+ Post New Thread
Results 1 to 14 of 14
Windows Thread, Problems With Domain - Need Some Help To Fix It in Technical; Seem our domain has gone wrong Got problems with all the shares not working (so no start menus or desktops ...
  1. #1
    pritchardavid's Avatar
    Join Date
    Sep 2009
    Location
    South Ockendon, Thurrock, United Kingdom
    Posts
    932
    Thank Post
    18
    Thanked 64 Times in 58 Posts
    Rep Power
    25

    Problems With Domain - Need Some Help To Fix It

    Seem our domain has gone wrong

    Got problems with all the shares not working (so no start menus or desktops shortcuts eithier)
    time problems (seem to stop start menus and desktop shoructs on some computers)
    students account not getting policys & scripts (policys looks like it is working now through)

    All I can think is that is changed is, is one of our staff, tried to get a mac osx server using active directory

    Some errors were getting, of you care to take a look (errors are from a from a few different servers, dcs and one citrix server)

    Event Type: Error
    Event Source: Kerberos
    Event Category: None
    Event ID: 4
    Date: 21/05/2010
    Time: 20:47:07
    User: N/A
    Computer: CITRIX01
    Description:
    The kerberos client received a KRB_AP_ERR_MODIFIED error from the server server-7$. The target name used was cifs/SERVER-7. This indicates that the password used to encrypt the kerberos service ticket is different than that on the target server. Commonly, this is due to identically named machine accounts in the target realm (OCKENDON.THURROCK.SCH.UK), and the client realm. Please contact your system administrator.
    For more information, see Help and Support Center at Events and Errors Message Center: Basic Search.





    Log Name: System
    Source: Microsoft-Windows-Security-Kerberos
    Date: 21/05/2010 19:34:48
    Event ID: 4
    Task Category: None
    Level: Error
    Keywords: Classic
    User: N/A
    Computer: SERVER-6.ockendon.thurrock.sch.uk
    Description:
    The Kerberos client received a KRB_AP_ERR_MODIFIED error from the server server-7$. The target name used was cifs/SERVER-7.ockendon.thurrock.sch.uk. This indicates that the target server failed to decrypt the ticket provided by the client. This can occur when the target server principal name (SPN) is registered on an account other than the account the target service is using. Please ensure that the target SPN is registered on, and only registered on, the account used by the server. This error can also happen when the target service is using a different password for the target service account than what the Kerberos Key Distribution Center (KDC) has for the target service account. Please ensure that the service on the server and the KDC are both updated to use the current password. If the server name is not fully qualified, and the target domain (OCKENDON.THURROCK.SCH.UK) is different from the client domain (OCKENDON.THURROCK.SCH.UK), check if there are identically named server accounts in these two domains, or use the fully-qualified name to identify the server.
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="Microsoft-Windows-Security-Kerberos" Guid="{98E6CFCB-EE0A-41E0-A57B-622D4E1B30B1}" EventSourceName="Kerberos" />
    <EventID Qualifiers="16384">4</EventID>
    <Version>0</Version>
    <Level>2</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2010-05-21T18:34:48.000000000Z" />
    <EventRecordID>4961</EventRecordID>
    <Correlation />
    <Execution ProcessID="0" ThreadID="0" />
    <Channel>System</Channel>
    <Computer>SERVER-6.ockendon.thurrock.sch.uk</Computer>
    <Security />
    </System>
    <EventData>
    <Data Name="Server">server-7$</Data>
    <Data Name="TargetRealm">OCKENDON.THURROCK.SCH.UK</Data>
    <Data Name="Targetname">cifs/SERVER-7.ockendon.thurrock.sch.uk</Data>
    <Data Name="ClientRealm">OCKENDON.THURROCK.SCH.UK</Data>
    <Binary>
    </Binary>
    </EventData>
    </Event>






