Replication is unavailable and and Group Policy fails
hello,
i have windows server 2012 r2 installed active directory , dns roles,
however when try join client domain error "network path not available". takes long time windows server boot , login.
i tried "gpupdate" , "gpupdate /force" fails update group policy.
plase me resolve problem.
i tried dcdiag /v /c /d /e /s:dcname >c:\dcdiag.txt , returns :
command line: "dcdiag.exe
/v /c /d /e /s:server"
directory server diagnosis
performing initial setup:
* connecting directory service on server server.
server.currenttime = 20140928100937.0z
server.highestcommittedusn = 381456
server.issynchronized = 1
server.isglobalcatalogready = 1
determining ip4 connectivity
determining ip6 connectivity
failure analysis: server ... ok.
[server] directory binding error 1722:
rpc server unavailable.
may limit of tests can performed.
* identified ad forest.
collecting ad specific global data
* collecting site info.
calling ldap_search_init_page(hld,cn=sites,cn=configuration,dc=tahavvol,dc=tk,ldap_scope_subtree,(objectcategory=ntdssitesettings),.......
previous call succeeded
iterating through sites
looking @ base site object: cn=ntds site settings,cn=default-first-site-name,cn=sites,cn=configuration,dc=tahavvol,dc=tk
getting istg , options site
* identifying servers.
calling ldap_search_init_page(hld,cn=sites,cn=configuration,dc=tahavvol,dc=tk,ldap_scope_subtree,(objectclass=ntdsdsa),.......
previous call succeeded....
previous call succeeded
iterating through list of servers
getting information server cn=ntds settings,cn=server,cn=servers,cn=default-first-site-name,cn=sites,cn=configuration,dc=tahavvol,dc=tk
objectguid obtained
invocationid obtained
dnshostname obtained
site info obtained
info server collected
server.currenttime = 20140928101143.0z
server.highestcommittedusn = 381459
server.issynchronized = 1
server.isglobalcatalogready = 1
* identifying nc cross-refs.
* found 1 dc(s). testing 1 of them.
done gathering initial info.
===============================================printing out pdsinfo
global:
ulnumservers=1
pszrootdomain=tahavvol.tk
psznc=
pszrootdomainfqdn=dc=tahavvol,dc=tk
pszconfignc=cn=configuration,dc=tahavvol,dc=tk
pszpartitionsdn=cn=partitions,cn=configuration,dc=tahavvol,dc=tk
fadam=0
isiteoptions=0
dwtombstonelifetimedays=180
dwforestbehaviorversion=6
homeserver=0, server
server: pserver[0].pszname=server
pserver[0].pszguiddnsname (binding str)=78c896dc-9147-45b1-85d5-b2be5b69f798._msdcs.tahavvol.tk
pserver[0].pszdnsname=server.tahavvol.tk
pserver[0].pszldapport=(null)
pserver[0].pszsslport=(null)
pserver[0].pszdn=cn=ntds settings,cn=server,cn=servers,cn=default-first-site-name,cn=sites,cn=configuration,dc=tahavvol,dc=tk
pserver[0].pszcomputeraccountdn=cn=server,ou=domain controllers,dc=tahavvol,dc=tk
pserver[0].uuidobjectguid=78c896dc-9147-45b1-85d5-b2be5b69f798
pserver[0].uuidinvocationid=78c896dc-9147-45b1-85d5-b2be5b69f798
pserver[0].isite=0 (default-first-site-name)
pserver[0].ioptions=1
pserver[0].ftlocalacquiretime=9a820c80 01cfdb04
pserver[0].ftremoteconnecttime=9a2c9980 01cfdb04
pserver[0].ppszmaster/fullreplicancs:
ppszmaster/fullreplicancs[0]=dc=forestdnszones,dc=tahavvol,dc=tk
ppszmaster/fullreplicancs[1]=dc=domaindnszones,dc=tahavvol,dc=tk
ppszmaster/fullreplicancs[2]=cn=schema,cn=configuration,dc=tahavvol,dc=tk
ppszmaster/fullreplicancs[3]=cn=configuration,dc=tahavvol,dc=tk
ppszmaster/fullreplicancs[4]=dc=tahavvol,dc=tk
sites: psites[0].pszname=default-first-site-name
