred and alternate DNS servers
    - Specified preferred and alternate DNS servers are not running
    - DNS server(s) primary for the records to be registered is not running
    - Preferred or alternate DNS servers are configured with wrong root hints
    - Parent DNS zone contains incorrect delegation to the child zone authoritative for the DNS records that failed registration

    ____________________________________


    I went in dnsmgmt to check the zones, and big surprise: NO SVR ZONES showing in dnsmgmt!

    I have no idea what caused the problem. As I said before, in May I deployed 4 new Win7 machines without any problem.
    I asked customer if they experiencing any problems like slowness, connectivity or anything else unusual. He said no problems at all.

    Please Help!

  • #2
    Re: SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

    Here are a few things to try:

    1. Stop and restart the Netlogon service on the DC. The DC registers the appropriate DNS records via the Netlogon service. This may correct the problem.

    2. Run dcdiag on the DC and post the results here.

    3. Run netdiag on the DC and post the results here.

    Comment


    • #3
      Re: SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

      Thanks for the response:
      Stoping and starting netlogon didnt have any effect.

      DCDIAG and NETDIAG results:

      C:\>dcdiag

      Domain Controller Diagnosis

      Performing initial setup:
      Done gathering initial info.

      Doing initial required tests

      Testing server: Default-First-Site\xx-xxx
      Starting test: Connectivity
      The host 26bd00ac-a86d-4062-9f17-f6c289231e23._msdcs.xxxxxxxxxxx.local
      could not be resolved to an
      IP address. Check the DNS server, DHCP, server name, etc
      Although the Guid DNS name
      (26bd00ac-a86d-4062-9f17-f6c289231e23._msdcs.xxxxxxxxxxx.local)
      couldn't be resolved, the server name (xx-xxx.xxxxxxxxxxx.local)
      resolved to the IP address (192.168.0.56) and was pingable. Check
      that the IP address is registered correctly with the DNS server.
      ......................... xx-xxx failed test Connectivity

      Doing primary tests

      Testing server: Default-First-Site\xx-xxx
      Skipping all tests, because server xx-xxx is
      not responding to directory service requests

      Running partition tests on : Schema
      Starting test: CrossRefValidation
      ......................... Schema passed test CrossRefValidation
      Starting test: CheckSDRefDom
      ......................... Schema passed test CheckSDRefDom

      Running partition tests on : Configuration
      Starting test: CrossRefValidation
      ......................... Configuration passed test CrossRefValidation
      Starting test: CheckSDRefDom
      ......................... Configuration passed test CheckSDRefDom

      Running partition tests on : xxxxxxxxxxx
      Starting test: CrossRefValidation
      ......................... xxxxxxxxxxx passed test CrossRefValidation
      Starting test: CheckSDRefDom
      ......................... xxxxxxxxxxx passed test CheckSDRefDom

      Running enterprise tests on : xxxxxxxxxxx.local
      Starting test: Intersite
      ......................... xxxxxxxxxxx.local passed test Intersite
      Starting test: FsmoCheck
      ......................... xxxxxxxxxxx.local passed test FsmoCheck

      C:\>

      C:\>netdiag

      .....................................