    Log Name: Application
    Source: Microsoft-Windows-Folder Redirection
    Date: 21/05/2010 19:34:50
    Event ID: 502
    Task Category: None
    Level: Error
    Keywords:
    User: OCKENDON\username
    Computer: SERVER-6.ockendon.thurrock.sch.uk
    Description:
    Failed to apply policy and redirect folder "Music" to "%HOMESHARE%\Users\username\My Music".
    Redirection options=0x9210.
    The following error occurred: "".
    Error details: "The specified path is invalid.
    ".
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="Microsoft-Windows-Folder Redirection" Guid="{7D7B0C39-93F6-4100-BD96-4DDA859652C5}" />
    <EventID>502</EventID>
    <Version>0</Version>
    <Level>2</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x8000000000000000</Keywords>
    <TimeCreated SystemTime="2010-05-21T18:34:50.127461000Z" />
    <EventRecordID>2677</EventRecordID>
    <Correlation ActivityID="{A092CFC1-8B74-43E9-B6A3-A4A50B0413B0}" />
    <Execution ProcessID="944" ThreadID="10940" />
    <Channel>Application</Channel>
    <Computer>SERVER-6.ockendon.thurrock.sch.uk</Computer>
    <Security UserID="S-1-5-21-1482476501-2111687655-1801674531-6641" />
    </System>
    <EventData Name="EVENT_FDEPLOY_FailedToApplyPolicy">
    <Data Name="FromFolder">Music</Data>
    <Data Name="ToFolder">%HOMESHARE%\Users\username\My Music</Data>
    <Data Name="Options">0x9210</Data>
    <Data Name="Error">
    </Data>
    <Data Name="ErrorDetails">The specified path is invalid.
    </Data>
    </EventData>
    </Event>














    Log Name: System
    Source: Microsoft-Windows-GroupPolicy
    Date: 21/05/2010 20:38:57
    Event ID: 1055
    Task Category: None
    Level: Error
    Keywords:
    User: SYSTEM
    Computer: SERVER-7.ockendon.thurrock.sch.uk
    Description:
    The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:
    a) Name Resolution failure on the current domain controller.
    b) Active Directory Replication Latency (an account created on another domain controller has not replicated to the current domain controller).
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="Microsoft-Windows-GroupPolicy" Guid="{AEA1B4FA-97D1-45F2-A64C-4D69FFFD92C9}" />
    <EventID>1055</EventID>
    <Version>0</Version>
    <Level>2</Level>
    <Task>0</Task>
    <Opcode>1</Opcode>
    <Keywords>0x8000000000000000</Keywords>
    <TimeCreated SystemTime="2010-05-21T19:38:57.515396100Z" />
    <EventRecordID>3174</EventRecordID>
    <Correlation ActivityID="{7080E43B-19D8-44E2-A082-038C173068D3}" />
    <Execution ProcessID="956" ThreadID="2672" />
    <Channel>System</Channel>
    <Computer>SERVER-7.ockendon.thurrock.sch.uk</Computer>
    <Security UserID="S-1-5-18" />
    </System>
    <EventData>
    <Data Name="SupportInfo1">1</Data>
    <Data Name="SupportInfo2">1632</Data>
    <Data Name="ProcessingMode">0</Data>
    <Data Name="ProcessingTimeInMilliseconds">3244</Data>
    <Data Name="ErrorCode">5</Data>
    <Data Name="ErrorDescription">Access is denied. </Data>
    </EventData>
    </Event>

