psites[0].pszsitesettings=cn=ntds site settings,cn=default-first-site-name,cn=sites,cn=configuration,dc=tahavvol,dc=tk
psites[0].pszistg=cn=ntds settings,cn=server,cn=servers,cn=default-first-site-name,cn=sites,cn=configuration,dc=tahavvol,dc=tk
psites[0].isiteoption=0
psites[0].cservers=1
nc: pncs[0].pszname=forestdnszones
pncs[0].pszdn=dc=forestdnszones,dc=tahavvol,dc=tk
pncs[0].acrinfo[0].dwflags=0x00000201
pncs[0].acrinfo[0].pszdn=cn=a4aa9f5b-3a72-458a-b9df-57297e8dce82,cn=partitions,cn=configuration,dc=tahavvol,dc=tk
pncs[0].acrinfo[0].pszdnsroot=forestdnszones.tahavvol.tk
pncs[0].acrinfo[0].isourceserver=0
pncs[0].acrinfo[0].pszsourceserver=(null)
pncs[0].acrinfo[0].ulsystemflags=0x00000005
pncs[0].acrinfo[0].benabled=true
pncs[0].acrinfo[0].ftwhencreated=00000000 00000000 pncs[0].acrinfo[0].pszsdreferencedomain=(null)
pncs[0].acrinfo[0].psznetbiosname=(null)
pncs[0].acrinfo[0].creplicas=-1
pncs[0].acrinfo[0].aszreplicas=
nc: pncs[1].pszname=domaindnszones
pncs[1].pszdn=dc=domaindnszones,dc=tahavvol,dc=tk
pncs[1].acrinfo[0].dwflags=0x00000201
pncs[1].acrinfo[0].pszdn=cn=793db6a3-3e02-41fb-a654-e1d3ba165efe,cn=partitions,cn=configuration,dc=tahavvol,dc=tk
pncs[1].acrinfo[0].pszdnsroot=domaindnszones.tahavvol.tk
pncs[1].acrinfo[0].isourceserver=0
pncs[1].acrinfo[0].pszsourceserver=(null)
pncs[1].acrinfo[0].ulsystemflags=0x00000005
pncs[1].acrinfo[0].benabled=true
pncs[1].acrinfo[0].ftwhencreated=00000000 00000000 pncs[1].acrinfo[0].pszsdreferencedomain=(null)
pncs[1].acrinfo[0].psznetbiosname=(null)
pncs[1].acrinfo[0].creplicas=-1
pncs[1].acrinfo[0].aszreplicas=
nc: pncs[2].pszname=schema
pncs[2].pszdn=cn=schema,cn=configuration,dc=tahavvol,dc=tk
pncs[2].acrinfo[0].dwflags=0x00000201
pncs[2].acrinfo[0].pszdn=cn=enterprise schema,cn=partitions,cn=configuration,dc=tahavvol,dc=tk
pncs[2].acrinfo[0].pszdnsroot=tahavvol.tk
pncs[2].acrinfo[0].isourceserver=0
pncs[2].acrinfo[0].pszsourceserver=(null)
pncs[2].acrinfo[0].ulsystemflags=0x00000001
pncs[2].acrinfo[0].benabled=true
pncs[2].acrinfo[0].ftwhencreated=00000000 00000000 pncs[2].acrinfo[0].pszsdreferencedomain=(null)
pncs[2].acrinfo[0].psznetbiosname=(null)
pncs[2].acrinfo[0].creplicas=-1
pncs[2].acrinfo[0].aszreplicas=
nc: pncs[3].pszname=configuration
pncs[3].pszdn=cn=configuration,dc=tahavvol,dc=tk
pncs[3].acrinfo[0].dwflags=0x00000201
pncs[3].acrinfo[0].pszdn=cn=enterprise configuration,cn=partitions,cn=configuration,dc=tahavvol,dc=tk
pncs[3].acrinfo[0].pszdnsroot=tahavvol.tk
pncs[3].acrinfo[0].isourceserver=0
pncs[3].acrinfo[0].pszsourceserver=(null)
pncs[3].acrinfo[0].ulsystemflags=0x00000001
pncs[3].acrinfo[0].benabled=true
pncs[3].acrinfo[0].ftwhencreated=00000000 00000000 pncs[3].acrinfo[0].pszsdreferencedomain=(null)
pncs[3].acrinfo[0].psznetbiosname=(null)
pncs[3].acrinfo[0].creplicas=-1
pncs[3].acrinfo[0].aszreplicas=
nc: pncs[4].pszname=tahavvol
pncs[4].pszdn=dc=tahavvol,dc=tk
pncs[4].acrinfo[0].dwflags=0x00000201
pncs[4].acrinfo[0].pszdn=cn=tahavvol,cn=partitions,cn=configuration,dc=tahavvol,dc=tk
pncs[4].acrinfo[0].pszdnsroot=tahavvol.tk
pncs[4].acrinfo[0].isourceserver=0
pncs[4].acrinfo[0].pszsourceserver=(null)
pncs[4].acrinfo[0].ulsystemflags=0x00000003
pncs[4].acrinfo[0].benabled=true
pncs[4].acrinfo[0].ftwhencreated=00000000 00000000 pncs[4].acrinfo[0].pszsdreferencedomain=(null)
pncs[4].acrinfo[0].psznetbiosname=(null)
pncs[4].acrinfo[0].creplicas=-1
pncs[4].acrinfo[0].aszreplicas=
5 nc targets: forestdnszones, domaindnszones, schema, configuration, tahavvol,
1 targets: server,
=============================================done printing pdsinfo
doing initial required tests
testing server: default-first-site-name\server
starting test: connectivity
* active directory ldap services check
determining ip4 connectivity
determining ip6 connectivity
failure analysis: server ... ok.
* active directory rpc services check
[server] dsbindwithspnex() failed error 1722,
rpc server unavailable..
rpc extended error info not available. use group policy on local
machine @ "computer configuration/administrative
templates/system/remote procedure call" enable it.
got error while checking ldap , rpc connectivity. please check your
firewall settings.
......................... server failed test connectivity
doing primary tests
testing server: default-first-site-name\server
skipping tests, because server server not responding directory
service requests.
test omitted user request: advertising
test omitted user request: checksecurityerror
test omitted user request: cutoffservers
test omitted user request: frsevent
test omitted user request: dfsrevent
test omitted user request: sysvolcheck
test omitted user request: kccevent
test omitted user request: knowsofroleholders
test omitted user request: machineaccount
test omitted user request: ncsecdesc
test omitted user request: netlogons
test omitted user request: objectsreplicated
test omitted user request: outboundsecurechannels
test omitted user request: replications
test omitted user request: ridmanager
test omitted user request: services
test omitted user request: systemlog
test omitted user request: topology
test omitted user request: verifyenterprisereferences
test omitted user request: verifyreferences
test omitted user request: verifyreplicas
starting test: dns
dns tests running , not hung. please wait few minutes...
see dns test in enterprise tests section results
......................... server passed test dns
running partition tests on : forestdnszones
starting test: checksdrefdom
......................... forestdnszones passed test checksdrefdom
starting test: crossrefvalidation
......................... forestdnszones passed test
crossrefvalidation
running partition tests on : domaindnszones
starting test: checksdrefdom
......................... domaindnszones passed test checksdrefdom
starting test: crossrefvalidation
......................... domaindnszones passed test
crossrefvalidation
running partition tests on : schema
starting test: checksdrefdom
......................... schema passed test checksdrefdom
starting test: crossrefvalidation
......................... schema passed test crossrefvalidation
running partition tests on : configuration
starting test: checksdrefdom
......................... configuration passed test checksdrefdom
starting test: crossrefvalidation
......................... configuration passed test crossrefvalidation
running partition tests on : tahavvol
starting test: checksdrefdom
......................... tahavvol passed test checksdrefdom
starting test: crossrefvalidation
......................... tahavvol passed test crossrefvalidation
running enterprise tests on : tahavvol.tk
starting test: dns
test results domain controllers:
dc: server.tahavvol.tk
domain: tahavvol.tk
test: authentication (auth)
error: authentication failed specified credentials
[error details: 53 (type: win32 - description: network path not found.) - add connection failed]
test: basic (basc)
error: no ds rpc connectivity
os
microsoft windows server 2012 r2 datacenter (service pack level: 0.0)
supported.
