W2k8 : Active Directory Replication Issues

-

hello all,

i have issues active directory domain network single domain controller. needed add new dc keep having issues due sysvol not replicating.

please see dcdiag result below:


directory server diagnosis


performing initial setup:

   trying find home server...

   home server = gbb-dc-03

   * identified ad forest.
   done gathering initial info.


doing initial required tests

      testing server: hujuu\gbb-dc-03

      starting test: connectivity
         ......................... gbb-dc-03 passed test connectivity


doing primary tests
  
   testing server: hujuu\gbb-dc-03

      starting test: advertising
         ......................... gbb-dc-03 passed test advertising

      starting test: frsevent

         there warning or error events within last 24 hours after the

         sysvol has been shared.  failing sysvol replication problems may cause

         group policy problems.
         ......................... gbb-dc-03 failed test frsevent

      starting test: dfsrevent
         ......................... gbb-dc-03 passed test dfsrevent

      starting test: sysvolcheck
         ......................... gbb-dc-03 passed test sysvolcheck

      starting test: kccevent
         warning event occurred.  eventid: 0x80000b46
            time generated: 11/08/2012   11:06:42

            event string:
            security of directory server can enhanced configuring server reject sasl (negotiate,  kerberos, ntlm, or digest) ldap binds not request signing (integrity verification) , ldap simple binds that  performed on cleartext (non-ssl/tls-encrypted) connection.  if no clients using such binds, configuring server reject them improve security of server.

         error event occurred.  eventid: 0xc0000837

            time generated: 11/08/2012   11:07:12

            event string:
            active directory domain services database has been restored using unsupported restoration procedure.

         ......................... gbb-dc-03 failed test kccevent

      starting test: knowsofroleholders
         ......................... gbb-dc-03 passed test knowsofroleholders

      starting test: machineaccount
         ......................... gbb-dc-03 passed test machineaccount

      starting test: ncsecdesc
         ......................... gbb-dc-03 passed test ncsecdesc

      starting test: netlogons
         ......................... gbb-dc-03 passed test netlogons

      starting test: objectsreplicated
         ......................... gbb-dc-03 passed test objectsreplicated

      starting test: replications
         ......................... gbb-dc-03 passed test replications

      starting test: ridmanager
         ......................... gbb-dc-03 passed test ridmanager

      starting test: services
         ......................... gbb-dc-03 passed test services

      starting test: systemlog

         error event occurred.  eventid: 0x00000469

            time generated: 11/08/2012   10:16:39

            event string:
            processing of group policy failed because of lack of network connectivity domain controller. may transient condition. success message generated once machine gets connected domain controller , group policy has succesfully processed. if not see success message several hours, contact administrator.

         error event occurred.  eventid: 0x00000457

            time generated: 11/08/2012   10:17:00

            event string:
            driver send microsoft onenote 2010 driver required printer send onenote 2010 unknown. contact administrator install driver before log in again.

         warning event occurred.  eventid: 0x00001695

            time generated: 11/08/2012   10:20:09

            event string:
            dynamic registration or deletion of 1 or more dns records associated dns domain 'simtech.local.' failed.  these records used other computers locate server domain controller (if specified domain active directory domain) or ldap server (if specified domain application partition). 

         warning event occurred.  eventid: 0x00001695

            time generated: 11/08/2012   10:20:09

            event string:
            dynamic registration or deletion of 1 or more dns records associated dns domain 'domaindnszones.simtech.local.' failed.  these records used other computers locate server domain controller (if specified domain active directory domain) or ldap server (if specified domain application partition). 

         warning event occurred.  eventid: 0x00001695

            time generated: 11/08/2012   10:20:09

            event string:

            dynamic registration or deletion of 1 or more dns records associated dns domain 'forestdnszones.simtech.local.' failed.  these records used other computers locate server domain controller (if specified domain active directory domain) or ldap server (if specified domain application partition). 


         warning event occurred.  eventid: 0x8000a000

            time generated: 11/08/2012   10:20:39

            event string:
            security system detected authentication error server dns/gbb-dc-03.simtech.local. failure code authentication protocol kerberos "there no logon servers available service logon request.