    Log Name: System
    Source: NETLOGON
    Date: 21/05/2010 20:27:31
    Event ID: 5774
    Task Category: None
    Level: Error
    Keywords: Classic
    User: N/A
    Computer: SERVER-7.ockendon.thurrock.sch.uk
    Description:
    The dynamic registration of the DNS record '843b0a26-cf81-48cd-8314-2b05e15c0d16._msdcs.ockendon.thurrock.sch.uk. 600 IN CNAME SERVER-7.ockendon.thurrock.sch.uk.' failed on the following DNS server:
    DNS server IP address: 10.146.67.151
    Returned Response Code (RCODE): 5
    Returned Status Code: 9017
    For computers and users to locate this domain controller, this record must be registered in DNS.
    USER ACTION
    Determine what might have caused this failure, resolve the problem, and initiate registration of the DNS records by the domain controller. To determine what might have caused this failure, run DCDiag.exe. To learn more about DCDiag.exe, see Help and Support Center. To initiate registration of the DNS records by this domain controller, run 'nltest.exe /dsregdns' from the command prompt on the domain controller or restart Net Logon service.
    Or, you can manually add this record to DNS, but it is not recommended.
    ADDITIONAL DATA
    Error Value: DNS bad key.
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="NETLOGON" />
    <EventID Qualifiers="0">5774</EventID>
    <Level>2</Level>
    <Task>0</Task>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2010-05-21T19:27:31.000000000Z" />
    <EventRecordID>3171</EventRecordID>
    <Channel>System</Channel>
    <Computer>SERVER-7.ockendon.thurrock.sch.uk</Computer>
    <Security />
    </System>
    <EventData>
    <Data>843b0a26-cf81-48cd-8314-2b05e15c0d16._msdcs.ockendon.thurrock.sch.uk. 600 IN CNAME SERVER-7.ockendon.thurrock.sch.uk.</Data>
    <Data>%%9017</Data>
    <Data>10.146.67.151</Data>
    <Data>5</Data>
    <Data>9017</Data>
    <Binary>0500</Binary>
    </EventData>
    </Event>















    Log Name: Directory Service
    Source: Microsoft-Windows-ActiveDirectory_DomainService
    Date: 21/05/2010 20:36:43
    Event ID: 1925
    Task Category: Knowledge Consistency Checker
    Level: Warning
    Keywords: Classic
    User: ANONYMOUS LOGON
    Computer: SERVER-7.ockendon.thurrock.sch.uk
    Description:
    The attempt to establish a replication link for the following writable directory partition failed.

    Directory partition:
    DC=DomainDnsZones,DC=ockendon,DC=thurrock,DC=sch,D C=uk
    Source directory service:
    CN=NTDS Settings,CN=SERVER-4,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ockendon,DC=thur rock,DC=sch,DC=uk
    Source directory service address:
    b6a597b5-9076-423c-a04b-976d3f9bd3af._msdcs.ockendon.thurrock.sch.uk
    Intersite transport (if any):


    This directory service will be unable to replicate with the source directory service until this problem is corrected.

    User Action
    Verify if the source directory service is accessible or network connectivity is available.

    Additional Data
    Error value:
    5 Access is denied.
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="Microsoft-Windows-ActiveDirectory_DomainService" Guid="{0e8478c5-3605-4e8c-8497-1e730c959516}" EventSourceName="NTDS KCC" />
    <EventID Qualifiers="32768">1925</EventID>
    <Version>0</Version>
    <Level>3</Level>
    <Task>1</Task>
    <Opcode>0</Opcode>
    <Keywords>0x8080000000000000</Keywords>
    <TimeCreated SystemTime="2010-05-21T19:36:43.292760400Z" />
    <EventRecordID>312</EventRecordID>
    <Correlation />
    <Execution ProcessID="544" ThreadID="1224" />
    <Channel>Directory Service</Channel>
    <Computer>SERVER-7.ockendon.thurrock.sch.uk</Computer>
    <Security UserID="S-1-5-7" />
    </System>
    <EventData>
    <Data>DC=DomainDnsZones,DC=ockendon,DC=thurrock,DC =sch,DC=uk</Data>
    <Data>b6a597b5-9076-423c-a04b-976d3f9bd3af._msdcs.ockendon.thurrock.sch.uk</Data>
    <Data>Access is denied.</Data>
    <Data>CN=NTDS Settings,CN=SERVER-4,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ockendon,DC=thur rock,DC=sch,DC=uk</Data>
    <Data>
    </Data>
    <Data>5</Data>
    </EventData>
    </Event>