netlogon service running
kdc service running
dnscache service running
dns service running
dc dns server
network adapters information:
adapter
[00000010] intel(r) 82574l gigabit network connection:
mac address 00:0c:29:32:7e:79
ip address static
ip address: 213.233.161.121, fe80::99b9:1a25:500b:dfd0
dns servers:
213.233.161.121 (server) [valid]
127.0.0.1 (server) [valid]
::1 (server) [valid]
host record(s) dc found
aaaa host record(s) dc found
soa record active directory zone found
active directory zone on dc/dns server found primary
root zone on dc/dns server not found
test: forwarders/root hints (forw)
recursion enabled
forwarders information:
4.2.2.4 (<name unavailable>) [valid]
8.8.8.8 (<name unavailable>) [valid]
81.31.160.34 (<name unavailable>) [valid]
81.31.160.35 (<name unavailable>) [valid]
test: delegations (del)
no delegations found in zone on dns server
test: dynamic update (dyn)
test record dcdiag-test-record added in zone tahavvol.tk
test record dcdiag-test-record deleted in zone tahavvol.tk
test: records registration (rreg)
network adapter
[00000010] intel(r) 82574l gigabit network connection:
matching cname record found @ dns server 213.233.161.121:
78c896dc-9147-45b1-85d5-b2be5b69f798._msdcs.tahavvol.tk
matching record found @ dns server 213.233.161.121:
server.tahavvol.tk
warning:
missing aaaa record @ dns server 213.233.161.121:
server.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.4f108dd0-38a4-4494-aaf3-29f23b87f505.domains._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kerberos._tcp.dc._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.dc._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kerberos._tcp.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kerberos._udp.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kpasswd._tcp.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.default-first-site-name._sites.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kerberos._tcp.default-first-site-name._sites.dc._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.default-first-site-name._sites.dc._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kerberos._tcp.default-first-site-name._sites.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.gc._msdcs.tahavvol.tk
matching record found @ dns server 213.233.161.121:
gc._msdcs.tahavvol.tk
warning:
missing aaaa record @ dns server 213.233.161.121:
gc._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_gc._tcp.default-first-site-name._sites.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.default-first-site-name._sites.gc._msdcs.tahavvol.tk
matching cname record found @ dns server 213.233.161.121:
78c896dc-9147-45b1-85d5-b2be5b69f798._msdcs.tahavvol.tk
matching record found @ dns server 213.233.161.121:
server.tahavvol.tk
warning:
missing aaaa record @ dns server 213.233.161.121:
server.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.4f108dd0-38a4-4494-aaf3-29f23b87f505.domains._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kerberos._tcp.dc._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.dc._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kerberos._tcp.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kerberos._udp.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kpasswd._tcp.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.default-first-site-name._sites.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kerberos._tcp.default-first-site-name._sites.dc._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.default-first-site-name._sites.dc._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_kerberos._tcp.default-first-site-name._sites.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.gc._msdcs.tahavvol.tk
matching record found @ dns server 213.233.161.121:
gc._msdcs.tahavvol.tk
warning:
missing aaaa record @ dns server 213.233.161.121:
gc._msdcs.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_gc._tcp.default-first-site-name._sites.tahavvol.tk
matching srv record found @ dns server 213.233.161.121:
_ldap._tcp.default-first-site-name._sites.gc._msdcs.tahavvol.tk
matching cname record found @ dns server ::1:
78c896dc-9147-45b1-85d5-b2be5b69f798._msdcs.tahavvol.tk