         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:20:39

            event string:

            dynamic deletion of dns record '_kerberos._tcp.dc._msdcs.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 

         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:20:39

            event string:
            dynamic deletion of dns record '_kerberos._tcp.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 

         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:20:39

            event string:
            dynamic deletion of dns record '_kerberos._udp.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 

         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:20:39

            event string:
            dynamic deletion of dns record '_kpasswd._tcp.simtech.local. 600 in srv 0 100 464 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:20:39

            event string:
            dynamic deletion of dns record '_kpasswd._udp.simtech.local. 600 in srv 0 100 464 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:20:39

            event string:
            dynamic deletion of dns record '_kerberos._tcp.hujuu._sites.dc._msdcs.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:20:39

            event string:
            dynamic deletion of dns record '_kerberos._tcp.hujuu._sites.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         warning event occurred.  eventid: 0x8000001d

            time generated: 11/08/2012   10:20:50

            event string:
            key distribution center (kdc) cannot find suitable certificate use smart card logons, or kdc certificate not verified. smart card logon may not function correctly if problem not resolved. correct problem, either verify existing kdc certificate using certutil.exe or enroll new kdc certificate.

         warning event occurred.  eventid: 0x00001695

            time generated: 11/08/2012   10:21:19

            event string:
            dynamic registration or deletion of 1 or more dns records associated dns domain 'simtech.local.' failed.  these records used other computers locate server domain controller (if specified domain active directory domain) or ldap server (if specified domain application partition). 

         warning event occurred.  eventid: 0x00001695

            time generated: 11/08/2012   10:21:19

            event string:
            dynamic registration or deletion of 1 or more dns records associated dns domain 'domaindnszones.simtech.local.' failed.  these records used other computers locate server domain controller (if specified domain active directory domain) or ldap server (if specified domain application partition). 

         warning event occurred.  eventid: 0x00001695

            time generated: 11/08/2012   10:21:19

            event string:
            dynamic registration or deletion of 1 or more dns records associated dns domain 'forestdnszones.simtech.local.' failed.  these records used other computers locate server domain controller (if specified domain active directory domain) or ldap server (if specified domain application partition). 

         warning event occurred.  eventid: 0x00000010

            time generated: 11/08/2012   10:23:42
            event string:
            unable connect: windows unable connect automatic updates service , therefore cannot download , install updates according set schedule. windows continue try establish connection.

         warning event occurred.  eventid: 0x00000065

            time generated: 11/08/2012   10:24:09

            event string:
            assignment of application microsoft office communicator 2005 policy deployofficecommunicator2005 failed.  error : %%1274

         error event occurred.  eventid: 0x00000067

            time generated: 11/08/2012   10:24:09

            event string:
            removal of assignment of application microsoft office communicator 2005 policy deployofficecommunicator2005 failed.  error : %%2

         warning event occurred.  eventid: 0x0000006c

            time generated: 11/08/2012   10:24:10

            event string:
            failed apply changes software installation settings.  installation of software deployed through group policy user has been delayed until next logon because changes must applied before user logon.  error : %%1274

         warning event occurred.  eventid: 0x00000458

            time generated: 11/08/2012   10:24:10

            event string:
            group policy client side extension software installation unable apply 1 or more settings because changes must processed before system startup or user logon. system wait group policy processing finish before next startup or logon user, , may result in slow startup , boot performance.