    Log Name: DNS Server
    Source: Microsoft-Windows-DNS-Server-Service
    Date: 21/05/2010 20:43:03
    Event ID: 4000
    Task Category: None
    Level: Error
    Keywords: Classic
    User: N/A
    Computer: SERVER-7.ockendon.thurrock.sch.uk
    Description:
    The DNS server was unable to open Active Directory. This DNS server is configured to obtain and use information from the directory for this zone and is unable to load the zone without it. Check that the Active Directory is functioning properly and reload the zone. The event data is the error code.
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="Microsoft-Windows-DNS-Server-Service" Guid="{71A551F5-C893-4849-886B-B5EC8502641E}" EventSourceName="DNS" />
    <EventID Qualifiers="49152">4000</EventID>
    <Version>0</Version>
    <Level>2</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2010-05-21T19:43:03.000000000Z" />
    <EventRecordID>115</EventRecordID>
    <Correlation />
    <Execution ProcessID="0" ThreadID="0" />
    <Channel>DNS Server</Channel>
    <Computer>SERVER-7.ockendon.thurrock.sch.uk</Computer>
    <Security />
    </System>
    <EventData Name="DNS_EVENT_DS_OPEN_FAILED">
    <Binary>2D230000</Binary>
    </EventData>
    </Event>
    Last edited by pritchardavid; 21st May 2010 at 09:33 PM.

  2. #2
    pritchardavid's Avatar
    Join Date
    Sep 2009
    Location
    South Ockendon, Thurrock, United Kingdom
    Posts
    932
    Thank Post
    18
    Thanked 64 Times in 58 Posts
    Rep Power
    25
    Log Name: DNS Server
    Source: Microsoft-Windows-DNS-Server-Service
    Date: 21/05/2010 16:24:39
    Event ID: 4521
    Task Category: None
    Level: Warning
    Keywords: Classic
    User: N/A
    Computer: SERVER-7.ockendon.thurrock.sch.uk
    Description:
    The DNS server encountered error 13 attempting to load zone ockendon.thurrock.sch.uk from Active Directory. The DNS server will attempt to load this zone again on the next timeout cycle. This can be caused by high Active Directory load and may be a transient condition.
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="Microsoft-Windows-DNS-Server-Service" Guid="{71A551F5-C893-4849-886B-B5EC8502641E}" EventSourceName="DNS" />
    <EventID Qualifiers="32768">4521</EventID>
    <Version>0</Version>
    <Level>3</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2010-05-21T15:24:39.000000000Z" />
    <EventRecordID>88</EventRecordID>
    <Correlation />
    <Execution ProcessID="0" ThreadID="0" />
    <Channel>DNS Server</Channel>
    <Computer>SERVER-7.ockendon.thurrock.sch.uk</Computer>
    <Security />
    </System>
    <EventData Name="DNS_EVENT_ZONE_LOAD_RETRY">
    <Data Name="param1">13</Data>
    <Data Name="param2">ockendon.thurrock.sch.uk</Data>
    <Binary>
    </Binary>
    </EventData>
    </Event>

















    Log Name: DFS Replication
    Source: DFSR
    Date: 21/05/2010 17:30:19
    Event ID: 1202
    Task Category: None
    Level: Error
    Keywords: Classic
    User: N/A
    Computer: SERVER-7.ockendon.thurrock.sch.uk
    Description:
    The DFS Replication service failed to contact domain controller to access configuration information. Replication is stopped. The service will try again during the next configuration polling cycle, which will occur in 60 minutes. This event can be caused by TCP/IP connectivity, firewall, Active Directory Domain Services, or DNS issues.

