I have a new client that I will be adding a second DC to their domain. They are currently running 2003 functional level with a single server 2008 R2 DC. I will be adding a second domain controller running server 2008 sp2 but before I do I have cleaned up old metadata from old improperly removed DC's and removed several old DNS records as well.
My question is this, when I run dcdiag /test:dns /v I receive the following errors:
Error:
Missing SRV record at DNS server 192.168.50.101:
_ldap._tcp.68f495a1-7552-4ddf-8d91-42effff06952.domains._ms
dcs.removedforanonymity.com
[Error details: 9003 (Type: Win32 - Description: DNS name d
oes not exist.)]
I'm not sure how to resolve this. I have tried restarting netlogon service from services and I have also tried:
net stop netlogon
renamed C:\Windows\System32\config\netlogon.dnb
renamed C:\Windows\System32\config\netlogon.dns
net start netlogon
ipconfig /registerdns
Then ran dcdiag /test:dns /v again but still get same error.
Here is a copy of ipconfig /all
C:\Users\administrator.removedforanony>ipconfig /all Windows IP Configuration Host Name . . . . . . . . . . . . : TE-SERVER-ARCGIS Primary Dns Suffix . . . . . . . : removedforanonymity.com Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : removedforanonymity.com Ethernet adapter Local Area Connection 2: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Broadcom BCM5716C NetXtreme II GigE (NDIS VBD Client) #41 Physical Address. . . . . . . . . : 78-2B-CB-6C-C3-4C DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes IPv4 Address. . . . . . . . . . . : 192.168.50.101(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.50.1 DNS Servers . . . . . . . . . . . : 192.168.50.101 Primary WINS Server . . . . . . . : 127.0.0.1 NetBIOS over Tcpip. . . . . . . . : Enabled Tunnel adapter Local Area Connection* 11: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft 6to4 Adapter Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter Teredo Tunneling Pseudo-Interface: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes
My DNS forward lookup zones are:
_msdcs.removedforanonymity.com
removedforanonymity.com
Here is a copy of my dcdiag /test:dns /v
C:\Users\administrator.removedforanony>dcdiag /test:dns /v
Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
* Verifying that the local machine TE-SERVER-ARCGIS, is a Directory Server.
Home Server = TE-SERVER-ARCGIS
* Connecting to directory service on server TE-SERVER-ARCGIS.
* Identified AD Forest.
Collecting AD specific global data
* Collecting site info.
Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=removedforanonymity,DC=com,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
The previous call succeeded
Iterating through the sites
Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site-Name
,CN=Sites,CN=Configuration,DC=removedforanony,DC=com
Getting ISTG and options for the site
* Identifying all servers.
Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=removedforanonymity,DC=com,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
The previous call succeeded....
The previous call succeeded
Iterating through the list of servers
Getting information for the server CN=NTDS Settings,CN=TE-SERVER-ARCGI,CN=Ser
vers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=removedforanony
,DC=com
objectGuid obtained
InvocationID obtained
dnsHostname obtained
site info obtained
All the info for the server collected
* Identifying all NC cross-refs.
* Found 1 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\TE-SERVER-ARCGI
Starting test: Connectivity
* Active Directory LDAP Services Check
Determining IP4 connectivity
* Active Directory RPC Services Check
......................... TE-SERVER-ARCGI passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\TE-SERVER-ARCGI
Test omitted by user request: Advertising
Test omitted by user request: CheckSecurityError
Test omitted by user request: CutoffServers
Test omitted by user request: FrsEvent
Test omitted by user request: DFSREvent
Test omitted by user request: SysVolCheck
Test omitted by user request: KccEvent
Test omitted by user request: KnowsOfRoleHolders
Test omitted by user request: MachineAccount
Test omitted by user request: NCSecDesc
Test omitted by user request: NetLogons
Test omitted by user request: ObjectsReplicated
Test omitted by user request: OutboundSecureChannels
Test omitted by user request: Replications
Test omitted by user request: RidManager
Test omitted by user request: Services
Test omitted by user request: SystemLog
Test omitted by user request: Topology
Test omitted by user request: VerifyEnterpriseReferences
Test omitted by user request: VerifyReferences
Test omitted by user request: VerifyReplicas
Starting test: DNS
DNS Tests are running and not hung. Please wait a few minutes...