         error event occurred.  eventid: 0xc0002720

            time generated: 11/08/2012   10:24:13

            event string:
            application-specific permission settings not grant local launch permission com server application clsid


         warning event occurred.  eventid: 0x00000065

            time generated: 11/08/2012   10:29:16

            event string:
            assignment of application microsoft office communicator 2005 policy deployofficecommunicator2005 failed.  error : %%1274

         error event occurred.  eventid: 0x00000067

            time generated: 11/08/2012   10:29:16

            event string:
            removal of assignment of application microsoft office communicator 2005 policy deployofficecommunicator2005 failed.  error : %%2

         warning event occurred.  eventid: 0x0000006c

            time generated: 11/08/2012   10:29:16

            event string:
            failed apply changes software installation settings.  installation of software deployed through group policy user has been delayed until next logon because changes must applied before user logon.  error : %%1274

         error event occurred.  eventid: 0xc0002720

            time generated: 11/08/2012   10:29:17

            event string:
            application-specific permission settings not grant local launch permission com server application clsid


         warning event occurred.  eventid: 0x00000458

            time generated: 11/08/2012   10:29:16

            event string:
            group policy client side extension software installation unable apply 1 or more settings because changes must processed before system startup or user logon. system wait group policy processing finish before next startup or logon user, , may result in slow startup , boot performance.

         error event occurred.  eventid: 0xc0002720

            time generated: 11/08/2012   10:34:25
            event string:

            application-specific permission settings not grant local launch permission com server application clsid


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:35:19
            event string:
            dynamic deletion of dns record '_kerberos._tcp.dc._msdcs.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:35:20

            event string:
            dynamic deletion of dns record '_kerberos._tcp.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:35:21

            event string:
            dynamic deletion of dns record '_kerberos._udp.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:35:21

            event string:
            dynamic deletion of dns record '_kpasswd._tcp.simtech.local. 600 in srv 0 100 464 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:35:21

            event string:
            dynamic deletion of dns record '_kpasswd._udp.simtech.local. 600 in srv 0 100 464 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:35:22

            event string:
            dynamic deletion of dns record '_kerberos._tcp.hujuu._sites.dc._msdcs.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:35:22

            event string:
            dynamic deletion of dns record '_kerberos._tcp.hujuu._sites.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         warning event occurred.  eventid: 0x8000001d

            time generated: 11/08/2012   10:35:28

            event string:
            key distribution center (kdc) cannot find suitable certificate use smart card logons, or kdc certificate not verified. smart card logon may not function correctly if problem not resolved. correct problem, either verify existing kdc certificate using certutil.exe or enroll new kdc certificate.

         warning event occurred.  eventid: 0x00001695

            time generated: 11/08/2012   10:35:59

            event string:
            dynamic registration or deletion of 1 or more dns records associated dns domain 'simtech.local.' failed.  these records used other computers locate server domain controller (if specified domain active directory domain) or ldap server (if specified domain application partition). 


         error event occurred.  eventid: 0xc0002720

            time generated: 11/08/2012   10:39:31

            event string:
            application-specific permission settings not grant local launch permission com server application clsid


         error event occurred.  eventid: 0xc0002720

            time generated: 11/08/2012   10:44:37

            event string:
            application-specific permission settings not grant local launch permission com server application clsid


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:46:11
            event string:

            dynamic deletion of dns record '_kerberos._tcp.dc._msdcs.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:46:11

            event string:
            dynamic deletion of dns record '_kerberos._tcp.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:46:11

            event string:
            dynamic deletion of dns record '_kerberos._udp.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:46:11

            event string:
            dynamic deletion of dns record '_kpasswd._tcp.simtech.local. 600 in srv 0 100 464 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:46:11

            event string:
            dynamic deletion of dns record '_kpasswd._udp.simtech.local. 600 in srv 0 100 464 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:46:11

            event string:
            dynamic deletion of dns record '_kerberos._tcp.hujuu._sites.dc._msdcs.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:46:11

            event string:
            dynamic deletion of dns record '_kerberos._tcp.hujuu._sites.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         warning event occurred.  eventid: 0x8000001d

            time generated: 11/08/2012   10:46:21
            event string:

            key distribution center (kdc) cannot find suitable certificate use smart card logons, or kdc certificate not verified. smart card logon may not function correctly if problem not resolved. correct problem, either verify existing kdc certificate using certutil.exe or enroll new kdc certificate.