      Computer Name: xx-xxx
      DNS Host Name: xx-xxx.xxxxxxxxxxx.local
      System info : Microsoft Windows Server 2003 R2 (Build 3790)
      Processor : x86 Family 6 Model 30 Stepping 5, GenuineIntel
      List of installed hotfixes :
      KB2079403
      KB2115168
      KB2229593
      KB2296011
      KB2345886
      KB2347290
      KB2360937
      KB2378111
      KB2387149
      KB2388210
      KB2393802
      KB2412687
      KB2416451
      KB2419635
      KB2423089
      KB2440591
      KB2443105
      KB2467659
      KB2476490
      KB2478953
      KB2478960
      KB2478971
      KB2481109
      KB2483185
      KB2485663
      KB2492386
      KB2503665
      KB2506212
      KB2507618
      KB2507938
      KB2508272
      KB2508429
      KB2509553
      KB2510531-IE8
      KB2510587
      KB2524375
      KB2535512
      KB2536276-v2
      KB2544521
      KB2544521-IE8
      KB2544893
      KB2555917
      KB2559049
      KB2559049-IE8
      KB2562485
      KB2562937
      KB2566454
      KB2567680
      KB2570222
      KB2570791
      KB2570947
      KB2607712
      KB2616676-v2
      KB915800-v9
      KB923561
      KB925398_WMP64
      KB925876
      KB925902-v2
      KB926122
      KB927891
      KB929123
      KB932168
      KB933854
      KB936357
      KB941569
      KB941838
      KB942831
      KB943545
      KB943729
      KB944653
      KB946026
      KB948496
      KB950762
      KB950974
      KB952004
      KB952069
      KB952954
      KB953298
      KB954155
      KB954550-v5
      KB956572
      KB956744
      KB956802
      KB956844
      KB958469
      KB958644
      KB959426
      KB960803
      KB960859
      KB961118
      KB961501
      KB967723
      KB968389
      KB969059
      KB970430
      KB971029
      KB971032
      KB971513
      KB971657
      KB971737
      KB972270
      KB973507
      KB973540
      KB973815
      KB973825
      KB973869
      KB973904
      KB974112
      KB974318
      KB974392
      KB974571
      KB975025
      KB975467
      KB975558_WM8
      KB975560
      KB975562
      KB975713
      KB976323
      KB977816
      KB977914
      KB978338
      KB978542
      KB978601
      KB978695
      KB978706
      KB979309
      KB979482
      KB979687
      KB979907
      KB980232
      KB980436
      KB981322
      KB982132
      KB982381-IE8
      KB982632-IE8
      Q147222


      Netcard queries test . . . . . . . : Passed



      Per interface results:

      Adapter : Local Area Connection

      Netcard queries test . . . : Passed

      Host Name. . . . . . . . . : xx-xxx
      IP Address . . . . . . . . : 192.168.0.56
      Subnet Mask. . . . . . . . : 255.255.255.0
      Default Gateway. . . . . . : 192.168.0.2
      Dns Servers. . . . . . . . : 192.168.0.56


      AutoConfiguration results. . . . . . : Passed

      Default gateway test . . . : Passed

      NetBT name test. . . . . . : Passed
      [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
      r Service', <20> 'WINS' names is missing.
      No remote names have been found.

      WINS service test. . . . . : Skipped
      There are no WINS servers configured for this interface.


      Global results:


      Domain membership test . . . . . . : Passed


      NetBT transports test. . . . . . . : Passed
      List of NetBt transports currently configured:
      NetBT_Tcpip_{1BBAB7B7-BC54-4B43-B89D-C5D03310C0B9}
      1 NetBt transport currently configured.


      Autonet address test . . . . . . . : Passed


      IP loopback ping test. . . . . . . : Passed


      Default gateway test . . . . . . . : Passed


      NetBT name test. . . . . . . . . . : Passed
      [WARNING] You don't have a single interface with the <00> 'WorkStation Servi
      ce', <03> 'Messenger Service', <20> 'WINS' names defined.


      Winsock test . . . . . . . . . . . : Passed


      DNS test . . . . . . . . . . . . . : Failed
      [WARNING] Cannot find a primary authoritative DNS server for the name
      'xx-xxx.xxxxxxxxxxx.local.'. [RCODE_SERVER_FAILURE]
      The name 'xx-xxx.xxxxxxxxxxx.local.' may not be registered in DNS.

      [WARNING] The DNS entries for this DC are not registered correctly on DNS se
      rver '192.168.0.56'. Please wait for 30 minutes for DNS server replication.
      [FATAL] No DNS servers have the DNS records for this DC registered.


      Redir and Browser test . . . . . . : Passed
      List of NetBt transports currently bound to the Redir
      NetBT_Tcpip_{1BBAB7B7-BC54-4B43-B89D-C5D03310C0B9}
      The redir is bound to 1 NetBt transport.

      List of NetBt transports currently bound to the browser
      NetBT_Tcpip_{1BBAB7B7-BC54-4B43-B89D-C5D03310C0B9}
      The browser is bound to 1 NetBt transport.