    Additional Information:
    Error: 160 (One or more arguments are not correct.)
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="DFSR" />
    <EventID Qualifiers="49152">1202</EventID>
    <Level>2</Level>
    <Task>0</Task>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2010-05-21T16:30:19.000000000Z" />
    <EventRecordID>49</EventRecordID>
    <Channel>DFS Replication</Channel>
    <Computer>SERVER-7.ockendon.thurrock.sch.uk</Computer>
    <Security />
    </System>
    <EventData>
    <Data>
    </Data>
    <Data>60</Data>
    <Data>160</Data>
    <Data>One or more arguments are not correct.</Data>
    </EventData>
    </Event>
















    Log Name: File Replication Service
    Source: NtFrs
    Date: 21/05/2010 16:12:39
    Event ID: 13562
    Task Category: None
    Level: Warning
    Keywords: Classic
    User: N/A
    Computer: SERVER-7.ockendon.thurrock.sch.uk
    Description:
    Following is the summary of warnings and errors encountered by File Replication Service while polling the Domain Controller SERVER-7.ockendon.thurrock.sch.uk for FRS replica set configuration information.

    Could not bind to a Domain Controller. Will try again at next polling cycle.

    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="NtFrs" />
    <EventID Qualifiers="32768">13562</EventID>
    <Level>3</Level>
    <Task>0</Task>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2010-05-21T15:12:39.000000000Z" />
    <EventRecordID>26</EventRecordID>
    <Channel>File Replication Service</Channel>
    <Computer>SERVER-7.ockendon.thurrock.sch.uk</Computer>
    <Security />
    </System>
    <EventData>
    <Data>SERVER-7.ockendon.thurrock.sch.uk</Data>
    <Data>Could not bind to a Domain Controller. Will try again at next polling cycle.
    </Data>
    </EventData>
    </Event>















    Log Name: System
    Source: Microsoft-Windows-DfsSvc
    Date: 21/05/2010 16:09:07
    Event ID: 14534
    Task Category: None
    Level: Warning
    Keywords: Classic
    User: N/A
    Computer: SERVER-7.ockendon.thurrock.sch.uk
    Description:
    DFS Root Year9 failed during initialization. The root will not be available.
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="Microsoft-Windows-DfsSvc" Guid="{7DA4FE0E-FD42-4708-9AA5-89B77A224885}" EventSourceName="DfsSvc" />
    <EventID Qualifiers="32768">14534</EventID>
    <Version>0</Version>
    <Level>3</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2010-05-21T15:09:07.000000000Z" />
    <EventRecordID>3018</EventRecordID>
    <Correlation />
    <Execution ProcessID="0" ThreadID="0" />
    <Channel>System</Channel>
    <Computer>SERVER-7.ockendon.thurrock.sch.uk</Computer>
    <Security />
    </System>
    <EventData Name="DfsErrorOnRoot">
    <Data Name="share">Year9</Data>
    <Binary>4B050000</Binary>
    </EventData>
    </Event>












    Event Type: Warning
    Event Source: MSDTC
    Event Category: MSDTC Proxy
    Event ID: 53258
    Date: 21/05/2010
    Time: 16:08:19
    User: N/A
    Computer: SERVER-4
    Description:
    MS DTC could not correctly process a DC Promotion/Demotion event. MS DTC will continue to function and will use the existing security settings. Error Specifics: d:\nt\com\complus\dtc\dtc\adme\uiname.cpp:9351, Pid: 1252
    No Callstack,
    CmdLine: C:\WINDOWS\system32\msdtc.exe
    For more information, see Help and Support Center at Events and Errors Message Center: Basic Search.
    Data:
    0000: 05 00 07 80 ...?















    Event Type: Warning
    Event Source: MSDTC
    Event Category: SVC
    Event ID: 53258
    Date: 21/05/2010
    Time: 16:08:19
    User: N/A
    Computer: SERVER-4
    Description:
    MS DTC could not correctly process a DC Promotion/Demotion event. MS DTC will continue to function and will use the existing security settings. Error Specifics: %1
    For more information, see Help and Support Center at Events and Errors Message Center: Basic Search.














    Event Type: Error
    Event Source: KDC
    Event Category: None
    Event ID: 26
    Date: 21/05/2010
    Time: 20:57:37
    User: N/A
    Computer: SERVER-4
    Description:
    While processing an AS request for target service krbtgt, the account SERVER-7$ did not have a suitable key for generating a Kerberos ticket (the missing key has an ID of 2). The requested etypes were 18. The accounts available etypes were 23 -133 -128 3 -140.
    For more information, see Help and Support Center at Events and Errors Message Center: Basic Search.