         warning event occurred.  eventid: 0x00001695

            time generated: 11/08/2012   10:46:52

            event string:
            dynamic registration or deletion of 1 or more dns records associated dns domain 'simtech.local.' failed.  these records used other computers locate server domain controller (if specified domain active directory domain) or ldap server (if specified domain application partition). 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:53:44

            event string:
            dynamic deletion of dns record '_kerberos._tcp.dc._msdcs.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:53:44

            event string:
            dynamic deletion of dns record '_kerberos._tcp.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:53:44

            event string:
            dynamic deletion of dns record '_kerberos._udp.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:53:44

            event string:
            dynamic deletion of dns record '_kpasswd._tcp.simtech.local. 600 in srv 0 100 464 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:53:44

            event string:
            dynamic deletion of dns record '_kpasswd._udp.simtech.local. 600 in srv 0 100 464 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:53:44

            event string:
            dynamic deletion of dns record '_kerberos._tcp.hujuu._sites.dc._msdcs.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         error event occurred.  eventid: 0x0000168f

            time generated: 11/08/2012   10:53:44

            event string:
            dynamic deletion of dns record '_kerberos._tcp.hujuu._sites.simtech.local. 600 in srv 0 100 88 gbb-dc-03.simtech.local.' failed on following dns server: 


         warning event occurred.  eventid: 0x00001695

            time generated: 11/08/2012   10:54:26

            event string:
            dynamic registration or deletion of 1 or more dns records associated dns domain 'simtech.local.' failed.  these records used other computers locate server domain controller (if specified domain active directory domain) or ldap server (if specified domain application partition). 


         warning event occurred.  eventid: 0x00001695

            time generated: 11/08/2012   10:54:26

            event string:
            dynamic registration or deletion of 1 or more dns records associated dns domain 'domaindnszones.simtech.local.' failed.  these records used other computers locate server domain controller (if specified domain active directory domain) or ldap server (if specified domain application partition). 


         error event occurred.  eventid: 0x00000469

            time generated: 11/08/2012   10:54:42

            event string:
            processing of group policy failed because of lack of network connectivity domain controller. may transient condition. success message generated once machine gets connected domain controller , group policy has succesfully processed. if not see success message several hours, contact administrator.

         warning event occurred.  eventid: 0x80000008

            time generated: 11/08/2012   11:03:44

            event string:
            jobs in print queue printer hqtechnicaldeptopenoffice on gbb-dc-03 (redirected 2) deleted. no user action required.


         warning event occurred.  eventid: 0x80000004

            time generated: 11/08/2012   11:03:44

            event string:
            printer hqtechnicaldeptopenoffice on gbb-dc-03 (redirected 2) deleted. no user action required.


         warning event occurred.  eventid: 0x80000003

            time generated: 11/08/2012   11:03:44

            event string:
            printer hqtechnicaldeptopenoffice on gbb-dc-03 (redirected 2) deleted, , users no longer able print printer. no user action required.


         warning event occurred.  eventid: 0x80000008

            time generated: 11/08/2012   11:03:44

            event string:
            jobs in print queue printer hqgroundflooropenoffice on gbb-dc-03 (redirected 2) deleted. no user action required.


         warning event occurred.  eventid: 0x80000004

            time generated: 11/08/2012   11:03:44

            event string:
            printer hqgroundflooropenoffice on gbb-dc-03 (redirected 2) deleted. no user action required.


         warning event occurred.  eventid: 0x80000003

            time generated: 11/08/2012   11:03:44

            event string:
            printer hqgroundflooropenoffice on gbb-dc-03 (redirected 2) deleted, , users no longer able print printer. no user action required.


         warning event occurred.  eventid: 0x80000008

            time generated: 11/08/2012   11:03:44

            event string:
            jobs in print queue printer fax (redirected 2) deleted. no user action required.


