|
|
Hello.
I have the following error on one not in both DC (2DCs,win2k).
frssysvol : Error: No record of file Replication System, SYSVOL started.
The Active Directory may be prevented from Starting.
Sysvol and Netlogon are Shared as i see.
Can someone Tell what should i do, to resolve this problem ?
Thanks.
|
|
In news:ucCm$6WjHHA.392[ at ]TK2MSFTNGP06.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Hello.
>
> I have the following error on one not in both DC (2DCs,win2k).
>
> frssysvol : Error: No record of file Replication System, SYSVOL
> started. The Active Directory may be prevented from Starting.
>
> Sysvol and Netlogon are Shared as i see.
>
> Can someone Tell what should i do, to resolve this problem ?
>
> Thanks.
THis indicates a deeper problem. A number of reasons can cause this starting
with basic configuration errors.
For starters, can you provide the following information to better assist
you?
1. Unedited ipconfig /all from two of your DCs, and one of your clients..
2. The exact zone name spellng in DNS and whether updates are allowed on the
zone.
3. The AD DNS domain name as it shows up in ADUC.
4. If the SRV records exist under your zone.
5. Any errors in the Event logs on the DC under System, Replication Service
and Directory Services (post the Event ID# and source please)
6. Dcdiag /v /fix > c:\dcdiag.txt (post the dcdiag.txt as an attachment)
7. Netdiag /v /fix > c:\netdiag.txt (post the dcdiag.txt as an attachment)
8. More than one subnet?
9. Forwarder(s) configured?
Thanks,
--
Regards,
Ace
Innovative IT Concepts, Inc (IITCI)
Willow Grove, PA
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Directory Services
Microsoft Certified Trainer
Infinite Diversities in Infinite Combinations
Having difficulty reading or finding responses to your post?
Instead of the website you're using, try using OEx (Outlook Express
or any other newsreader), and configure a news account, pointing to
news.microsoft.com. Anonymous access. It's free - no username or password
required nor do you need a Newsgroup Usenet account with your ISP. It
connects directly to the Microsoft Public Newsgroups. OEx allows you
o easily find, track threads, cross-post, sort by date, poster's name,
watched threads or subject. It's easy:
How to Configure OEx for Internet News
http://support.microsoft.com/?id=171164
"Quitting smoking is easy. I've done it a thousand times." - Mark Twain
|
|
Sorry, i can provide only some information.
I hope this is enough to help me.
[Quoted Text] > 1. Unedited ipconfig /all from two of your DCs, and one of your clients..
ALL IPs are Static no DHCP
1. 1 DC
IP: XXX.XXX.XXX.252
PrefDNS: XXX.XXX.XXX.253(second DC)
AlteDNS: XXX.XXX.XXX.252 (itselfs)
DGW : NONE
WINS: NONE
2 DC
IP: XXX.XXX.XXX.253
PrefDNS: XXX.XXX.XXX.252(first DC)
AlteDNS: XXX.XXX.XXX.253 (itselfs)
DGW : NONE
WINS: NONE
ONE client:
IP: XXX.XXX.XXX.16
Pref:DNS: XXX.XXX.XXX.252(first DC)
AlterDNS: XXX.XXX.XXX.2523(second DC)
DGW: XXX.XXX.XXX.2 (ADSL Router for Internet Connection)
WINS: NONE
> 2. The exact zone name spellng in DNS and whether updates are allowed on
> the zone.
> 3. The AD DNS domain name as it shows up in ADUC.
DNS Name : XXX-YYYYY.GR
> 4. If the SRV records exist under your zone.
Where exactly must this be??, i dont see in DNS anythink i the zones.
> 5. Any errors in the Event logs on the DC under System, Replication
> Service and Directory Services (post the Event ID# and source please)
No errors are in Event-view
> 6. Dcdiag /v /fix > c:\dcdiag.txt (post the dcdiag.txt as an attachment)
All tests PASSED except this frssyvol ERROR as posted!
> 7. Netdiag /v /fix > c:\netdiag.txt (post the dcdiag.txt as an attachment)
All tests PASSED except: Testing trust Relationsships.....SKIPPED
Testing Default Getaway ......
FAILED( i dont had setup this)
Testing WINS......SKIPPED (i dont
had setup this)
> 8. More than one subnet?
NO
> 9. Forwarder(s) configured?
YES, in Both DCs the same Formarders (2 IP adress for our Internet Provider)
Thanks
|
|
Read inline please.
In news:ugRMCQijHHA.3264[ at ]TK2MSFTNGP04.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Sorry, i can provide only some information.
> I hope this is enough to help me.
>
>> 1. Unedited ipconfig /all from two of your DCs, and one of your
>> clients..
> ALL IPs are Static no DHCP
> 1. 1 DC
> IP: XXX.XXX.XXX.252
> PrefDNS: XXX.XXX.XXX.253(second DC)
> AlteDNS: XXX.XXX.XXX.252 (itselfs)
> DGW : NONE
> WINS: NONE
> 2 DC
> IP: XXX.XXX.XXX.253
> PrefDNS: XXX.XXX.XXX.252(first DC)
> AlteDNS: XXX.XXX.XXX.253 (itselfs)
> DGW : NONE
> WINS: NONE
Hopefully since you didn't provide the unedited ipconfig /all I'll have to
assume the Primary DNS suffix is correct.
That said, you are going to need to give these DCs your Default gateway so
they can get to the internet. Without a DGW, DNS will be unable to resolve
external names. DNS can get away with not having a DGW if, your router
supports doing DNS lookups, you would have to use the router as the
forwarder AND check the box "Do not use recursion for this domain" You would
basically be using the router as a DNS proxy, and machines using proxies
don't need DGWs because all connectivity is local.
>> 2. The exact zone name spellng in DNS and whether updates are
>> allowed on the zone.
>> 3. The AD DNS domain name as it shows up in ADUC.
>
> DNS Name : XXX-YYYYY.GR
>
>> 4. If the SRV records exist under your zone.
>
> Where exactly must this be??, i dont see in DNS anythink i the zones.
Your DNS should have at least one zone, and most likely two:
1. XXX-YYYYY.GR
-and most likely-
2. _msdcs.XXX-YYYYY.GR
> All tests PASSED except: Testing trust Relationsships.....SKIPPED
> Testing Default Getaway ...... FAILED( i dont had setup
> this)
Refer to my response above
>
> YES, in Both DCs the same Formarders (2 IP adress for our Internet
> Provider)
Again refer to me response above, without a DGW, you cannot forward to your
ISP. You would have to forward to the router AND the router must support
being a DNS Proxy.
Use this to test:
nslookup -qtype=ns . IPAddress-of-router
If the router supports DNS lookups, it will respond with the Root Name
Servers. If it does not, you will have to give your DNS servers a gateway,
with port 53 udp/tcp access to any IP address on the internet.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
Send IM: http://www.icq.com/people/webmsg.php?to=296095728
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
In news:ugRMCQijHHA.3264[ at ]TK2MSFTNGP04.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Sorry, i can provide only some information.
> I hope this is enough to help me.
>
>> 1. Unedited ipconfig /all from two of your DCs, and one of your
>> clients..
> ALL IPs are Static no DHCP
> 1. 1 DC
> IP: XXX.XXX.XXX.252
> PrefDNS: XXX.XXX.XXX.253(second DC)
> AlteDNS: XXX.XXX.XXX.252 (itselfs)
> DGW : NONE
> WINS: NONE
> 2 DC
> IP: XXX.XXX.XXX.253
> PrefDNS: XXX.XXX.XXX.252(first DC)
> AlteDNS: XXX.XXX.XXX.253 (itselfs)
> DGW : NONE
> WINS: NONE
>
> ONE client:
> IP: XXX.XXX.XXX.16
> Pref:DNS: XXX.XXX.XXX.252(first DC)
> AlterDNS: XXX.XXX.XXX.2523(second DC)
> DGW: XXX.XXX.XXX.2 (ADSL Router for Internet Connection)
> WINS: NONE
>
>> 2. The exact zone name spellng in DNS and whether updates are
>> allowed on the zone.
