Hi,
I have a single Windows Server 2008 R2 DC at a company. The server was built/installed & configured a couple months before my time and recently I was asked to setup NTFS permissions on a few new share folders.
When I accessed the server to see what users/groups are configured I came into a problem whereby I cannot access Active Directory. I get the following error when trying to access ADUC:
"Naming information cannot be located because: The specified domain either does not exist or could not be contacted"
A couple months prior to this I once logged into this server to change a few passwords and ADUC was accessible. I've restarted the server to no avail. I note that when restarting it I get a SMART failure predicted on Hard Disk 3 error on boot.
There are 3 drives in the server, two of them identical Seagate 500gb's and another 1.5TB WD drive. Opening computer management I see that the two Seagate drives "were" mirrored and that one Seagate disk drive is online, the other is missing.
Therefore there's a Failed Redundancy message under both drives. When I try to reactivate the Disk that is missing, I get an error message saying "The plex is missing".
The Primary boot partition is located on the Western Digital (1.5Tb) drive which shows online. Could the failed disk drive be a cause for my issue of not being able to access ADUC or this is a separate issue?
I should mention that all users seem unaffected as they can still access the Server/Internet/share files and folders.
I've done an ipconfig /all and a dcdiag for interest sake. Please could I have some opinions :)
Windows IP Configuration
Host Name . . . . . . . . . . . . : sdc
Primary Dns Suffix . . . . . . . : spectrum.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : spectrum.local
Ethernet adapter Local Area Connection 3:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : TeamViewer VPN Adapter
Physical Address. . . . . . . . . : 00-FF-F2-B5-43-55
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
Physical Address. . . . . . . . . : 2C-41-38-88-11-F2
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5cda:8a0b:f03b:2154%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.8(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 237781304
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-B7-83-5F-2C-41-38-88-11-F2
DNS Servers . . . . . . . . . . . : ::1
127.0.0.1
192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{AEFCFEE6-0D80-49C5-AC33-E028D584FFCC}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter isatap.{F2B54355-9FA9-401A-B06C-21E51D5DDFF9}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Teredo Tunneling Pseudo-Interface:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:30ca:e5e:3f57:fff7(Prefe
rred)
Link-local IPv6 Address . . . . . : fe80::30ca:e5e:3f57:fff7%15(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
-----------------------------------------------------------------------------------------------------------------------------------------
Microsoft Windows [Version 6.1.7600]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\administrator.SPECTRUM>dcdiag
Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
Home Server = sdc
* Identified AD Forest.
[PDC] LDAP bind failed with error 8341,
A directory service error has occurred..
Got error while checking if the DC is using FRS or DFSR. Error:
A directory service error has occurred.The VerifyReferences, FrsEvent and
DfsrEvent tests might fail because of this error.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SDC
Starting test: Connectivity
......................... SDC passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SDC
Starting test: Advertising
Fatal Error:DsGetDcName (SDC) call failed, error 1355
The Locator could not find the server.
......................... SDC failed test Advertising
Starting test: FrsEvent
There are warning or error events within the last 24 hours after the
SYSVOL has been shared. Failing SYSVOL replication problems may cause
Group Policy problems.
......................... SDC passed test FrsEvent
Starting test: DFSREvent
......................... SDC passed test DFSREvent
Starting test: SysVolCheck
......................... SDC passed test SysVolCheck
Starting test: KccEvent
......................... SDC passed test KccEvent
Starting test: KnowsOfRoleHolders
[PDC] DsBindWithSpnEx() failed with error 1818,
The remote procedure call was cancelled..
Warning: PDC is the Schema Owner, but is not responding to DS RPC
Bind.
Warning: PDC is the Schema Owner, but is not responding to LDAP Bind.
Warning: PDC is the Domain Owner, but is not responding to DS RPC
Bind.
Warning: PDC is the Domain Owner, but is not responding to LDAP Bind.
Warning: PDC is the PDC Owner, but is not responding to DS RPC Bind.
Warning: PDC is the PDC Owner, but is not responding to LDAP Bind.
Warning: PDC is the Rid Owner, but is not responding to DS RPC Bind.
Warning: PDC is the Rid Owner, but is not responding to LDAP Bind.
Warning: PDC is the Infrastructure Update Owner, but is not responding
to DS RPC Bind.
Warning: PDC is the Infrastructure Update Owner, but is not responding
to LDAP Bind.
......................... SDC failed test KnowsOfRoleHolders
Starting test: MachineAccount
......................... SDC passed test MachineAccount
Starting test: NCSecDesc
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=ForestDnsZones,DC=spectrum,DC=local
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
Replicating Directory Changes In Filtered Set
access rights for the naming context:
DC=DomainDnsZones,DC=spectrum,DC=local
......................... SDC failed test NCSecDesc
Starting test: NetLogons
Unable to connect to the NETLOGON share! (\\SDC\netlogon)
[SDC] An net use or LsaPolicy operation failed with error 67,
The network name cannot be found..
......................... SDC failed test NetLogons
Starting test: ObjectsReplicated
......................... SDC passed test ObjectsReplicated
Starting test: Replications
[Replications Check,SDC] A recent replication attempt failed:
From PDC to SDC
Naming Context: DC=ForestDnsZones,DC=spectrum,DC=local
The replication generated an error (1256):
The remote system is not available. For information about network tr
oubleshooting, see Windows Help.