matching record found @ dns server ::1:
server.tahavvol.tk
warning:
missing aaaa record @ dns server ::1:
server.tahavvol.tk
matching srv record found @ dns server ::1:
_ldap._tcp.tahavvol.tk
matching srv record found @ dns server ::1:
_ldap._tcp.4f108dd0-38a4-4494-aaf3-29f23b87f505.domains._msdcs.tahavvol.tk
matching srv record found @ dns server ::1:
_kerberos._tcp.dc._msdcs.tahavvol.tk
matching srv record found @ dns server ::1:
_ldap._tcp.dc._msdcs.tahavvol.tk
matching srv record found @ dns server ::1:
_kerberos._tcp.tahavvol.tk
matching srv record found @ dns server ::1:
_kerberos._udp.tahavvol.tk
matching srv record found @ dns server ::1:
_kpasswd._tcp.tahavvol.tk
matching srv record found @ dns server ::1:
_ldap._tcp.default-first-site-name._sites.tahavvol.tk
matching srv record found @ dns server ::1:
_kerberos._tcp.default-first-site-name._sites.dc._msdcs.tahavvol.tk
matching srv record found @ dns server ::1:
_ldap._tcp.default-first-site-name._sites.dc._msdcs.tahavvol.tk
matching srv record found @ dns server ::1:
_kerberos._tcp.default-first-site-name._sites.tahavvol.tk
matching srv record found @ dns server ::1:
_ldap._tcp.gc._msdcs.tahavvol.tk
matching record found @ dns server ::1:
gc._msdcs.tahavvol.tk
warning:
missing aaaa record @ dns server ::1:
gc._msdcs.tahavvol.tk
matching srv record found @ dns server ::1:
_gc._tcp.default-first-site-name._sites.tahavvol.tk
matching srv record found @ dns server ::1:
_ldap._tcp.default-first-site-name._sites.gc._msdcs.tahavvol.tk
warning: record registrations not found in network adapters
total query time:0 min. 0 sec.. total rpc connection
time:0 min. 0 sec.
total wmi connection time:1 min. 24 sec. total netuse connection
time:0 min. 20 sec.
summary of test results dns servers used above domain
controllers:
dns server: 213.233.161.121 (server)
tests passed on dns server
name resolution functional._ldap._tcp srv record forest root domain registered
total query time:0 min. 0 sec., total wmi connection
time:0 min. 0 sec.
dns server: 4.2.2.4 (<name unavailable>)
tests passed on dns server
total query time:0 min. 0 sec., total wmi connection
time:0 min. 21 sec.
dns server: 8.8.8.8 (<name unavailable>)
tests passed on dns server
total query time:0 min. 0 sec., total wmi connection
time:0 min. 21 sec.
dns server: 81.31.160.34 (<name unavailable>)
tests passed on dns server
total query time:0 min. 0 sec., total wmi connection
time:0 min. 21 sec.
dns server: 81.31.160.35 (<name unavailable>)
tests passed on dns server
total query time:0 min. 0 sec., total wmi connection
time:0 min. 21 sec.
dns server: ::1 (server)
tests passed on dns server
name resolution functional._ldap._tcp srv record forest root domain registered
total query time:0 min. 0 sec., total wmi connection
time:0 min. 0 sec.
summary of dns test results:
auth basc forw del dyn rreg ext
_________________________________________________________________
domain: tahavvol.tk
server fail fail pass pass pass warn n/a
total time taken test dcs:1 min. 44 sec.
......................... tahavvol.tk failed test dns
starting test: locatorcheck
gc name: \\server.tahavvol.tk
locator flags: 0xe000f3fd
warning: couldn't verify server pdc using dslistroles()
pdc name: \\server.tahavvol.tk
locator flags: 0xe000f3fd
time server name: \\server.tahavvol.tk
locator flags: 0xe000f3fd
preferred time server name: \\server.tahavvol.tk
locator flags: 0xe000f3fd
kdc name: \\server.tahavvol.tk
locator flags: 0xe000f3fd
......................... tahavvol.tk passed test locatorcheck
starting test: fsmocheck
gc name: \\server.tahavvol.tk
locator flags: 0xe000f3fd
warning: couldn't verify server pdc using dslistroles()
pdc name: \\server.tahavvol.tk
locator flags: 0xe000f3fd
time server name: \\server.tahavvol.tk
locator flags: 0xe000f3fd
preferred time server name: \\server.tahavvol.tk
locator flags: 0xe000f3fd
kdc name: \\server.tahavvol.tk
locator flags: 0xe000f3fd
......................... tahavvol.tk passed test fsmocheck
starting test: intersite
skipping site default-first-site-name, site outside scope
provided command line arguments provided.
......................... tahavvol.tk passed test intersite
Windows Server > Group Policy
Comments
Post a Comment