    Event Type: Warning
    Event Source: NETLOGON
    Event Category: None
    Event ID: 5781
    Date: 21/05/2010
    Time: 16:19:41
    User: N/A
    Computer: SERVER-4
    Description:
    Dynamic registration or deletion of one or more DNS records associated with DNS domain 'DomainDnsZones.ockendon.thurrock.sch.uk.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).
    Possible causes of failure include:
    - TCP/IP properties of the network connections of this computer contain wrong IP address(es) of the preferred and alternate DNS servers
    - Specified preferred and alternate DNS servers are not running
    - DNS server(s) primary for the records to be registered is not running
    - Preferred or alternate DNS servers are configured with wrong root hints
    - Parent DNS zone contains incorrect delegation to the child zone authoritative for the DNS records that failed registration
    USER ACTION
    Fix possible misconfiguration(s) specified above and initiate registration or deletion of the DNS records by running 'nltest.exe /dsregdns' from the command prompt or by restarting Net Logon service. Nltest.exe is available in the Microsoft Windows Server Resource Kit CD.
    For more information, see Help and Support Center at Events and Errors Message Center: Basic Search.
    Data:
    0000: b4 05 00 00 ...













    Event Type: Warning
    Event Source: LSASRV
    Event Category: SPNEGO (Negotiator)
    Event ID: 40960
    Date: 21/05/2010
    Time: 16:08:35
    User: N/A
    Computer: SERVER-4
    Description:
    The Security System detected an authentication error for the server ldap/SERVER-4.ockendon.thurrock.sch.uk. The failure code from authentication protocol Kerberos was "There are currently no logon servers available to service the logon request.
    (0xc000005e)".
    For more information, see Help and Support Center at Events and Errors Message Center: Basic Search.
    Data:
    0000: 5e 00 00 c0 ^..













    Event Type: Error
    Event Source: W32Time
    Event Category: None
    Event ID: 29
    Date: 21/05/2010
    Time: 16:08:32
    User: N/A
    Computer: SERVER-4
    Description:
    The time provider NtpClient is configured to acquire time from one or more time sources, however none of the sources are currently accessible. No attempt to contact a source will be made for 15 minutes. NtpClient has no source of accurate time.
    For more information, see Help and Support Center at Events and Errors Message Center: Basic Search.













    Event Type: Error
    Event Source: NETLOGON
    Event Category: None
    Event ID: 5719
    Date: 21/05/2010
    Time: 15:50:34
    User: N/A
    Computer: SERVER-4
    Description:
    This computer was not able to set up a secure session with a domain controller in domain OCKENDON due to the following:
    There are currently no logon servers available to service the logon request.
    This may lead to authentication problems. Make sure that this computer is connected to the network. If the problem persists, please contact your domain administrator.
    ADDITIONAL INFO
    If this computer is a domain controller for the specified domain, it sets up the secure session to the primary domain controller emulator in the specified domain. Otherwise, this computer sets up the secure session to any domain controller in the specified domain.
    For more information, see Help and Support Center at Events and Errors Message Center: Basic Search.
    Data:
    0000: 5e 00 00 c0 ^..

  3. #3


    Join Date
    Feb 2007
    Location
    Northamptonshire
    Posts
    4,687
    Thank Post
    352
    Thanked 794 Times in 714 Posts
    Rep Power
    346
    Is DNS working on the DNS servers? (DCs probably)

    Is the server/workstation service running on the servers?

    Can you access the sysvol share on each domain controller from the other domain controllers?

    Do you have the FSMO roles on a single server or spread out?

    EDIT: Firewalls enabled on the servers?