         warning event occurred.  eventid: 0x80000004

            time generated: 11/08/2012   11:03:44

            event string:
            printer fax (redirected 2) deleted. no user action required.


         warning event occurred.  eventid: 0x80000003

            time generated: 11/08/2012   11:03:45

            event string:
            printer fax (redirected 2) deleted, , users no longer able print printer. no user action required.


         warning event occurred.  eventid: 0x80000008

            time generated: 11/08/2012   11:03:45

            event string:
            jobs in print queue printer microsoft xps document writer (redirected 2) deleted. no user action required.


         warning event occurred.  eventid: 0x80000004

            time generated: 11/08/2012   11:03:45

            event string:
            printer microsoft xps document writer (redirected 2) deleted. no user action required.


         warning event occurred.  eventid: 0x80000003

            time generated: 11/08/2012   11:03:45

            event string:
            printer microsoft xps document writer (redirected 2) deleted, , users no longer able print printer. no user action required.


         warning event occurred.  eventid: 0x000727a5

            time generated: 11/08/2012   11:03:47

            event string:
            winrm service not listening ws-management requests.


         warning event occurred.  eventid: 0x80060005

            time generated: 11/08/2012   11:04:41

            event string:
            virtual storage filter driver disabled through registry. inactive disk drives.

         error event occurred.  eventid: 0xc0003aad

            time generated: 11/08/2012   11:06:53

            event string:
            error occured while using ssl configuration socket address 0.0.0.0:443.  error status code contained within returned data.

         warning event occurred.  eventid: 0x8000a000

            time generated: 11/08/2012   11:06:56

            event string:
            security system detected authentication error server ldap/gbb-dc-03.simtech.local. failure code authentication protocol kerberos "there no logon servers available service logon request.


         warning event occurred.  eventid: 0x825a000c

            time generated: 11/08/2012   11:07:13
            event string:

            time provider ntpclient: machine configured use domain hierarchy determine time source, ad pdc emulator domain @ root of forest, there no machine above in domain hierarchy use time source. recommended either configure reliable time service in root domain, or manually configure ad pdc synchronize external time source. otherwise, machine function authoritative time source in domain hierarchy. if external time source not configured or used computer, may choose disable ntpclient.

         warning event occurred.  eventid: 0x000727aa

            time generated: 11/08/2012   11:09:22
            event string:

            winrm service failed create following spns: wsman/gbb-dc-03.simtech.local; wsman/gbb-dc-03.


         error event occurred.  eventid: 0x00000469

            time generated: 11/08/2012   11:10:13

            event string:

            processing of group policy failed because of lack of network connectivity domain controller. may transient condition. success message generated once machine gets connected domain controller , group policy has succesfully processed. if not see success message several hours, contact administrator.

         error event occurred.  eventid: 0x00000469

            time generated: 11/08/2012   11:10:16

            event string:

            processing of group policy failed because of lack of network connectivity domain controller. may transient condition. success message generated once machine gets connected domain controller , group policy has succesfully processed. if not see success message several hours, contact administrator.

         error event occurred.  eventid: 0x00000457

            time generated: 11/08/2012   11:10:28

            event string:

            driver send microsoft onenote 2010 driver required printer send onenote 2010 unknown. contact administrator install driver before log in again.

         ......................... gbb-dc-03 failed test systemlog

      starting test: verifyreferences
         ......................... gbb-dc-03 passed test verifyreferences

     
   running partition tests on : forestdnszones
      starting test: checksdrefdom

         ......................... forestdnszones passed test checksdrefdom

      starting test: crossrefvalidation
         ......................... forestdnszones passed test

         crossrefvalidation
  
   running partition tests on : domaindnszones
      starting test: checksdrefdom

         ......................... domaindnszones passed test checksdrefdom
      starting test: crossrefvalidation

         ......................... domaindnszones passed test
         crossrefvalidation
  
   running partition tests on : schema

      starting test: checksdrefdom
         ......................... schema passed test checksdrefdom

      starting test: crossrefvalidation
         ......................... schema passed test crossrefvalidation
  
   running partition tests on : configuration
      starting test: checksdrefdom

         ......................... configuration passed test checksdrefdom

      starting test: crossrefvalidation

         ......................... configuration passed test crossrefvalidation
  
   running partition tests on : simtech

      starting test: checksdrefdom
         ......................... simtech passed test checksdrefdom

      starting test: crossrefvalidation
         ......................... simtech passed test crossrefvalidation

      running enterprise tests on : simtech.local

      starting test: locatorcheck
         ......................... simtech.local passed test locatorcheck

      starting test: intersite
         ......................... simtech.local passed test intersite

i'm not sure have problem, frs doesn't have partner replicate with.  if running wrong version of dcdiag give false positive.

please review following might put mind @ ease.
http://support.microsoft.com/kb/2512643?wa=wsignin1.0

--
paul bergson
mvp - directory services
mcitp: enterprise administrator
mcts, mct, mcse, mcsa, security+, bs csci
2008, vista, 2003, 2000 (early achiever), nt4
http://www.pbbergs.com    twitter @pbbergs
http://blogs.dirteam.com/blogs/paulbergson

please no e-mails, questions should posted in newsgroup. posting provided "as is" no warranties, , confers no rights.



Windows Server  >  Directory Services



Comments

Post a Comment

Popular posts from this blog

WIMMount (HSM) causing cluster storage to go redirected (2012r2 DC)

-
looking options resolve error , prevent in future. thanks help. hardware: 2 node dell hv cluster running2012r2 dc 8 nic/ea in multiplex mode 4x hyper-v 4x hosts storage: 2x synology nas, accessed through iscsi hosts , cluster relevant logs: log name:      microsoft-windows-failoverclustering/diagnostic source:        microsoft-windows-failoverclustering date:          event id:      2050 task category: none level:         warning keywords:       user:          system computer:      l description: [dcm] filter wimmount found @ unsafe altitude 180700 log name:      system source:        microsoft-windows-failoverclustering date:         event id:      5125 task category: cluster shared volume level:         warning keywords:       user:          system computer: description: cluster shared volume 'volume1' ('cluster disk 1') has identified 1 or more active filter drivers on device stack interfere csv operatio
Read more

Failed to delete the test record dcdiag-test-record in zone test.com

-
ps c:\users\administrator.test> dcdiag /test:dns directory server diagnosis performing initial setup:    trying find home server...    home server = dc02    * identified ad forest.    done gathering initial info. doing initial required tests    testing server: default-first-site-name\dc02       starting test: connectivity          ......................... dc02 passed test connectivity doing primary tests    testing server: default-first-site-name\dc02       starting test: dns          dns tests running , not hung. please wait few minutes...          ......................... dc02 passed test dns    running partition tests on : forestdnszones    running partition tests on : domaindnszones    running partition tests on : schema    running partition tests on : configuration    running partition tests on : test    running enterprise tests on : test.com       starting test: dns          test results domain
Read more

Azure MFA with Azure AD and RDS

-
i have setup following lab in azure , need help. a server (domain controller) , remote desktop services. and server multi factor authentication server. i have setup following one http://www.rdsgurus.com/uncategorized/step-by-step-using-windows-server-2012-r2-rd-gateway-with-azure-multifactor-authentication/ and when im connecting got following error. the user "domain\username", on client computer "xxx.xxx.xxx.xxx", did not meet connection authorization policy requirements , therefore not authorized access rd gateway server. authentication method used was: "ntlm" , connection protocol used: "rpc-http". following error occurred: "23003". also on security log i've got following authentication details: connection request policy name: ts gateway authorization policy network policy name: - authentication provider: radius proxy authentication server: test.test.local authentication type: - eap t
Read more