      DC discovery test. . . . . . . . . : Passed


      DC list test . . . . . . . . . . . : Passed


      Trust relationship test. . . . . . : Skipped


      Kerberos test. . . . . . . . . . . : Passed


      LDAP test. . . . . . . . . . . . . : Passed


      Bindings test. . . . . . . . . . . : Passed


      WAN configuration test . . . . . . : Skipped
      No active remote access connections.


      Modem diagnostics test . . . . . . : Passed

      IP Security test . . . . . . . . . : Skipped

      Note: run "netsh ipsec dynamic show /?" for more detailed information


      The command completed successfully

      C:\>

      Thank You!

      Comment


      • #4
        Re: SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

        Can you post an IPCONFIG/ALL from the DC please? (do not mask any details except the domain name if you want to)
        Tom Jones
        MCT, MCSE (2000:Security & 2003), MCSA:Security & Messaging, MCDBA, MCDST, MCITP(EA, EMA, SA, EDA, ES, CS), MCTS, MCP, Sec+
        PhD, MSc, FIAP, MIITT
        IT Trainer / Consultant
        Ossian Ltd
        Scotland

        ** Remember to give credit where credit is due and leave reputation points where appropriate **

        Comment


        • #5
          Re: SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

          You can use this procedure to rebulid the DNS zones:

          http://support.microsoft.com/kb/294328

          Comment


          • #6
            Re: SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

            @Joequerty:
            I will try that!
            Thank you!

            @Ossian

            here it is:
            C:\>ipconfig /all
            Windows IP Configuration
            Host Name . . . . . . . . . . . . : xx-xxxxx
            Primary Dns Suffix . . . . . . . : xxxxxxxxxxx.local
            Node Type . . . . . . . . . . . . : Unknown
            IP Routing Enabled. . . . . . . . : No
            WINS Proxy Enabled. . . . . . . . : No
            DNS Suffix Search List. . . . . . : xxxxxxxxxxx.local
            Ethernet adapter Local Area Connection:
            Connection-specific DNS Suffix . :
            Description . . . . . . . . . . . : Broadcom BCM5716C NetXtreme II GigE (NDIS
            VBD Client) #27
            Physical Address. . . . . . . . . : 78-2B-CB-32-34-7C
            DHCP Enabled. . . . . . . . . . . : No
            IP Address. . . . . . . . . . . . : 192.168.0.56
            Subnet Mask . . . . . . . . . . . : 255.255.255.0
            Default Gateway . . . . . . . . . : 192.168.0.2
            DNS Servers . . . . . . . . . . . : 192.168.0.56
            C:\>

            Thank you

            Comment


            • #7
              Re: SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

              OK, so no IP issues

              Have you followed advice to rebuild zones?
              Tom Jones
              MCT, MCSE (2000:Security & 2003), MCSA:Security & Messaging, MCDBA, MCDST, MCITP(EA, EMA, SA, EDA, ES, CS), MCTS, MCP, Sec+
              PhD, MSc, FIAP, MIITT
              IT Trainer / Consultant
              Ossian Ltd
              Scotland

              ** Remember to give credit where credit is due and leave reputation points where appropriate **

              Comment


              • #8
                Re: SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

                @Ossian :
                Not yet! Looks kind of scarry
                I'll keep you posted!
                Thank You

                Comment


                • #9
                  Re: SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

                  @Joeqwerty :
                  Well, the first step in article is:
                  Go to the properties of the DNS zone files and change them to be a "Standard Primary"
                  The problem is there are no zones!
                  Any other suggestion?
                  Thank You!

                  Comment


                  • #10
                    Re: SRV Records Missing Win Server St. 2003 R2 - Multiple warnings 4521 and 5781

                    Ok, I misunderstood. I thought you were missing the SRV records in the zone, not the entire zone. I'm thinking that the rest of the article should work though. Here's what I would do:

                    Follow the article step by step, make sure to check the system32\dns directory for any AD zone files and check ADUC for any zones and delete any you find, then follow the rest of the steps.

                    Comment

                    Working...
                    X