See DNS test in enterprise tests section for results
......................... TE-SERVER-ARCGI passed test DNS
Running partition tests on : ForestDnsZones
Test omitted by user request: CheckSDRefDom
Test omitted by user request: CrossRefValidation
Running partition tests on : DomainDnsZones
Test omitted by user request: CheckSDRefDom
Test omitted by user request: CrossRefValidation
Running partition tests on : Schema
Test omitted by user request: CheckSDRefDom
Test omitted by user request: CrossRefValidation
Running partition tests on : Configuration
Test omitted by user request: CheckSDRefDom
Test omitted by user request: CrossRefValidation
Running partition tests on : removedforanonymity
Test omitted by user request: CheckSDRefDom
Test omitted by user request: CrossRefValidation
Running enterprise tests on : removedforanonymity.com
Starting test: DNS
Test results for domain controllers:
DC: TE-SERVER-ARCGIS.removedforanonymity.com
Domain: removedforanonymity.com
TEST: Authentication (Auth)
Authentication test: Successfully completed
TEST: Basic (Basc)
The OS
Microsoft Windows Server 2008 R2 Standard (Service Pack level
: 1.0)
is supported.
NETLOGON service is running
kdc service is running
DNSCACHE service is running
DNS service is running
DC is a DNS server
Network adapters information:
Adapter
[00000008] Broadcom BCM5716C NetXtreme II GigE (NDIS VBD Clien
t):
MAC address is 78:2B:CB:6C:C3:4C
IP Address is static
IP address: 192.168.50.101
DNS servers:
192.168.50.101 (TE-SERVER-ARCGI) [Valid]
The A host record(s) for this DC was found
The SOA record for the Active Directory zone was found
The Active Directory zone on this DC/DNS server was found prim
ary
Root zone on this DC/DNS server was not found
TEST: Forwarders/Root hints (Forw)
Recursion is enabled
Forwarders Information:
205.152.132.23 (<name unavailable>) [Valid]
205.152.37.23 (<name unavailable>) [Valid]
TEST: Delegations (Del)
No delegations were found in this zone on this DNS server
TEST: Dynamic update (Dyn)
Test record dcdiag-test-record added successfully in zone removedforanonymity.com
Test record dcdiag-test-record deleted successfully in zone removedforanonymity.com
TEST: Records registration (RReg)
Network Adapter
[00000008] Broadcom BCM5716C NetXtreme II GigE (NDIS VBD Clien
t):
Matching CNAME record found at DNS server 192.168.50.101:
033af388-8783-4714-ad6b-691fed2eaf75._msdcs.removedforanonymity.com
Matching A record found at DNS server 192.168.50.101:
TE-SERVER-ARCGIS.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_ldap._tcp.removedforanonymity.com
Error:
Missing SRV record at DNS server 192.168.50.101:
_ldap._tcp.68f495a1-7552-4ddf-8d91-42effff06952.domains._ms
dcs.removedforanonymity.com
[Error details: 9003 (Type: Win32 - Description: DNS name d
oes not exist.)]
Matching SRV record found at DNS server 192.168.50.101:
_kerberos._tcp.dc._msdcs.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_ldap._tcp.dc._msdcs.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_kerberos._tcp.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_kerberos._udp.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_kpasswd._tcp.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_ldap._tcp.Default-First-Site-Name._sites.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_kerberos._tcp.Default-First-Site-Name._sites.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_ldap._tcp.gc._msdcs.removedforanonymity.com
Matching A record found at DNS server 192.168.50.101:
gc._msdcs.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_gc._tcp.Default-First-Site-Name._sites.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.removedforanonymity.com
Matching SRV record found at DNS server 192.168.50.101:
_ldap._tcp.pdc._msdcs.removedforanonymity.com
Warning: Record Registrations not found in some network adapters
Summary of test results for DNS servers used by the above domain
controllers:
DNS server: 192.168.50.101 (TE-SERVER-ARCGI)
All tests passed on this DNS server
Name resolution is functional._ldap._tcp SRV record for the fores
t root domain is registered
DNS server: 205.152.132.23 (<name unavailable>)
All tests passed on this DNS server
DNS server: 205.152.37.23 (<name unavailable>)
All tests passed on this DNS server
Summary of DNS test results:
Auth Basc Forw Del Dyn RReg Ext
_________________________________________________________________
Domain: removedforanonymity.com
TE-SERVER-ARCGIS PASS PASS PASS PASS PASS WARN n/a
......................... removedforanonymity.com passed test DNS
Test omitted by user request: LocatorCheck
Test omitted by user request: IntersiteAny suggestions why I am still getting this error?
Thanks,
Brian