  4. #4
    pritchardavid's Avatar
    Join Date
    Sep 2009
    Location
    South Ockendon, Thurrock, United Kingdom
    Posts
    932
    Thank Post
    18
    Thanked 64 Times in 58 Posts
    Rep Power
    25
    How extually can you tell if dns is working? believe they are, not sure

    All firewalls are turned off on each server

    fsmo roles are on one server (server-6)


    will check the other two questions out, just need to logon and check through citrix


    edit: ok cant check, citrix will not let me in, I can get onto the normal ctrl alt delete logon box, its starts complaining about the time different in the server, so will not let me logon. I dont know what the local admin password of that server is, we didnt set that server up
    Last edited by pritchardavid; 21st May 2010 at 09:43 PM.

  5. #5

    nephilim's Avatar
    Join Date
    Nov 2008
    Location
    Dunstable
    Posts
    11,783
    Thank Post
    1,623
    Thanked 1,877 Times in 1,395 Posts
    Blog Entries
    2
    Rep Power
    422
    go to CMD and then type NSLOOKUP. Do nslookup on a random batch of machines should be able to tell you if your DNS is working properly. It will give you your server name and IP address.

    If it does that, then your DNS is working.
    Last edited by nephilim; 21st May 2010 at 10:00 PM.

  6. #6
    leco's Avatar
    Join Date
    Nov 2006
    Location
    West Yorkshire
    Posts
    2,026
    Thank Post
    595
    Thanked 125 Times in 119 Posts
    Rep Power
    41
    Do you have the local credentials for the time-server server? Would running dcdiag with the /e switch help with diagnostics?

  7. #7
    digital's Avatar
    Join Date
    May 2010
    Location
    derby
    Posts
    1
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    i have never used citrix so not sure but looks like you have some serious problems their can you even open AD can clients login OK ? what i would check for is to make sure that my group policy is all correct you should really only have the minimal applied e.g password policy etc but i would also make sure that their is no firewalls turn on you shouldn't have them on any way all servers are static ip address which I'm guessing they are also you want to make sure that in your root dns servers that you have the correct srv and pointer records and also that the ldap.TCP is correct the zone transfers are correct your scavaging scale are setup properly and i would also check the last time the system replicated to and from other servers also think back to the last thing that happen before all this went wrong try and trace your steps did you applied any service packs or anything like that or did any one change any passwords that used to authenticate anything also ask your team

  8. #8
    pritchardavid's Avatar
    Join Date
    Sep 2009
    Location
    South Ockendon, Thurrock, United Kingdom
    Posts
    932
    Thank Post
    18
    Thanked 64 Times in 58 Posts
    Rep Power
    25
    Quote Originally Posted by leco View Post
    Do you have the local credentials for the time-server server? Would running dcdiag with the /e switch help with diagnostics?
    Not acutally sure what server is the time server, we have had the time wrong for the past two years I believe, never had this sort of problem before

    All I know is hat server 6 is the master server for all the fmos roles

    Well were getting our support company in for tomorrow to sort out another problem, looks like they will have to fix this major problem first (haha)

  9. #9
    pritchardavid's Avatar
    Join Date
    Sep 2009
    Location
    South Ockendon, Thurrock, United Kingdom
    Posts
    932
    Thank Post
    18
    Thanked 64 Times in 58 Posts
    Rep Power
    25
    i would also make sure that their is no firewalls turn on you shouldn't have them on


    Yep checked all firewalls before I left work, all off

    any way all servers are static ip address which I'm guessing they are


    All are static and checked

    also you want to make sure that in your root dns servers that you have the correct srv and pointer records and also that the ldap.

    Think this is correct, what the difference between srv and pointer records (hard to think what it is, has im not looking at the server and dont know much about dns)

    TCP is correct the zone transfers are correct your scavaging scale are setup properly

    No idea, how do you check this?

    and i would also check the last time the system replicated to and from other servers

    No idea last time this was done

    also think back to the last thing that happen before all this went wrong try and trace your steps did you applied any service packs or anything like that or did any one change any passwords that used to authenticate anything also ask your team

    No passwords have been changed. All I can thiunk of its someone trying to setup a mac server to the active directory, thats about time it all happended. Later when this happended, i did find that the server 7 ip address in dns what now the mac server ip address, so changed this back, has I know he was trying to connect it through server 7

  10. #10

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,637
    Thank Post
    514
    Thanked 2,443 Times in 1,891 Posts
    Blog Entries
    24
    Rep Power
    831
    When you say someone tried to get an OSX server to work via AD, what method of doing this did they try? Did they update the AD Schema or did they go with the safer route of simply joining the box to the domain?

