dcdiag
Domain Controller Diagnosis
Performing initial setup:
* Verifying that the local machine srv2004, is a DC.
* Connecting to directory service on server srv2004.
* Collecting site info.
* Identifying all servers.
* Identifying all NC cross-refs.
* Found 1 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site\SRV2004
Starting test: Connectivity
* Active Directory LDAP Services Check
The host
937c4f78-ac85-4227-943b-f951e6a4f7f0._msdcs.EasoInformatica.com could not be
resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(937c4f78-ac85-4227-943b-f951e6a4f7f0._msdcs.EasoInformatica.com)
couldn't be resolved, the server name (srv2004.EasoInformatica.com)
resolved to the IP address (192.168.0.200) and was pingable. Check
that the IP address is registered correctly with the DNS server.
......................... SRV2004 failed test Connectivity
Doing primary tests
Testing server: Default-First-Site\SRV2004
Skipping all tests, because server SRV2004 is
not responding to directory service requests
Running partition tests on : TAPI3Directory
Starting test: CrossRefValidation
......................... TAPI3Directory passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... TAPI3Directory passed test CheckSDRefDom
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : EasoInformatica
Starting test: CrossRefValidation
......................... EasoInformatica passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... EasoInformatica passed test CheckSDRefDom
Running enterprise tests on : EasoInformatica.com
Starting test: Intersite
Skipping site Default-First-Site, this site is outside the scope
provided by the command line arguments provided.
......................... EasoInformatica.com passed test Intersite
Starting test: FsmoCheck
GC Name: \\srv2004.EasoInformatica.com
Locator Flags: 0xe00003fd
PDC Name: \\srv2004.EasoInformatica.com
Locator Flags: 0xe00003fd
Time Server Name: \\srv2004.EasoInformatica.com
Locator Flags: 0xe00003fd
Preferred Time Server Name: \\srv2004.EasoInformatica.com
Locator Flags: 0xe00003fd
KDC Name: \\srv2004.EasoInformatica.com
Locator Flags: 0xe00003fd
......................... EasoInformatica.com passed test FsmoCheck
Starting test: DNS
Test results for domain controllers:
DC: srv2004.EasoInformatica.com
Domain: EasoInformatica.com
TEST: Authentication (Auth)
Authentication test: Successfully completed
TEST: Basic (Basc)
Error: No LDAP connectivity
Microsoft(R) Windows(R) Server 2003, Enterprise Edition
(Service Pack level: 2.0) is supported
NETLOGON service is running
kdc service is running
DNSCACHE service is running
DNS service is running
DC is a DNS server
Network adapters information:
Adapter [00000003] Compaq NC7760 Gigabit Server Adapter:
MAC address is 00:0B:CD:4E:34:0B
IP address is static
IP address: 192.168.0.200
DNS servers:
192.168.0.200 (srv2004.easoinformatica.com.) [Valid]
192.168.0.20 (<name unavailable>) [Valid]
The A record for this DC was found
The SOA record for the Active Directory zone was found
The Active Directory zone on this DC/DNS server was found
(primary)
Root zone on this DC/DNS server was not found
TEST: Forwarders/Root hints (Forw)
Recursion is enabled
Forwarders Information:
194.224.52.4 (<name unavailable>) [Valid]
194.30.0.1 (<name unavailable>) [Valid]
195.235.113.3 (<name unavailable>) [Valid]
62.14.63.145 (<name unavailable>) [Valid]
TEST: Delegations (Del)
Delegation information for the zone: EasoInformatica.com.
Delegated domain name: _msdc.EasoInformatica.com.
Error: DNS server: srv2004.easoinformatica.com.
IP:192.168.0.200 [Broken delegation]
Delegated domain name: _msdcs.EasoInformatica.com.
Error: DNS server: srv2004.easoinformatica.com.
IP:192.168.0.200 [Broken delegation]
TEST: Dynamic update (Dyn)
Warning: Dynamic update is enabled on the zone but not
secure EasoInformatica.com.
Test record _dcdiag_test_record added successfully in zone
EasoInformatica.com.
Test record _dcdiag_test_record deleted successfully in
zone EasoInformatica.com.