>> 3. The AD DNS domain name as it shows up in ADUC.
>
> DNS Name : XXX-YYYYY.GR
>
>> 4. If the SRV records exist under your zone.
>
> Where exactly must this be??, i dont see in DNS anythink i the zones.
>
>
>> 5. Any errors in the Event logs on the DC under System, Replication
>> Service and Directory Services (post the Event ID# and source please)
>
> No errors are in Event-view
>
>> 6. Dcdiag /v /fix > c:\dcdiag.txt (post the dcdiag.txt as an
>> attachment)
>
> All tests PASSED except this frssyvol ERROR as posted!
>
>> 7. Netdiag /v /fix > c:\netdiag.txt (post the dcdiag.txt as an
>> attachment)
> All tests PASSED except: Testing trust Relationsships.....SKIPPED
> Testing Default Getaway
> ...... FAILED( i dont had setup this)
> Testing WINS......SKIPPED
> (i dont had setup this)
>> 8. More than one subnet?
>
> NO
>
>> 9. Forwarder(s) configured?
>
>
> YES, in Both DCs the same Formarders (2 IP adress for our Internet
> Provider)
> Thanks
Kevin provided some excellent information, however I am really curious as to
why you have dual NICs on the DC? The way you posted the ipconfig of the DC
assumes they are on the same subnet. Multi-homed (more than one NIC) is a
source of numerous problems with domain communication unless they are
properly configured, or the NICs are teamed. In your case they do not look
like they are teamed.
Are the two NICs on different subnets (one internal, one external) or are
they both on the same internal network?
Please elaborate on why you have dual NICs.
The SRV records are the records that start with:
_msdcs.domain.gr
and under domain.gr you will find:
_tcp
_sites
_udp
Do they exist?
Thanks,
Ace
|
|
|
[Quoted Text] >
> Kevin provided some excellent information, however I am really curious as
> to why you have dual NICs on the DC? The way you posted the ipconfig of
> the DC assumes they are on the same subnet. Multi-homed (more than one
> NIC) is a source of numerous problems with domain communication unless
> they are properly configured, or the NICs are teamed. In your case they do
> not look like they are teamed.
No. Where do you see two NICs?
First DC has one NIC with XXX.XXX.XXX.252
Second DC has one NIC with XXX.XXX.XXX.253
The other IP address which i had write , are the DNS Settings(Prefered
Primary Controller and the Alternate Primary Controller)
> The SRV records are the records that start with:
> _msdcs.domain.gr
> and under domain.gr you will find:
> _tcp
> _sites
> _udp
>
> Do they exist?
YES, they are exist.
We have ONLY a Local Network Without subnets, a think the DGW is not
neccesary.
We have a DSL router(XXX.XXX.XXX.2) for the Internet connection.
As Kevin says, must in the Forwarders, the IP address of the Router??
Momentaly are 2 IP external- adress from our ISP there, is this wrong??
(The DSL router ist directly attached to our Switch)
Thanks.
|
|
In news:e7CfU6GkHHA.1624[ at ]TK2MSFTNGP02.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] >> Kevin provided some excellent information, however I am really
>> curious as to why you have dual NICs on the DC? The way you posted
>> the ipconfig of the DC assumes they are on the same subnet.
>> Multi-homed (more than one NIC) is a source of numerous problems
>> with domain communication unless they are properly configured, or
>> the NICs are teamed. In your case they do not look like they are
>> teamed.
>
>
> No. Where do you see two NICs?
>
> First DC has one NIC with XXX.XXX.XXX.252
>
> Second DC has one NIC with XXX.XXX.XXX.253
>
> The other IP address which i had write , are the DNS Settings(Prefered
> Primary Controller and the Alternate Primary Controller)
>
>
>> The SRV records are the records that start with:
>> _msdcs.domain.gr
>
>> and under domain.gr you will find:
>> _tcp
>> _sites
>> _udp
>>
>> Do they exist?
>
>
> YES, they are exist.
>
>
> We have ONLY a Local Network Without subnets, a think the DGW is not
> neccesary.
>
> We have a DSL router(XXX.XXX.XXX.2) for the Internet connection.
>
> As Kevin says, must in the Forwarders, the IP address of the Router??
> Momentaly are 2 IP external- adress from our ISP there, is this
> wrong?? (The DSL router ist directly attached to our Switch)
> Thanks.
My bad, I thought it looked like one DC. The paragraph looked like one big
paragraph and didn't see the break until now.
As for a GW, how are your DCs getting to the internet? You do have them
configured for Windows Update?
The forwarder is to allow the ISP to resolve the outside names for your DNS,
but without a GW, why bother puttng in a forwarder since it cannot every
communicate with it anyway. That was why Kevin suggested to forward to the
router All of this is not best practice. A GW is.
Have you tried to restart the netlogon service on the DC showing the error?
Can you post the EventID # for the error please?
Ace
|
|
[Quoted Text] > My bad, I thought it looked like one DC. The paragraph looked like one big
> paragraph and didn't see the break until now.
Never Mind.
> As for a GW, how are your DCs getting to the internet? You do have them
> configured for Windows Update?
The DCs goes not to the Internet, i do Manualy Update the DCs.
> The forwarder is to allow the ISP to resolve the outside names for your
> DNS, but without a GW, why bother puttng in a forwarder since it cannot
> every communicate with it anyway. That was why Kevin suggested to forward
> to the router All of this is not best practice. A GW is.
IPCONFIG from a Workstation:
XXX.XXX.XXX.16 (Static)
DGW: XXX.XXX.XXX.2 (DSL Router)
DNS: XXX.XXX.XXX.252 (first DC)
altDNS: XXX.XXX.XXX.253(second DC)
Without Forwarders i cant go from Worksation to internet.
> Have you tried to restart the netlogon service on the DC showing the
> error?
YES Restartet, NO errors.
I have NO errors in the Event-View ONLY a periodicaly :
Source: Netlogon
Warning: 5781
"Dynamic Registration or Deregistration of one or more DNS records failed
because no DNS server are avaible"
As Microsoft says is not a Problem.
Thanks.
|
|
In news:O0nBPgHkHHA.4188[ at ]TK2MSFTNGP02.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] >
> Without Forwarders i cant go from Worksation to internet.
I don't follow here. If you configure a forwarder on the DC/DNS to the ISP,
but the DC/DNS has no gateway, how does it forward to the ISP? You are not
allowing communication off the subnet.
>
>> Have you tried to restart the netlogon service on the DC showing the
>> error?
> YES Restartet, NO errors.
>
>
> I have NO errors in the Event-View ONLY a periodicaly :
> Source: Netlogon
> Warning: 5781
> "Dynamic Registration or Deregistration of one or more DNS records
> failed because no DNS server are avaible"
>
> As Microsoft says is not a Problem.
>
>
> Thanks.
I wouldn't totally agree to let it go. I usually would like to fix whatever
the issue is. EventID 6781 have numerous causes. One of which are registry
entries to prevent registration. Was there any registry entries changed or
made in the past to alter DNS registration?
Another reason a 5781 can occur is due to a AD DNS single label name, or
even if the Primary DNS Suffix does not match the AD DNS domain name and/or
the zone in DNS. Since you didn't post the actual ipconfig /all, we weren't
able to determine that.Also if the zone is not allowing updates, or if the
zone exists in a different application partition and is therefore tagged as
a dupe and will not initialize, it wiill not register. I've seen that in a
mixed 2000/2003 scenarios. There are NUMEROUS causes for 5781's. Here is
more information to assist you.
http://eventid.net/display.asp?eventid=5781&eventno=167&source=NETLOGON&phase=1
Ace
|
|
Read inline please.