    Is the OD server still connected and on?

  11. #11
    pritchardavid's Avatar
    Join Date
    Sep 2009
    Location
    South Ockendon, Thurrock, United Kingdom
    Posts
    932
    Thank Post
    18
    Thanked 64 Times in 58 Posts
    Rep Power
    25
    not sure extually was done on the mac server, but got him to undo all the things he done to it, after that I dont him i'll sort the server out for him, just in case he is doing something wrong (believe he used to work in ict, now one of our music teachers, it actually his server he brought with his department money) Also turned the server off until this problem is sorted, has this may be the problem.

    dont think any ad schema was done, I know ours is at 2008r2 level

    does the mac server have its on ad schema then?

  12. #12

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,067
    Thank Post
    853
    Thanked 2,675 Times in 2,269 Posts
    Blog Entries
    9
    Rep Power
    768
    The Mac schema implementation that localzuk is talking about is probably the one where to get macs to authenticate directly with AD and get additional Mac specific configurations off it the AD LDAP database schema is modified to include some of the values that Macs expect of an Open Directory server as housed on OSX. This lets you use a bunch of the central managment functionality that you would otherwise need a Mac Server to implement.

    As the AD database is kind of the core of the network any changes that go wrong can trash everything, the LDAP spec that AD uses though does fully support this kind of modification and you can even modify it youself four your own ends. The general wisdom though is don't touch it unless you know what you are doing, have a backup and really need to do it as if it goes wrong it makes a mess.


    Looking at the errors above it looks like kerberos has lost sync between servers I'd restart all of the servers and look for failures in the event logs on each of them. If it has a DCpromo in a failed state it could be pointing some clients to the wrong places for kerberos.

  13. #13

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    9,262
    Thank Post
    242
    Thanked 1,568 Times in 1,250 Posts
    Rep Power
    340
    I have to agree with Synack, the AD database is essentially the core and it looks as though it's corrupted.

    Realistically I think you're looking at a non-authoritative restore of Active Directory on your PDC to get your network back up and running properly. If you still want to introduce the Mac Server, I suggest some extensive testing is required before adding it to a live network.

  14. #14
    pritchardavid's Avatar
    Join Date
    Sep 2009
    Location
    South Ockendon, Thurrock, United Kingdom
    Posts
    932
    Thank Post
    18
    Thanked 64 Times in 58 Posts
    Rep Power
    25
    ok all sorted by our support company today

    He took the dcs of the domain. expect one and the readded them

    I was to do with the reliaction of the servers, it was all muddled up with with sever relicated what


    Also while he was there got him to back dhcp, adter I updated that server to 2008r2 and got him to restore the dhcp service on there. So were totally running a 2008r2 active directory now. Just need to update our two citrix servers and our exchange server, then all servers on the cirrculun our 2008r2

SHARE:
+ Post New Thread

Similar Threads

  1. IE8 Uninstall doesnt fix problems
    By RabbieBurns in forum Windows
    Replies: 5
    Last Post: 11th November 2009, 09:57 AM
  2. Replies: 3
    Last Post: 18th September 2009, 06:20 PM
  3. Moving macs to new domian
    By reggiep in forum Mac
    Replies: 9
    Last Post: 9th September 2009, 08:42 AM
  4. Do you want to scan and fix
    By conehead in forum Windows Vista
    Replies: 11
    Last Post: 3rd May 2009, 12:01 PM
  5. Fix tihs one!!!
    By woody in forum General Chat
    Replies: 6
    Last Post: 19th July 2006, 03:33 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •