From: zealousworks on
I have an native Windows 2000 Active Directory domain with a number of
remote sites, and I am trying to diagnose some Netlogon error messages
appearing in the event log of the remote domain controllers:

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5719
Date: 03/10/2005
Time: 11:08:33
User: N/A
Computer: SITE02AD01
Description:
No Windows NT or Windows 2000 Domain Controller is available for domain
WALKERS. The following error occurred:
There are currently no logon servers available to service the logon
request.
Data:
0000: 5e 00 00 c0 ^..À

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 3096
Date: 03/10/2005
Time: 15:55:20
User: N/A
Computer: SITE02AD01
Description:
The Windows NT domain controller for this domain could not be located.

If I run 'dcdiag /v' on the domain controller, the following is listed
for the FsmoCheck

Starting test: FsmoCheck
GC Name: \\site02dc01.walkers.co.uk
Locator Flags: 0xe00001fc
Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1355
A Primary Domain Controller could not be located.
The server holding the PDC role is down.
Time Server Name: \\site02dc01.walkers.co.uk
Locator Flags: 0xe00001fc
Preferred Time Server Name: \\site02dc01.walkers.co.uk
Locator Flags: 0xe00001fc
KDC Name: \\site02dc01.walkers.co.uk
Locator Flags: 0xe00001fc
......................... domain.co.uk failed test FsmoCheck

But if I run 'netdom query fsmo', the following is reported:

Schema owner site01ad01.walkers.co.uk
Domain role owner site01ad01.walkers.co.uk
PDC role site01ad02.walkers.co.uk
RID pool manager site01ad02.walkers.co.uk
Infrastructure owner site01ad02.walkers.co.uk
The command completed successfully.

Any suggestions appreciated!

Regards,

Andrew

From: Paul Bergson on
Has the sysvol share come online and/or is the netlogon service running?
Check your event viewer.

The second test is just telling you it knows the name of the roles holder,
not that it can be contacted.

Also try running the full dcdiag test



Try running netdiag, repadmin and dcdiag. Look for fail, error and warning
errors.


Copy the following to a cmd file and run look for error, fail and warn
within the reports. Post any errors you can't figure out. make sure you
modify DC_Name to the name of a dc in your domain.

@echo off

c:
cd \
cd "program files\support tools"

del c:\dcdiag.log
dcdiag /e /c /v /s:DC_Name /f:c:\dcdiag.log
start c:\dcdiag.log

netdiag.exe /v > c:\netdiag.log
start c:\netdiag.log

repadmin.exe /showrepl dc* /verbose /all /intersite > c:\repl.txt
start c:\repl.txt


See for more details

http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/TechRef/1d4ce93c-54f2-4069-a708-251509c38837.mspx

--


Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA

This posting is provided "AS IS" with no warranties, and confers no rights.


"zealousworks" <zealousworks(a)gmail.com> wrote in message
news:1128353512.353616.267110(a)g49g2000cwa.googlegroups.com...
I have an native Windows 2000 Active Directory domain with a number of
remote sites, and I am trying to diagnose some Netlogon error messages
appearing in the event log of the remote domain controllers:

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5719
Date: 03/10/2005
Time: 11:08:33
User: N/A
Computer: SITE02AD01
Description:
No Windows NT or Windows 2000 Domain Controller is available for domain
WALKERS. The following error occurred:
There are currently no logon servers available to service the logon
request.
Data:
0000: 5e 00 00 c0 ^..?

Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 3096
Date: 03/10/2005
Time: 15:55:20
User: N/A
Computer: SITE02AD01
Description:
The Windows NT domain controller for this domain could not be located.

If I run 'dcdiag /v' on the domain controller, the following is listed
for the FsmoCheck

Starting test: FsmoCheck
GC Name: \\site02dc01.walkers.co.uk
Locator Flags: 0xe00001fc
Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1355
A Primary Domain Controller could not be located.
The server holding the PDC role is down.
Time Server Name: \\site02dc01.walkers.co.uk
Locator Flags: 0xe00001fc
Preferred Time Server Name: \\site02dc01.walkers.co.uk
Locator Flags: 0xe00001fc
KDC Name: \\site02dc01.walkers.co.uk
Locator Flags: 0xe00001fc
......................... domain.co.uk failed test FsmoCheck

But if I run 'netdom query fsmo', the following is reported:

Schema owner site01ad01.walkers.co.uk
Domain role owner site01ad01.walkers.co.uk
PDC role site01ad02.walkers.co.uk
RID pool manager site01ad02.walkers.co.uk
Infrastructure owner site01ad02.walkers.co.uk
The command completed successfully.

Any suggestions appreciated!

Regards,

Andrew


From: zealousworks on
After lots of investigation, the problem was down to the PDC's network
team being set to load-balanced, rather than fault tolerant.

Thanks for your reply, as your suggestion did uncover a few other minor
mis-configurations.

From: Cary Shultz [A.D. MVP] on
I will jump in for a second.

I always like to install the Support Tools ( from the Service Pack CD-Media
vs. the WIN2000 Server CD-Media ) as there are a lot of tools in there (such
as netdom and dcdiag ) that are very useful. There are also a lot of other
tools out there that useful, such as dnslint, frsdiag,sonar, etc.

--
Cary W. Shultz
Roanoke, VA 24012

WIN2000 Active Directory MVP
http://www.activedirectory-win2000.com
(soon to be updated!!!)
http://www.grouppolicy-win2000.com
(soon to be updated!!!)



"zealousworks" <zealousworks(a)gmail.com> wrote in message
news:1128505567.183329.174820(a)g14g2000cwa.googlegroups.com...
> After lots of investigation, the problem was down to the PDC's network
> team being set to load-balanced, rather than fault tolerant.
>
> Thanks for your reply, as your suggestion did uncover a few other minor
> mis-configurations.
>