In news:e7CfU6GkHHA.1624[ at ]TK2MSFTNGP02.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > We have ONLY a Local Network Without subnets, a think the DGW is not
> neccesary.
The Default gateway is necessary if it has to communicate with any server
not on its own subnet, which means you need a gateway to communicate the DNS
servers at your ISP, since they are also not on your subnet. Without a DGW,
you will have to use your router as the forwarder.
>
> We have a DSL router(XXX.XXX.XXX.2) for the Internet connection.
>
> As Kevin says, must in the Forwarders, the IP address of the Router??
> Momentaly are 2 IP external- adress from our ISP there, is this
> wrong??
Think about this, "Momentaly are 2 IP external- adress from our ISP there"
if you have no gateway, how is it going to find the external servers?
(Unless you have created a static route to them) in a cmd prompt type route
print and hit enter. if there is no default route, you won't be able to
communicate off your subnet, and when you ping your ISP's DNS you will get
destination host unreachable.
You could conceivably add a static route to your ISP's DNS, and get around
the DGW, but you'll need to check the box, "Do not use recursion"
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
Send IM: http://www.icq.com/people/webmsg.php?to=296095728
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
[Quoted Text] > The Default gateway is necessary if it has to communicate with any server
> not on its own subnet, which means you need a gateway to communicate the
> DNS
> servers at your ISP, since they are also not on your subnet. Without a
> DGW,
> you will have to use your router as the forwarder.
The DC itselfs NOT need/wont to Communicate with the ISP.
If a ping the ISP from Server a have "ureachable Status" , this is ok.
ONLY the Clients need to connect with the ISP,
ALL clients have the Default Gateway set to DSL Router xxx.xxx.xxx.2
The adressing of all equipment is Static.
In two cases goes the Client to the ISP (tested!!):
1. If a configure in Client the Primary DNS/Altenate DNS to our ISP.
Which is not Correct.
2. if a define a Forwarders in DC with the ISP addresses.
If i remove the forwarders from DC the Client cant connect to
ISP.(tested!!)
HOW can i else do this?
(The router is from our ISP configured and i dont wont to change anything!)
BUT that is NOT my Question:
Question is, why a have a frssysvol error in DC diag??
Summary(errors/warnings):
DCdiag error:
frssysvol: No record of file replikation System,SYSVOL started.
The Active Directory may be prevented from Starting.
System Event View:
Source: Netlogon
> Warning: 5781
> "Dynamic Registration or Deregistration of one or more DNS records
> failed because no DNS server are avaible"
>
Thanks.
|
|
Read inline please.
In news:uTz26fTkHHA.4904[ at ]TK2MSFTNGP05.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > BUT that is NOT my Question:
>
> Question is, why a have a frssysvol error in DC diag??
>
> Summary(errors/warnings):
>
> DCdiag error:
> frssysvol: No record of file replikation System,SYSVOL started.
> The Active Directory may be prevented from Starting.
>
> System Event View:
> Source: Netlogon
>> Warning: 5781
>> "Dynamic Registration or Deregistration of one or more DNS records
>> failed because no DNS server are avaible"
5781 errors are typically caused by having a single-label AD DNS name and/or
a disjointed namespace on a Domain Controller. If it is a single-label DNS
name see the KB below, if it is a disjointed namespace on a DC (Primary DNS
suffix does not match the AD DNS name) , give the DC a Primary DNS suffix
that matches the AD DNS name. On Win2k3 you can change the Primary DNS
suffix in the System Control Panel on the Computer Name tab. On Win2k to
correct the Primary DNS suffix it is recommended to use the script from the
KB below, it can be done by registry edits, but the script automates the
edits with screen prompts.
300684 - Information About Configuring Windows for Domains with Single-Label
DNS Names: http://support.microsoft.com/default.aspx?scid=kb;en-us;300684
257623 Domain Controller's Domain Name System Suffix Does Not Match Domain
Name: http://support.microsoft.com/?id=257623
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
Send IM: http://www.icq.com/people/webmsg.php?to=296095728
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
In news:%23qn1tUYkHHA.5084[ at ]TK2MSFTNGP03.phx.gbl,
Kevin D. Goodknecht Sr. [MVP] <admin[ at ]nospam.WFTX.US> typed:
[Quoted Text] > 5781 errors are typically caused by having a single-label AD DNS name > and/or a disjointed namespace on a Domain Controller. If it is a > single-label DNS name see the KB below, if it is a disjointed > namespace on a DC (Primary DNS suffix does not match the AD DNS name) > , give the DC a Primary DNS suffix that matches the AD DNS name. On > Win2k3 you can change the Primary DNS suffix in the System Control > Panel on the Computer Name tab. On Win2k to correct the Primary DNS > suffix it is recommended to use the script from the KB below, it can > be done by registry edits, but the script automates the edits with > screen prompts. > > 300684 - Information About Configuring Windows for Domains with > Single-Label DNS Names: > http://support.microsoft.com/default.aspx?scid=kb;en-us;300684> > 257623 Domain Controller's Domain Name System Suffix Does Not Match > Domain Name: http://support.microsoft.com/?id=257623
Kevin,
If marsias posted an actual ipconfig /all earlier in the thread, it would
have helped to determine the exact cause of the 5781 errors. I concur it's
probably a single label name condition or disjointed namespace, but it's
still a WAG (wild guess) on our part wihtout specific configuraiton
inforamation from marsias.
Ace
|
|
Read inline please.
In news:%237yPoGckHHA.4628[ at ]TK2MSFTNGP06.phx.gbl,
Ace Fekay [MVP] <PleaseAskMe[ at ]SomeDomain.com> typed:
[Quoted Text] > If marsias posted an actual ipconfig /all earlier in the thread, it
> would have helped to determine the exact cause of the 5781 errors. I
> concur it's probably a single label name condition or disjointed
> namespace, but it's still a WAG (wild guess) on our part wihtout
> specific configuraiton inforamation from marsias.
I agree, this is a point I made when this was posted instead of an ipconfig
/all;
1. 1 DC
IP: XXX.XXX.XXX.252
PrefDNS: XXX.XXX.XXX.253(second DC)
AlteDNS: XXX.XXX.XXX.252 (itselfs)
DGW : NONE
WINS: NONE
2 DC
IP: XXX.XXX.XXX.253
PrefDNS: XXX.XXX.XXX.252(first DC)
AlteDNS: XXX.XXX.XXX.253 (itselfs)
DGW : NONE
WINS: NONE
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
Send IM: http://www.icq.com/people/webmsg.php?to=296095728
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
Hello.
Warning 5781 are resolved by follow a Microsoft KB.
1. Netlogon Service Stop.
2. RENAME netlogon.dns to netlogon.old
3. RENAME netlogon.dnb to netlogon.old2
4. Restarte Netlogon Service.
I have yet only this DCdiag error about frssysvol
All checked as in Microsoft KB257338 requested, but i can find anything.
Thanks.
|
|
Read inline please.
In news:%231Bc5cikHHA.4800[ at ]TK2MSFTNGP02.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Hello.
>
> Warning 5781 are resolved by follow a Microsoft KB.
>
> 1. Netlogon Service Stop.
> 2. RENAME netlogon.dns to netlogon.old
> 3. RENAME netlogon.dnb to netlogon.old2
> 4. Restarte Netlogon Service.
Doing the above in itself does not fix 5781, it can clear up 5781 after
fixing the real problem. The netlogon.dns and netlogon.dnb is where Domain
Controllers themselves store DNS registrations before they are sent to DNS,
and they compare the actual DNS registrations to the records stored in these
two files.
I'm sorry if I cannot help you but why are you beating around the bush
rather than providing information requested?
Obviously there are DNS issues now or sometime in the very recent past,
which can cause a whole myriad of problems for Domain Controllers and Active
Directory. If DNS is not right, AD won't be.
> I have yet only this DCdiag error about frssysvol
What messages are in the FRS and Directoy Service Event logs?
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
Send IM: http://www.icq.com/people/webmsg.php?to=296095728
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
In news:%231Bc5cikHHA.4800[ at ]TK2MSFTNGP02.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Hello.
>
> Warning 5781 are resolved by follow a Microsoft KB.
>
> 1. Netlogon Service Stop.
> 2. RENAME netlogon.dns to netlogon.old
> 3. RENAME netlogon.dnb to netlogon.old2
> 4. Restarte Netlogon Service.
>
>
> I have yet only this DCdiag error about frssysvol
>
> All checked as in Microsoft KB257338 requested, but i can find
> anything.
> Thanks.
Please post the actual EventID number are yuou getting for FRSSYSVOL?
We really do need your configuration information that we requested as Kevin
stated.
Otherwise it is extremely difficult to assist you with your problems. I'm
sure you do not want us to guess.
We are only asking for this information to help YOU.
Ace
|
|
Hello.
Thank you for all the responses.
Here are the FRSDIAG logs on Both SERVERS:
a 2-way DFS are installed on the Machines.(win2000)
FIRST SERVER
------------------------------------------------------------
FRSDiag v1.7 on 10/5/2007 8:21:06 ðì
..\DC1-server on 2007-05-10 at 8.21.06 ðì
------------------------------------------------------------
Checking for errors in Directory Service Event Log .... passed
Checking for minimum FRS version requirement ... passed
Checking for errors/warnings in ntfrsutl ds ... passed
Checking for Replica Set configuration triggers... passed
Checking for suspicious file Backlog size... passed
Checking Overall Disk Space and SYSVOL structure (note: integrity is not
checked)... passed
Checking for suspicious inlog entries ... passed
Checking for suspicious outlog entries ...
WARNING: 31,55% (928 out of 2941) of your outlog contains Security ACL
events
.......... passed (with 1 warning(s))
Checking for appropriate staging area size ... passed
Checking for errors in debug logs ...
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <StuExecuteInstall: 2960: 1948: S1:
03:07:15> WARN - StuOpenDestinationFile failed. WStatus:
ERROR_SHARING_VIOLATION
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <StuOpenDestinationFile: 2960: 657:
S0: 03:08:15> :: CoG 159ea452, CxtG e8881442, FV 31, FID 003d0000 00003c26,
FN: STOCK_FRONT_MF.xls, [FrsForceOpenId failed. (ERROR_SHARING_VIOLATION)]
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <StuExecuteInstall: 2960: 1948: S1:
03:08:15> WARN - StuOpenDestinationFile failed. WStatus:
ERROR_SHARING_VIOLATION
ERROR on NtFrs_0001.log : "IBCO_FETCH_RETRY" : <DbsWriteTableRecord: 1916:
14103: S1: 13:09:13> State | Len/Ad/Er: 4/ 327997c/ 0, 00000008 CO STATE:
IBCO_FETCH_RETRY
ERROR on NtFrs_0001.log : "IBCO_FETCH_RETRY" : <DbsWriteTableRecord: 1916:
14103: S1: 13:09:13> State | Len/Ad/Er: 4/ 17656a4/ 0, 00000008 CO STATE:
IBCO_FETCH_RETRY
ERROR on NtFrs_0005.log : "IBCO_INSTALL_RETRY" : 5/ 9-18:51:06 :T: LocnCmd:
NoCmd State: IBCO_INSTALL_RETRY ReplicaName: USERFILES (3)
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <FrsOpenSourceFileById: 2960: 3344:
S0: 03:07:15> ++ ERROR - NtCreateFile failed : NTStatus:
STATUS_SHARING_VIOLATION
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <ProcessOpenByIdStatus: 2960: 2994:
S1: 03:08:15> ++ 003D0000 00003C26 Fid Open failed; NTStatus:
STATUS_SHARING_VIOLATION
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <FrsOpenSourceFileById: 2960: 3344:
S0: 03:08:15> ++ ERROR - NtCreateFile failed : NTStatus:
STATUS_SHARING_VIOLATION
Found 998 ERROR_SHARING_VIOLATION error(s)! Latest ones (up to 3) listed
above
Found 2 IBCO_FETCH_RETRY error(s)! Latest ones (up to 3) listed above
Found 1 IBCO_INSTALL_RETRY error(s)! Latest ones (up to 3) listed above
Found 998 STATUS_SHARING_VIOLATION error(s)! Latest ones (up to 3) listed
above
.......... failed with 1999 error entries
Checking NtFrs Service (and dependent services) state...passed
Checking NtFrs related Registry Keys for possible problems...passed
Checking Repadmin Showreps for errors...passed
Final Result = failed with 1999 error(s)
The SECOND ONE.
------------------------------------------------------------
FRSDiag v1.7 on 10/5/2007 8:21:06 ðì
..\DC2-server on 2007-05-10 at 8.21.06 ðì
------------------------------------------------------------
Checking for errors in Directory Service Event Log .... passed
Checking for minimum FRS version requirement ... passed
Checking for errors/warnings in ntfrsutl ds ... passed
Checking for Replica Set configuration triggers... passed
Checking for suspicious file Backlog size... passed
Checking Overall Disk Space and SYSVOL structure (note: integrity is not
checked)... passed
Checking for suspicious inlog entries ... passed
Checking for suspicious outlog entries ...
WARNING: 30,50% (897 out of 2941) of your outlog contains Security ACL
events
.......... passed (with 1 warning(s))
Checking for appropriate staging area size ... passed
Checking for errors in debug logs ...
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" :
<StuOpenDestinationFileForDelete:1712: 1051: S0: 16:12:04> :: CoG 19f6004b,
CxtG 6447763d, FV 29, FID 003f0000 00001ec6, FN:
STOCK_FRONT_MF.xls~RF4abe8b5.TMP, [FrsOpenSourceFile2W failed.
(ERROR_SHARING_VIOLATION)]
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <StuOpenDestinationFile: 1704: 657:
S0: 16:12:06> :: CoG 9b2e003d, CxtG 6447763d, FV 30, FID 003f0000 00001ec6,
FN: STOCK_FRONT_MF.xls, [FrsForceOpenId failed. (ERROR_SHARING_VIOLATION)]
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <StuExecuteInstall: 1704: 1948: S1:
16:12:06> WARN - StuOpenDestinationFile failed. WStatus:
ERROR_SHARING_VIOLATION
ERROR on NtFrs_0004.log : "IBCO_INSTALL_RETRY" : 5/ 9-13:14:17 :T: LocnCmd:
NoCmd State: IBCO_INSTALL_RETRY ReplicaName: USERFILES (2)
ERROR on NtFrs_0004.log : "IBCO_INSTALL_RETRY" : 5/ 9-13:14:23 :T: LocnCmd:
NoCmd State: IBCO_INSTALL_RETRY ReplicaName: USERFILES (2)
ERROR on NtFrs_0005.log : "IBCO_INSTALL_RETRY" : 5/ 9-16:12:06 :T: LocnCmd:
Create State: IBCO_INSTALL_RETRY ReplicaName: USERFILES (2)
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <FrsOpenSourceFile2W: 1712: 1562:
S0: 16:12:04> NtCreateFile failed : NTStatus: STATUS_SHARING_VIOLATION
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <ProcessOpenByIdStatus: 1704: 2994:
S1: 16:12:06> ++ 003F0000 00001EC6 Fid Open failed; NTStatus:
STATUS_SHARING_VIOLATION
ERROR on NtFrs_0005.log : "ERROR_SHARING_VIOLATION(For more information see
KB.822300, KB.815473, and KB.823230)" : <FrsOpenSourceFileById: 1704: 3344:
S0: 16:12:06> ++ ERROR - NtCreateFile failed : NTStatus:
STATUS_SHARING_VIOLATION
Found 492 ERROR_SHARING_VIOLATION error(s)! Latest ones (up to 3) listed
above
Found 3 IBCO_INSTALL_RETRY error(s)! Latest ones (up to 3) listed above
Found 488 STATUS_SHARING_VIOLATION error(s)! Latest ones (up to 3) listed
above
.......... failed with 983 error entries
Checking NtFrs Service (and dependent services) state...passed
Checking NtFrs related Registry Keys for possible problems...passed
Checking Repadmin Showreps for errors...passed
Final Result = failed with 983 error(s)
|
|
marsias
Please post the following information to better assist. Please do not edit
or eliminate any information from the output when you do post it, otherwise
it makes it difficult or impossible to assist you.
If you cannot post the following information, it will be impossible to
assist you.
1. ipconfig /all (Please do not edit or change the information).
2. Name of your AD DNS domain name.
3. The EventID # of the errors in the Event Log.
4. The output you provided indicates a file name called STOCK_FRONT_MF.xls
is in usr, but if you ask me, the problems are probably due to a
misconfiguration but we cannot determine that beause you are not providing
us with the proper information.
Are you not able to post the information because of your company's security
policy? Are the IPs all private addresses? If so, there is nothing to worry
about and you can safely post it.
Ace
|
|
Hello ace.
Here the requested ifo:
1. ipconfig /all
1 DC
Host Name . . . . . . . . . . . . : aedak-server
Primary DNS Suffix . . . . . . . : ATT-AEDAK.GR
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : ATT-AEDAK.GR
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM Netfinity Fault Tolerance PCI
Adapter
Physical Address. . . . . . . . . : 00-02-55-4C-53-A4
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.2.252
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.2.253
192.168.2.252
Primary WINS Server . . . . . . . : 192.168.2.252
2DC
Host Name . . . . . . . . . . . . : backup-server
Primary DNS Suffix . . . . . . . : ATT-AEDAK.GR
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : ATT-AEDAK.GR
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM Netfinity Fault Tolerance PCI
Adapter
Physical Address. . . . . . . . . : 00-02-55-4C-66-0E
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.2.253
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.2.2
DNS Servers . . . . . . . . . . . : 192.168.2.252
192.168.2.253
Primary WINS Server . . . . . . . : 192.168.2.253
2. AD DNS Name are : ATT-AEDAK.GR.
3. NO ERRORS IN THE LOGS.
Thanks.
|
|
In news:eJrHs65kHHA.4900[ at ]TK2MSFTNGP05.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Hello ace.
>
> Here the requested ifo:
> 1. ipconfig /all
> 1 DC
> Host Name . . . . . . . . . . . . : aedak-server
> Primary DNS Suffix . . . . . . . : ATT-AEDAK.GR
> Node Type . . . . . . . . . . . . : Hybrid
> IP Routing Enabled. . . . . . . . : No
> WINS Proxy Enabled. . . . . . . . : No
> DNS Suffix Search List. . . . . . : ATT-AEDAK.GR
> Ethernet adapter Local Area Connection:
> Connection-specific DNS Suffix . :
> Description . . . . . . . . . . . : IBM Netfinity Fault Tolerance PCI
> Adapter
> Physical Address. . . . . . . . . : 00-02-55-4C-53-A4
> DHCP Enabled. . . . . . . . . . . : No
> IP Address. . . . . . . . . . . . : 192.168.2.252
> Subnet Mask . . . . . . . . . . . : 255.255.255.0
> Default Gateway . . . . . . . . . :
> DNS Servers . . . . . . . . . . . : 192.168.2.253
> 192.168.2.252
> Primary WINS Server . . . . . . . : 192.168.2.252
>
> 2DC
> Host Name . . . . . . . . . . . . : backup-server
> Primary DNS Suffix . . . . . . . : ATT-AEDAK.GR
> Node Type . . . . . . . . . . . . : Hybrid
> IP Routing Enabled. . . . . . . . : No
> WINS Proxy Enabled. . . . . . . . : No
> DNS Suffix Search List. . . . . . : ATT-AEDAK.GR
> Ethernet adapter Local Area Connection:
> Connection-specific DNS Suffix . :
> Description . . . . . . . . . . . : IBM Netfinity Fault Tolerance PCI
> Adapter
> Physical Address. . . . . . . . . : 00-02-55-4C-66-0E
> DHCP Enabled. . . . . . . . . . . : No
> IP Address. . . . . . . . . . . . : 192.168.2.253
> Subnet Mask . . . . . . . . . . . : 255.255.255.0
> Default Gateway . . . . . . . . . : 192.168.2.2
> DNS Servers . . . . . . . . . . . : 192.168.2.252
> 192.168.2.253
> Primary WINS Server . . . . . . . : 192.168.2.253
>
>
>
> 2. AD DNS Name are : ATT-AEDAK.GR.
>
> 3. NO ERRORS IN THE LOGS.
>
>
> Thanks.
Thank you for posting the information requested. Please make the following
changes:
DC1:
> IP Address. . . . . . . . . . . . : 192.168.2.252
> Subnet Mask . . . . . . . . . . . : 255.255.255.0
> Default Gateway . . . . . . . . . : 192.168.2.2
> DNS Servers . . . . . . . . . . . : 192.168.2.252
> 192.168.2.253
> Primary WINS Server . . . . . . . : 192.168.2.252
DC2:
> IP Address. . . . . . . . . . . . : 192.168.2.253
> Subnet Mask . . . . . . . . . . . : 255.255.255.0
> Default Gateway . . . . . . . . . : 192.168.2.2
> DNS Servers . . . . . . . . . . . : 192.168.2.253
> 192.168.2.252
> Primary WINS Server . . . . . . . : 192.168.2.253
If you look back at the frslog you posted, a file called
"STOCK_FRONT_MF.xls" (apparently an Excel file), is possibly causing the
problem. Do you see a file by that name in the Sysvol folder anywhere? Check
to see if it has Read attributes set.
Ace
|
|
Hello.
Thank you for you suggestions, but i not agree, because the error remains!!!
:
[Quoted Text] > Thank you for posting the information requested. Please make the following
> changes:
>
> DC1:
>> IP Address. . . . . . . . . . . . : 192.168.2.252
>> Subnet Mask . . . . . . . . . . . : 255.255.255.0
>> Default Gateway . . . . . . . . . : 192.168.2.2------ THIS is a Stadalone
>> DSL-Router for ISP--SERVER itselfs NO need to goes in Internet.
>> DNS Servers . . . . . . . . . . . : 192.168.2.252 --THIS is against
>> Microsoft recomentation
>> 192.168.2.253 ---The first
>> entry must point to another DC.
>> Primary WINS Server . . . . . . . : 192.168.2.252
>
> DC2:
>> IP Address. . . . . . . . . . . . : 192.168.2.253
>> Subnet Mask . . . . . . . . . . . : 255.255.255.0
>> Default Gateway . . . . . . . . . : 192.168.2.2------SERVER must go to
>> Internet for NAV updates.
>> DNS Servers . . . . . . . . . . . : 192.168.2.253-------same as above
>> 192.168.2.252-------same as
>> above
>> Primary WINS Server . . . . . . . : 192.168.2.253
>
>
> If you look back at the frslog you posted, a file called
> "STOCK_FRONT_MF.xls" (apparently an Excel file), is possibly causing the
> problem. Do you see a file by that name in the Sysvol folder anywhere?
> Check to see if it has Read attributes set.
This File "STOCK_FRONT_MF.xls" is Locate on USERFILES which is a
DFS-Folder.
In SYSVOL folder are ONLY a Login script File (*.bat) nothing else.
The Configuration about DNS Servers and other IP settings are Correct as is
, because i dont have any other errors.
The Frssyvol error, i think, the utility post a wrong message!!!
Thanks.
|
|
In news:eZr0hrelHHA.4904[ at ]TK2MSFTNGP05.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Hello.
>
> Thank you for you suggestions, but i not agree, because the error
> remains!!!
You don't agree with the suggestions, or did you try the suggestions only to
find the errors remained?
Also, what did you do about that file causing the problem called
"STOCK_FRONT_MF.xls?" I couldn't tell if you did anything by your response.
Did you remove it from tbhe Netlogon share? If not in there, search for taht
file and remove it from the share.
May I see an updated ipconfig /all from the servers please?
Ace
|
|
You don't agree with the suggestions, or did you try the suggestions only
to
[Quoted Text] > find the errors remained?
I have try you suggestions to find if the error remains.
Here was not the problem.(the error remains)
Sorry, I had than change the settings again to old configuration as
Microsoft recommends.
> Also, what did you do about that file causing the problem called
> "STOCK_FRONT_MF.xls?" I couldn't tell if you did anything by your
> response. Did you remove it from tbhe Netlogon share? If not in there,
> search for taht file and remove it from the share.
>
This File dont exist anymore als error.
The File was on DFS -STAGING -folder and the was Open for edit from a user,
This error was Normal.
DFS-FOLDER ist outside from SYSVOL or Netlogon Folder.
The error was generate from frsdiag tool on DFS-FOLDER not on SYSVOL folder
!
forget this file.
The error that i try to resolve(Frssysvol) is from DCDIAG.exe tool.
Thanks.
|
|
Ace her again the dcdiag log on both DCs.
1DC.
DC Diagnosis
Performing initial setup:
* Verifing that the local machine aedak-server, is a DC.
* Connecting to directory service on server aedak-server.
* Collecting site info.
* Identifying all servers.
* Found 2 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial non skippeable tests
Testing server: Default-First-Site-Name\AEDAK-SERVER
Starting test: Connectivity
* Active Directory LDAP Services Check
* Active Directory RPC Services Check
......................... AEDAK-SERVER passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\AEDAK-SERVER
Starting test: Replications
* Replications Check
......................... AEDAK-SERVER passed test Replications
Test omitted by user request: Topology
Test omitted by user request: CutoffServers
Starting test: NCSecDesc
* Security Permissions Check for
CN=Schema,CN=Configuration,DC=ATT-AEDAK,DC=GR
* Security Permissions Check for
CN=Configuration,DC=ATT-AEDAK,DC=GR
* Security Permissions Check for
DC=ATT-AEDAK,DC=GR
......................... AEDAK-SERVER passed test NCSecDesc
Starting test: NetLogons
* Network Logons Privileges Check
......................... AEDAK-SERVER passed test NetLogons
Starting test: Advertising
The DC AEDAK-SERVER is advertising itself as a DC and having a DS.
The DC AEDAK-SERVER is advertising as an LDAP server
The DC AEDAK-SERVER is advertising as having a writeable directory
The DC AEDAK-SERVER is advertising as a Key Distribution Center
The DC AEDAK-SERVER is advertising as a time server
The DS AEDAK-SERVER is advertising as a GC.
......................... AEDAK-SERVER passed test Advertising
Starting test: KnowsOfRoleHolders
Role Schema Owner = CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
Role Domain Owner = CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
Role PDC Owner = CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
Role Rid Owner = CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
Role Infrastructure Update Owner = CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
......................... AEDAK-SERVER passed test
KnowsOfRoleHolders
Starting test: RidManager
* Available RID Pool for the Domain is 2105 to 1073741823
* aedak-server.ATT-AEDAK.GR is the RID Master
* DsBind with RID Master was successful
* rIDAllocationPool is 1105 to 1604
* rIDNextRID: 1187
* rIDPreviousAllocationPool is 1105 to 1604
......................... AEDAK-SERVER passed test RidManager
Starting test: MachineAccount
* SPN found :LDAP/aedak-server.ATT-AEDAK.GR/ATT-AEDAK.GR
* SPN found :LDAP/aedak-server.ATT-AEDAK.GR
* SPN found :LDAP/AEDAK-SERVER
* SPN found :LDAP/aedak-server.ATT-AEDAK.GR/ATT-AEDAK
* SPN found
:LDAP/b87616a2-dc88-4dd6-bda7-d6ece910a770._msdcs.ATT-AEDAK.GR
* SPN found
:E3514235-4B06-11D1-AB04-00C04FC2DCD2/b87616a2-dc88-4dd6-bda7-d6ece910a770/ATT-AEDAK.GR
* SPN found :HOST/aedak-server.ATT-AEDAK.GR/ATT-AEDAK.GR
* SPN found :HOST/aedak-server.ATT-AEDAK.GR
* SPN found :HOST/AEDAK-SERVER
* SPN found :HOST/aedak-server.ATT-AEDAK.GR/ATT-AEDAK
* SPN found :GC/aedak-server.ATT-AEDAK.GR/ATT-AEDAK.GR
......................... AEDAK-SERVER passed test MachineAccount
Starting test: Services
* Checking Service: Dnscache
* Checking Service: NtFrs
* Checking Service: IsmServ
* Checking Service: kdc
* Checking Service: SamSs
* Checking Service: LanmanServer
* Checking Service: LanmanWorkstation
* Checking Service: RpcSs
* Checking Service: RPCLOCATOR
* Checking Service: w32time
* Checking Service: TrkWks
* Checking Service: TrkSvr
* Checking Service: NETLOGON
* Checking Service: Dnscache
* Checking Service: NtFrs
......................... AEDAK-SERVER passed test Services
Test omitted by user request: OutboundSecureChannels
Starting test: ObjectsReplicated
AEDAK-SERVER is in domain DC=ATT-AEDAK,DC=GR
Checking for CN=AEDAK-SERVER,OU=Domain
Controllers,DC=ATT-AEDAK,DC=GR in domain DC=ATT-AEDAK,DC=GR on 1 servers
Object is up-to-date on all servers.
Checking for CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
in domain CN=Configuration,DC=ATT-AEDAK,DC=GR on 1 servers
Object is up-to-date on all servers.
......................... AEDAK-SERVER passed test
ObjectsReplicated
Starting test: frssysvol
* The File Replication Service Event log test
Error: No record of File Replication System, SYSVOL started.
The Active Directory may be prevented from starting.
......................... AEDAK-SERVER passed test frssysvol
Starting test: kccevent
* The KCC Event log test
Found no KCC errors in Directory Service Event log in the last 15
minutes.
......................... AEDAK-SERVER passed test kccevent
Starting test: systemlog
* The System Event log test
Found no errors in System Event log in the last 60 minutes.
......................... AEDAK-SERVER passed test systemlog
Running enterprise tests on : ATT-AEDAK.GR
Starting test: Intersite
Skipping site Default-First-Site-Name, this site is outside the
scope
provided by the command line arguments provided.
......................... ATT-AEDAK.GR passed test Intersite
Starting test: FsmoCheck
GC Name: \\aedak-server.ATT-AEDAK.GR
Locator Flags: 0xe00001fd
PDC Name: \\aedak-server.ATT-AEDAK.GR
Locator Flags: 0xe00001fd
Time Server Name: \\aedak-server.ATT-AEDAK.GR
Locator Flags: 0xe00001fd
Preferred Time Server Name: \\aedak-server.ATT-AEDAK.GR
Locator Flags: 0xe00001fd
KDC Name: \\aedak-server.ATT-AEDAK.GR
Locator Flags: 0xe00001fd
......................... ATT-AEDAK.GR passed test FsmoCheck
DC Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial non skippeable tests
Testing server: Default-First-Site-Name\AEDAK-SERVER
Starting test: Connectivity
......................... AEDAK-SERVER passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\AEDAK-SERVER
Starting test: Replications
......................... AEDAK-SERVER passed test Replications
Starting test: NCSecDesc
......................... AEDAK-SERVER passed test NCSecDesc
Starting test: NetLogons
......................... AEDAK-SERVER passed test NetLogons
Starting test: Advertising
......................... AEDAK-SERVER passed test Advertising
Starting test: KnowsOfRoleHolders
......................... AEDAK-SERVER passed test
KnowsOfRoleHolders
Starting test: RidManager
......................... AEDAK-SERVER passed test RidManager
Starting test: MachineAccount
......................... AEDAK-SERVER passed test MachineAccount
Starting test: Services
......................... AEDAK-SERVER passed test Services
Starting test: ObjectsReplicated
......................... AEDAK-SERVER passed test
ObjectsReplicated
Starting test: frssysvol
Error: No record of File Replication System, SYSVOL started.
The Active Directory may be prevented from starting.
......................... AEDAK-SERVER passed test frssysvol
Starting test: kccevent
......................... AEDAK-SERVER passed test kccevent
Starting test: systemlog
......................... AEDAK-SERVER passed test systemlog
Running enterprise tests on : ATT-AEDAK.GR
Starting test: Intersite
......................... ATT-AEDAK.GR passed test Intersite
Starting test: FsmoCheck
......................... ATT-AEDAK.GR passed test FsmoCheck
2 DC
DC Diagnosis
Performing initial setup:
* Verifing that the local machine backup-server, is a DC.
* Connecting to directory service on server backup-server.
* Collecting site info.
* Identifying all servers.
* Found 2 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial non skippeable tests
Testing server: Default-First-Site-Name\BACKUP-SERVER
Starting test: Connectivity
* Active Directory LDAP Services Check
* Active Directory RPC Services Check
......................... BACKUP-SERVER passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\BACKUP-SERVER
Starting test: Replications
* Replications Check
......................... BACKUP-SERVER passed test Replications
Test omitted by user request: Topology
Test omitted by user request: CutoffServers
Starting test: NCSecDesc
* Security Permissions Check for
CN=Schema,CN=Configuration,DC=ATT-AEDAK,DC=GR
* Security Permissions Check for
CN=Configuration,DC=ATT-AEDAK,DC=GR
* Security Permissions Check for
DC=ATT-AEDAK,DC=GR
......................... BACKUP-SERVER passed test NCSecDesc
Starting test: NetLogons
* Network Logons Privileges Check
......................... BACKUP-SERVER passed test NetLogons
Starting test: Advertising
The DC BACKUP-SERVER is advertising itself as a DC and having a DS.
The DC BACKUP-SERVER is advertising as an LDAP server
The DC BACKUP-SERVER is advertising as having a writeable directory
The DC BACKUP-SERVER is advertising as a Key Distribution Center
The DC BACKUP-SERVER is advertising as a time server
The DS BACKUP-SERVER is advertising as a GC.
......................... BACKUP-SERVER passed test Advertising
Starting test: KnowsOfRoleHolders
Role Schema Owner = CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
Role Domain Owner = CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
Role PDC Owner = CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
Role Rid Owner = CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
Role Infrastructure Update Owner = CN=NTDS
Settings,CN=AEDAK-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
......................... BACKUP-SERVER passed test
KnowsOfRoleHolders
Starting test: RidManager
* Available RID Pool for the Domain is 2105 to 1073741823
* aedak-server.ATT-AEDAK.GR is the RID Master
* DsBind with RID Master was successful
* rIDAllocationPool is 1605 to 2104
* rIDNextRID: 1617
* rIDPreviousAllocationPool is 1605 to 2104
......................... BACKUP-SERVER passed test RidManager
Starting test: MachineAccount
* SPN found :LDAP/backup-server.ATT-AEDAK.GR/ATT-AEDAK.GR
* SPN found :LDAP/backup-server.ATT-AEDAK.GR
* SPN found :LDAP/BACKUP-SERVER
* SPN found :LDAP/backup-server.ATT-AEDAK.GR/ATT-AEDAK
* SPN found
:LDAP/1aded509-e4c4-49cf-bf21-7206843d4f5b._msdcs.ATT-AEDAK.GR
* SPN found
:E3514235-4B06-11D1-AB04-00C04FC2DCD2/1aded509-e4c4-49cf-bf21-7206843d4f5b/ATT-AEDAK.GR
* SPN found :HOST/backup-server.ATT-AEDAK.GR/ATT-AEDAK.GR
* SPN found :HOST/backup-server.ATT-AEDAK.GR
* SPN found :HOST/BACKUP-SERVER
* SPN found :HOST/backup-server.ATT-AEDAK.GR/ATT-AEDAK
* SPN found :GC/backup-server.ATT-AEDAK.GR/ATT-AEDAK.GR
......................... BACKUP-SERVER passed test MachineAccount
Starting test: Services
* Checking Service: Dnscache
* Checking Service: NtFrs
* Checking Service: IsmServ
* Checking Service: kdc
* Checking Service: SamSs
* Checking Service: LanmanServer
* Checking Service: LanmanWorkstation
* Checking Service: RpcSs
* Checking Service: RPCLOCATOR
* Checking Service: w32time
* Checking Service: TrkWks
* Checking Service: TrkSvr
* Checking Service: NETLOGON
......................... BACKUP-SERVER passed test Services
Test omitted by user request: OutboundSecureChannels
Starting test: ObjectsReplicated
BACKUP-SERVER is in domain DC=ATT-AEDAK,DC=GR
Checking for CN=BACKUP-SERVER,OU=Domain
Controllers,DC=ATT-AEDAK,DC=GR in domain DC=ATT-AEDAK,DC=GR on 1 servers
Object is up-to-date on all servers.
Checking for CN=NTDS
Settings,CN=BACKUP-SERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ATT-AEDAK,DC=GR
in domain CN=Configuration,DC=ATT-AEDAK,DC=GR on 1 servers
Object is up-to-date on all servers.
......................... BACKUP-SERVER passed test
ObjectsReplicated
Starting test: frssysvol
* The File Replication Service Event log test
Error: No record of File Replication System, SYSVOL started.
The Active Directory may be prevented from starting.
......................... BACKUP-SERVER passed test frssysvol
Starting test: kccevent
* The KCC Event log test
Found no KCC errors in Directory Service Event log in the last 15
minutes.
......................... BACKUP-SERVER passed test kccevent
Starting test: systemlog
* The System Event log test
Found no errors in System Event log in the last 60 minutes.
......................... BACKUP-SERVER passed test systemlog
Running enterprise tests on : ATT-AEDAK.GR
Starting test: Intersite
Skipping site Default-First-Site-Name, this site is outside the
scope
provided by the command line arguments provided.
......................... ATT-AEDAK.GR passed test Intersite
Starting test: FsmoCheck
GC Name: \\backup-server.ATT-AEDAK.GR
Locator Flags: 0xe00001fc
PDC Name: \\aedak-server.ATT-AEDAK.GR
Locator Flags: 0xe00001fd
Time Server Name: \\backup-server.ATT-AEDAK.GR
Locator Flags: 0xe00001fc
Preferred Time Server Name: \\backup-server.ATT-AEDAK.GR
Locator Flags: 0xe00001fc
KDC Name: \\backup-server.ATT-AEDAK.GR
Locator Flags: 0xe00001fc
......................... ATT-AEDAK.GR passed test FsmoCheck
DC Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial non skippeable tests
Testing server: Default-First-Site-Name\BACKUP-SERVER
Starting test: Connectivity
......................... BACKUP-SERVER passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\BACKUP-SERVER
Starting test: Replications
......................... BACKUP-SERVER passed test Replications
Starting test: NCSecDesc
......................... BACKUP-SERVER passed test NCSecDesc
Starting test: NetLogons
......................... BACKUP-SERVER passed test NetLogons
Starting test: Advertising
......................... BACKUP-SERVER passed test Advertising
Starting test: KnowsOfRoleHolders
......................... BACKUP-SERVER passed test
KnowsOfRoleHolders
Starting test: RidManager
......................... BACKUP-SERVER passed test RidManager
Starting test: MachineAccount
......................... BACKUP-SERVER passed test MachineAccount
Starting test: Services
......................... BACKUP-SERVER passed test Services
Starting test: ObjectsReplicated
......................... BACKUP-SERVER passed test
ObjectsReplicated
Starting test: frssysvol
Error: No record of File Replication System, SYSVOL started.
The Active Directory may be prevented from starting.
There are errors after the SYSVOL has been shared.
The SYSVOL can prevent the AD from starting.
......................... BACKUP-SERVER passed test frssysvol
Starting test: kccevent
......................... BACKUP-SERVER passed test kccevent
Starting test: systemlog
......................... BACKUP-SERVER passed test systemlog
Running enterprise tests on : ATT-AEDAK.GR
Starting test: Intersite
......................... ATT-AEDAK.GR passed test Intersite
Starting test: FsmoCheck
......................... ATT-AEDAK.GR passed test FsmoCheck
I hope this helps more, the ipconfig.
thanks again.
|
|
In news:Op9i3LglHHA.4848[ at ]TK2MSFTNGP05.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Ace her again the dcdiag log on both DCs.
>
<snipped>
>
> thanks again.
You are still having problems with the file replication missing.Here is the
error:
"Error: No record of File Replication System, SYSVOL started."
Can you post the actual EventID# and Source name of any errors that show up
in the Event logs: (Application, System or Directory Service Logs) please?
___
By the way, I read in your previous post that you stated you put your
settings back to "Microsoft's recommendations."
I would like you to know the suggestions I offered actually are Microsoft's
best pratice recommendations for DNS setttings in a single or multi-site,
multi-DC environment.. This is the best practice recommendations that we
(Microsoft certified trainers, MVPs and Microsoft's engineers) recommend.
You are in good hands with these recommendations.
Ace
|
|
Read inline please.
In news:Op9i3LglHHA.4848[ at ]TK2MSFTNGP05.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Starting test: frssysvol
> * The File Replication Service Event log test
> Error: No record of File Replication System, SYSVOL started.
> The Active Directory may be prevented from starting.
> ......................... BACKUP-SERVER passed test frssysvol
Can you post the event details from the the File Replication Service event
log.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
Send IM: http://www.icq.com/people/webmsg.php?to=296095728
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
[Quoted Text] >> Starting test: frssysvol
>> * The File Replication Service Event log test
>> Error: No record of File Replication System, SYSVOL started.
>> The Active Directory may be prevented from starting.
>> ......................... BACKUP-SERVER passed test frssysvol
>
> Can you post the event details from the the File Replication Service event
> log.
Hello.
I have no errors in ALL Events logs !!
Especially the File Replikation Service Event log are empty.
thanks.
|
|
In news:%23yCgUz3lHHA.4876[ at ]TK2MSFTNGP03.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] >>> Starting test: frssysvol
>>> * The File Replication Service Event log test
>>> Error: No record of File Replication System, SYSVOL
>>> started. The Active Directory may be prevented from
>>> starting. ......................... BACKUP-SERVER passed
>>> test frssysvol
>>
>> Can you post the event details from the the File Replication Service
>> event log.
>
> Hello.
>
> I have no errors in ALL Events logs !!
>
> Especially the File Replikation Service Event log are empty.
>
> thanks.
That is somewhat surprising since the dcdiag indicates an error.
These usually get posted to the File Replication logs in the Event viewer.
If you rstart the ntfrs service, check the event logs. Something should show
up if there is a problem
- Also can you scroll back in tghe logs, what other errors, if any, show
up?
- Is there less than 1 gigabyte freespace on the machines? If so, the FRS
service stops working and will not report anything into any logs.
- If you type in 'net share' in a conmmand prompt, does the SYSVOL share
show up?
- Follow all the steps in this article to insure connectivity:
How Domain Controllers Are Located in Windows:
http://support.microsoft.com/kb/247811
- Make sure the NetBIOS helper service is running on both machiens.
- Make sure the DHCP Client service is running on both machines.
- What concerns me is the error in the DCDIAG says "No record of File
Replication System," which indicates some sort of corruption with the FRS
attributes in AD. I would like you to follow this article to see if it is of
benefit.
Recovering missing FRS objects and FRS attributes in Active Directory
http://support.microsoft.com/kb/312862/en-us
Some addtional pertinent links:
Active Directory Operations Overview - Troubleshooting the File Replication
Service:
http://www.microsoft.com/technet/prodtechnol/windows2000serv/technologies/activedirectory/maintain/opsguide/part1/adogd11.mspx
Other pertinent links:
http://x220.win2ktest.com/forum/post.asp?method=ReplyQuote&REPLY_ID=44726&TOPIC_ID=10991&FORUM_ID=4
When you reply back, please respond to the questions above.
Also, if you feel this is somewhat difficult to perform, which I can
understand, then I would kindly suggest to call Microsoft PSS. For $245.00
USD, they will fix it for you on both machines no matter how long it takes.
Thank you,
Ace
|
|
[Quoted Text] > These usually get posted to the File Replication logs in the Event viewer.
> If you rstart the ntfrs service, check the event logs. Something should
> show up if there is a problem
Restartet in both DCs, No errors shows up on Event-view.
> - Is there less than 1 gigabyte freespace on the machines? If so, the FRS
> service stops working and will not report anything into any logs.
Free Space in Both about 10 GB.
> - If you type in 'net share' in a conmmand prompt, does the SYSVOL share
> show up?
Yes , SYSVOL is there
> - Make sure the NetBIOS helper service is running on both machiens.
----->>>>> NetBios helper service is NOT present in Both Maschines!!!!
How to insert them?
> - Make sure the DHCP Client service is running on both machines.
DHCP was only running on the second DC not in primary,
i have start the service now!
by the way: we use only Static addressing.
thanks.
|
|
Hello Ace.
Problem are Solved!
First i have restartet the ntfrs service and second i have startet the DHCP
client service on Primary DC which was not startet.
Which step from both has resolved the problem i dont know, i think the
restart from ntfrs service.
Yet, i have no errors in both DC.
Thanks again for all your advices and your patience.
|
|
Read inline please.
In news:eX9ZvvEmHHA.596[ at ]TK2MSFTNGP06.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Hello Ace.
>
> Problem are Solved!
>
> First i have restartet the ntfrs service and second i have startet
> the DHCP client service on Primary DC which was not startet.
The DHCP Client Service is a required service on Domain Controllers or any
Windows machine that is required to register in DNS. It is actually the DHCP
Client Service that registers in DNS.
Also, the TCP/IP NetBIOS helper Service is required to access DFS shares
from any machine. With out the TCP/IP NetBIOS helper service,
\\machinename\SYSVOL is accessible but \\ADDomain\SYSVOL is not, there are
two DFS shares on DCs, \\ADDomain\SYSVOL and \\ADDomain\NETLOGON
>
> Which step from both has resolved the problem i dont know, i think the
> restart from ntfrs service.
>
> Yet, i have no errors in both DC.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
Send IM: http://www.icq.com/people/webmsg.php?to=296095728
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
In news:eX9ZvvEmHHA.596[ at ]TK2MSFTNGP06.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] > Hello Ace.
>
> Problem are Solved!
>
> First i have restartet the ntfrs service and second i have startet
> the DHCP client service on Primary DC which was not startet.
>
> Which step from both has resolved the problem i dont know, i think the
> restart from ntfrs service.
>
> Yet, i have no errors in both DC.
>
> Thanks again for all your advices and your patience.
Kevin explained it. DO not disable this service on any machine. They are
required.
Ace
|
|
In news:eX9ZvvEmHHA.596[ at ]TK2MSFTNGP06.phx.gbl,
marsias <attiki01[ at ]attiki-aedak.gr> typed:
[Quoted Text] >
> Thanks again for all your advices and your patience.
No problem. I am glad you got it fixed.
Ace
|
|
|