TEST: Records registration (RReg)
Network Adapter [00000003] Compaq NC7760 Gigabit Server
Adapter:
Matching A record found at DNS server 192.168.0.200:
srv2004.EasoInformatica.com
Error: Missing CNAME record at DNS server 192.168.0.200 :
937c4f78-ac85-4227-943b-f951e6a4f7f0._msdcs.EasoInformatica.com
[Error details: 9002 (Type: Win32 - Description: Error
de servidor DNS.)]
Error: Missing DC SRV record at DNS server
192.168.0.200 :
_ldap._tcp.dc._msdcs.EasoInformatica.com
[Error details: 9002 (Type: Win32 - Description: Error
de servidor DNS.)]
Error: Missing GC SRV record at DNS server
192.168.0.200 :
_ldap._tcp.gc._msdcs.EasoInformatica.com
[Error details: 9002 (Type: Win32 - Description: Error
de servidor DNS.)]
Error: Missing PDC SRV record at DNS server
192.168.0.200 :
_ldap._tcp.pdc._msdcs.EasoInformatica.com
[Error details: 9002 (Type: Win32 - Description: Error
de servidor DNS.)]
Matching A record found at DNS server 192.168.0.20:
srv2004.EasoInformatica.com
Error: Missing CNAME record at DNS server 192.168.0.20 :
937c4f78-ac85-4227-943b-f951e6a4f7f0._msdcs.EasoInformatica.com
[Error details: 9002 (Type: Win32 - Description: Error
de servidor DNS.)]
Error: Missing DC SRV record at DNS server 192.168.0.20 :
_ldap._tcp.dc._msdcs.EasoInformatica.com
[Error details: 9002 (Type: Win32 - Description: Error
de servidor DNS.)]
Error: Missing GC SRV record at DNS server 192.168.0.20 :
_ldap._tcp.gc._msdcs.EasoInformatica.com
[Error details: 9002 (Type: Win32 - Description: Error
de servidor DNS.)]
Error: Missing PDC SRV record at DNS server
192.168.0.20 :
_ldap._tcp.pdc._msdcs.EasoInformatica.com
[Error details: 9002 (Type: Win32 - Description: Error
de servidor DNS.)]
Error: Record registrations cannot be found for all the
network adapters
Summary of test results for DNS servers used by the above domain
controllers:
DNS server: 192.168.0.200 (srv2004.easoinformatica.com.)
2 test failures on this DNS server
This is a valid DNS server.
Name resolution is funtional. _ldap._tcp SRV record for the
forest root domain is registered
Delegation is broken for the domain
_msdc.EasoInformatica.com. on the DNS server 192.168.0.200
[Error details: 9002 (Type: Win32 - Description: Error de
servidor DNS.) - Delegation is broken for the domain
_msdc.EasoInformatica.com. on the DNS server 192.168.0.200]
Delegation is broken for the domain
_msdcs.EasoInformatica.com. on the DNS server 192.168.0.200
[Error details: 9002 (Type: Win32 - Description: Error de
servidor DNS.) - Delegation is broken for the domain
_msdcs.EasoInformatica.com. on the DNS server 192.168.0.200]
DNS server: 192.168.0.20 (<name unavailable>)
All tests passed on this DNS server
This is a valid DNS server.
Name resolution is funtional. _ldap._tcp SRV record for the
forest root domain is registered
DNS server: 194.224.52.4 (<name unavailable>)
All tests passed on this DNS server
This is a valid DNS server.
DNS server: 194.30.0.1 (<name unavailable>)
All tests passed on this DNS server
This is a valid DNS server.
DNS server: 195.235.113.3 (<name unavailable>)
All tests passed on this DNS server
This is a valid DNS server.
DNS server: 62.14.63.145 (<name unavailable>)
All tests passed on this DNS server
This is a valid DNS server.
Summary of DNS test results:
Auth Basc Forw Del Dyn RReg
Ext
________________________________________________________________
Domain: EasoInformatica.com
srv2004 PASS FAIL PASS FAIL WARN FAIL
n/a
......................... EasoInformatica.com failed test DNS
Post by Marc [MVP Windows]Has instalado el servicio DNS en ese otro server como te ha dicho Jose?
Si lo has hecho, en el DC que funciona, pon como servidor DNS secundario, la IP 192.168.0.20.
Y en el que vas a promocionar, como primaria la suya y secundaria la del DC que está funcionando.
Otra cosa, qué errores tienes en el Visor de sucesos? Qué nombre tiene el dominio (nombre FQDN, no NetBIOS)?
--
Saludos,
Marc
MVP Windows Server System - Directory Services
MCSA/MCSE Windows Server 2003
Citrix CCA PS 4.0
Oracle9i Certified Associate (OCA)
Este mensaje se proporciona "como está" sin garantías de ninguna clase, y no otorga ningún derecho.
This posting is provided "AS IS" with no warranties, and confers no rights. You assume all risk for your use.
Post by kontxiservidor principal
IP: 192.168.0.200
Mascara: 255.255.255.0
P.Enlace: 192.168.0.201
DNS: 192.168.0.200
servidor que quiero promocionar y que es un servidor miembro del dominio
IP: 192.168.0.20
Mascara: 255.255.255.0
P.Enlace: 192.168.0.201
DNS: 192.168.0.200
No existen mas servidore de nombre en la configuración del dns ni del dhcp
la salida a internet se hace por reenviadores dentro de la configuracion del
DNS
Desde que ejecute las instrucciones que me indicaste no ha vuelto a dar
ningun error en el visor de sucesos del DNS pero sigo sin poder promocionar
el otro server.
Ocurrió un error al hacer una consulta al DNS para el registro de recursos
de ubicación de servicio (SRV) usado para ubicar un controlador de dominio
El error fue: "Error de servidor DNS."
(código de error 0x0000232A RCODE_SERVER_FAILURE)
La solicitud era para el registro SRV para _ldap._tcp.dc._msdcs.midominio.com
-Los servidores DNS usados por este equipo contienen sugerencias de ruta
incorrectas. Este equipo está configurado para usar servidores DNS con las
192.168.0.200
midominio.com
com
. (la zona raíz)
Post by Marc [MVP Windows]Pon la configuración de red de ambos servers.
--
Saludos,
Marc
MVP Windows Server System - Directory Services
MCSA/MCSE Windows Server 2003
Citrix CCA PS 4.0
Oracle9i Certified Associate (OCA)
Este mensaje se proporciona "como está" sin garantías de ninguna clase, y no otorga ningún derecho.
This posting is provided "AS IS" with no warranties, and confers no rights. You assume all risk for your use.
Post by kontxien el servidor que quiero promocionar solo tengo puesto como DNS al servidor
principal de mi dominio. De todas formas sigue sin dejarme promocionarlo y
diciendome que no encuentra el controlador de dominio. El dominio si que lo
ve, incluso lo puedo seleccionar en el dcpromo, pero luego se atasca y no
puedo seguir
Post by José Antonio QuÃlez [MS MVP]El servicio DNS instálalo antes de promocionarlo, y durante el dcpromo le
dices que te lo configure él mismo.
Una cosa, en este nuevo servidor que quieres promocionar, ¿tiene puesto como
servidor DNS la ip del otro servidor y nada más?
Es que lo que te ocurre me parece bastante raro.
Post by kontxibueno creo que ya lo puedo promocionar. He metido el nombre de domio sin el
.com y ya me lo ve (no se si eso es muy correcto) pero tengo otra pregunta
¿debo instalar dns en el nuevo servidor antes o despues de promocionarlo?
muchas gracias
Post by kontxiHola Jose Antonio. He hecho lo que me has dicho y a pesar de ello no me
sale
la capetilla _msdcs.midominio.com
en las zonas de búsqueda directa solo tengo una ¿zona? que se llama
midominio.com y dentro de ella " _msdcs" que tiene un solo registro
"(Igual
que la carpeta principal) Servidor de nombres(NS) srv2004.midominio.com.
También están las carpetas de _sites, _tcp.... etc así como los host de
mi
red.
He comprobado tambien que en las zonas de búsqueda inversa está el PTR
del
servidor (también de los clientes)
De todas formas he intentado promocionar el segundo servidor y me da el
mismo error que no encuentra el servidor de dominio.
error 0x0000232A RCODE_SERVER_FAILURE
SRV para _ldap._tcp.dc_msdcs.midominio.com
Los registros SRV de DNS son necesarios
si se te ocurre algo mas, te lo agradezco. Un saludo
Post by José Antonio QuÃlez [MS MVP]Ve a la configuración tcpip del servidor y te aseguras de que como
servidor
DNS principal se tiene a su propia dirección ip y no tienes ningún otro
servidor DNS (y mucho menos servidores DNS de internet). En la misma
configuración, pulsando el botón de avanzadas, te vas a la solapa DNS y
en
la parte inferior le escribes como sufijo DNS, el nombre de tu dominio
(midominio.com), y le marcas las dos casillas de registrarse en DNS y
de
usar ese sufijo para registrarse.
A continuación mira las propiedades de la zona DNS y te aseguras de
que
permite actualizaciones dinámicas y que está almacenada en Active
Directory
(esto último no es imprescindible, pero sí más que aconsejable). Si la
tuvieras de otra forma cámbialo.
IPCONFIG /REGISTERDNS
NET STOP NETLOGON
NET START NETLOGON
Tras esto cierras la ventana de comando y en la consola de
administración
del servidor DNS ya te tendrá que aparecer la zona _msdcs y los
registros
correspondientes.
Saludos
Post by kontxieste es el test del dcdiag
Domain Controller Diagnosis
* Verifying that the local machine srv2004, is a DC.
* Connecting to directory service on server srv2004.
* Collecting site info.
* Identifying all servers.
* Identifying all NC cross-refs.
* Found 1 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site\SRV2004
Starting test: Connectivity
* Active Directory LDAP Services Check
The host
937c4f78-ac85-4227-943b-f951e6a4f7f0._msdcs.midominio.com
could not be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(937c4f78-ac85-4227-943b-f951e6a4f7f0._msdcs.midominio.com)
couldn't be resolved, the server name (srv2004.midominio.com)
resolved to the IP address (192.168.0.200) and was pingable.
Check
that the IP address is registered correctly with the DNS
server.
......................... SRV2004 failed test Connectivity
Doing primary tests
Testing server: Default-First-Site\SRV2004
Skipping all tests, because server SRV2004 is
not responding to directory service requests
Running partition tests on : TAPI3Directory
Starting test: CrossRefValidation
......................... TAPI3Directory passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... TAPI3Directory passed test
CheckSDRefDom
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test
CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test
CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test
CheckSDRefDom
Running partition tests on : midominio
Starting test: CrossRefValidation
......................... midominio passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... midominio passed test CheckSDRefDom
Running enterprise tests on : midominio.com
Starting test: Intersite
Skipping site Default-First-Site, this site is outside the
scope
provided by the command line arguments provided.
.........................midominio.com passed test Intersite
Starting test: FsmoCheck
GC Name: \\srv2004.midominio.com
Locator Flags: 0xe00003fd
PDC Name: \\srv2004.midominio.com
Locator Flags: 0xe00003fd
Time Server Name: \\srv2004.midominio.com
Locator Flags: 0xe00003fd
Preferred Time Server Name: \\srv2004.midominio.com
Locator Flags: 0xe00003fd
KDC Name: \\srv2004.midominio.com
Locator Flags: 0xe00003fd
......................... midominio.com passed test FsmoCheck
Starting test: DNS
DC: srv2004.midominio.com
Domain:midominio.com
TEST: Authentication (Auth)
Authentication test: Successfully completed
TEST: Basic (Basc)
Error: No LDAP connectivity
Microsoft(R) Windows(R) Server 2003, Enterprise
Edition
(Service Pack level: 2.0) is supported
NETLOGON service is running
kdc service is running
DNSCACHE service is running
DNS service is running
DC is a DNS server
Adapter [00000003] Compaq NC7760 Gigabit Server
MAC address is 00:0B:CD:4E:34:0B
IP address is static
IP address: 192.168.0.200