2012 R2 GC not responding to AD when 2008 R2 server goes down

-

i have weird problem.

background: had 2003 sbs , migrated 08r2. demoted sbs , 08r2 worked fine. added domain services 2012 r2 , clicked gc , moved fsmo roles new 2012 r2 server. both show in aduc under domain controllers. can ping lf.local workstation , round robin reply dns.

here's problem. when shutdown 08r2 server, ad goes down too. tried run aduc workstation , 12r2 server both there no directory servers available.

if boot 08r2 server well. can manually change 12r2 server in aduc , comes fine while 08r2 server running also. goal continue migration 08r2 12r2 , demote 08r2 asap.

i've checked million times in ad can, , says both servers domain controllers. dns works fine. modified record on 08r2 , changed on 12r2. changed on 12r2 , changed on 08r2. changed description field in user , changed both ways. replication seems bi-directional , working. plus i've check in adss bunch make sure replication set correctly.

what did miss on 12r2 server? i'm not seeing mistake.

hi jason,

thanks post.

the error message "nologon servers available" means there no dc available validate credentials of user trying login domain. there can many reason such connectivity, firewall, not able locate srv records in dns or secure channel broken. need start connection verification, latency, firewall port, antivirus etc. 

if yes, please check what's other message in event log? following check.

make sure ports used ad replication opened in both directions between 2 locations: https://technet.microsoft.com/en-us/library/bb727063.aspx

use repadmin /showrepl command verify successful replication.

make sure each dc has 1 ip address in use , 1 nic card enabled. other nic cards should disabled

choose healthy dc / dns server , make dcs pointing primary dns server

run ipconfig /registerdns and restart netlogon on each dc have

do manual cleanup of obsolete dns records linked dcs.

best regards,

mary dong

please remember mark replies answers if , unmark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com.



Windows Server  >  Directory Services



Comments

Post a Comment

Popular posts from this blog

WIMMount (HSM) causing cluster storage to go redirected (2012r2 DC)

-
looking options resolve error , prevent in future. thanks help. hardware: 2 node dell hv cluster running2012r2 dc 8 nic/ea in multiplex mode 4x hyper-v 4x hosts storage: 2x synology nas, accessed through iscsi hosts , cluster relevant logs: log name:      microsoft-windows-failoverclustering/diagnostic source:        microsoft-windows-failoverclustering date:          event id:      2050 task category: none level:         warning keywords:       user:          system computer:      l description: [dcm] filter wimmount found @ unsafe altitude 180700 log name:      system source:        microsoft-windows-failoverclustering date:         event id:      5125 task category: cluster shared volume level:         warning keywords:       user:          system computer: description: cluster shared volume 'volume1' ('cluster disk 1') has identified 1 or more active filter drivers on device stack interfere csv operatio
Read more

Failed to delete the test record dcdiag-test-record in zone test.com

-
ps c:\users\administrator.test> dcdiag /test:dns directory server diagnosis performing initial setup:    trying find home server...    home server = dc02    * identified ad forest.    done gathering initial info. doing initial required tests    testing server: default-first-site-name\dc02       starting test: connectivity          ......................... dc02 passed test connectivity doing primary tests    testing server: default-first-site-name\dc02       starting test: dns          dns tests running , not hung. please wait few minutes...          ......................... dc02 passed test dns    running partition tests on : forestdnszones    running partition tests on : domaindnszones    running partition tests on : schema    running partition tests on : configuration    running partition tests on : test    running enterprise tests on : test.com       starting test: dns          test results domain
Read more

Azure MFA with Azure AD and RDS

-
i have setup following lab in azure , need help. a server (domain controller) , remote desktop services. and server multi factor authentication server. i have setup following one http://www.rdsgurus.com/uncategorized/step-by-step-using-windows-server-2012-r2-rd-gateway-with-azure-multifactor-authentication/ and when im connecting got following error. the user "domain\username", on client computer "xxx.xxx.xxx.xxx", did not meet connection authorization policy requirements , therefore not authorized access rd gateway server. authentication method used was: "ntlm" , connection protocol used: "rpc-http". following error occurred: "23003". also on security log i've got following authentication details: connection request policy name: ts gateway authorization policy network policy name: - authentication provider: radius proxy authentication server: test.test.local authentication type: - eap t
Read more