The failure occurred at 2013-04-13 10:53:56.
The last success occurred at 2012-01-29 18:55:44.
10547 failures have occurred since the last success.
[Replications Check,SDC] A recent replication attempt failed:
From PDC to SDC
Naming Context: DC=DomainDnsZones,DC=spectrum,DC=local
The replication generated an error (1256):
The remote system is not available. For information about network tr
oubleshooting, see Windows Help.
The failure occurred at 2013-04-13 10:53:56.
The last success occurred at 2012-01-29 18:55:44.
10547 failures have occurred since the last success.
[Replications Check,SDC] A recent replication attempt failed:
From PDC to SDC
Naming Context: CN=Schema,CN=Configuration,DC=spectrum,DC=local
The replication generated an error (-2146893022):
The target principal name is incorrect.
The failure occurred at 2013-04-13 10:53:56.
The last success occurred at 2012-01-29 18:55:44.
10538 failures have occurred since the last success.
[Replications Check,SDC] A recent replication attempt failed:
From PDC to SDC
Naming Context: CN=Configuration,DC=spectrum,DC=local
The replication generated an error (-2146893022):
The target principal name is incorrect.
The failure occurred at 2013-04-13 10:53:56.
The last success occurred at 2012-01-29 18:55:44.
10538 failures have occurred since the last success.
[Replications Check,SDC] A recent replication attempt failed:
From PDC to SDC
Naming Context: DC=spectrum,DC=local
The replication generated an error (-2146893022):
The target principal name is incorrect.
The failure occurred at 2013-04-13 10:53:56.
The last success occurred at 2012-01-29 18:55:44.
10538 failures have occurred since the last success.
......................... SDC failed test Replications
Starting test: RidManager
......................... SDC failed test RidManager
Starting test: Services
......................... SDC passed test Services
Starting test: SystemLog
An error event occurred. EventID: 0x40000004
Time Generated: 04/13/2013 10:45:23
Event String:
The Kerberos client received a KRB_AP_ERR_MODIFIED error from the se
rver sdc$. The target name used was SPECTRUM\PDC$. This indicates that the targe
t server failed to decrypt the ticket provided by the client. This can occur whe
n the target server principal name (SPN) is registered on an account other than
the account the target service is using. Please ensure that the target SPN is re
gistered on, and only registered on, the account used by the server. This error
can also happen when the target service is using a different password for the ta
rget service account than what the Kerberos Key Distribution Center (KDC) has fo
r the target service account. Please ensure that the service on the server and t
he KDC are both updated to use the current password. If the server name is not f
ully qualified, and the target domain (SPECTRUM.LOCAL) is different from the cli
ent domain (SPECTRUM.LOCAL), check if there are identically named server account
s in these two domains, or use the fully-qualified name to identify the server.
An error event occurred. EventID: 0x40000004
Time Generated: 04/13/2013 10:53:56
Event String:
The Kerberos client received a KRB_AP_ERR_MODIFIED error from the se
rver sdc$. The target name used was E3514235-4B06-11D1-AB04-00C04FC2DCD2/dc2acdf
6-0b79-4caf-8630-ed4cadb9219b/spectrum.local@spectrum.local. This indicates that
the target server failed to decrypt the ticket provided by the client. This can
occur when the target server principal name (SPN) is registered on an account o
ther than the account the target service is using. Please ensure that the target
SPN is registered on, and only registered on, the account used by the server. T
his error can also happen when the target service is using a different password
for the target service account than what the Kerberos Key Distribution Center (K
DC) has for the target service account. Please ensure that the service on the se
rver and the KDC are both updated to use the current password. If the server nam
e is not fully qualified, and the target domain (SPECTRUM.LOCAL) is different fr
om the client domain (SPECTRUM.LOCAL), check if there are identically named serv
er accounts in these two domains, or use the fully-qualified name to identify th
e server.
An error event occurred. EventID: 0xC004000B
Time Generated: 04/13/2013 11:00:25
Event String:
The driver detected a controller error on \Device\CdRom0.
An error event occurred. EventID: 0xC004000B
Time Generated: 04/13/2013 11:00:25
Event String:
The driver detected a controller error on \Device\CdRom0.
An error event occurred. EventID: 0xC004000B
Time Generated: 04/13/2013 11:00:25
Event String:
The driver detected a controller error on \Device\CdRom0.
An error event occurred. EventID: 0xC004000B
Time Generated: 04/13/2013 11:00:25
Event String:
The driver detected a controller error on \Device\CdRom0.
An error event occurred. EventID: 0xC004000B
Time Generated: 04/13/2013 11:00:25
Event String:
The driver detected a controller error on \Device\CdRom0.
An error event occurred. EventID: 0xC004000B
Time Generated: 04/13/2013 11:00:25
Event String:
The driver detected a controller error on \Device\CdRom0.
An error event occurred. EventID: 0xC004000B
Time Generated: 04/13/2013 11:00:25
Event String:
The driver detected a controller error on \Device\CdRom0.
An error event occurred. EventID: 0xC004000B
Time Generated: 04/13/2013 11:02:26
Event String:
The driver detected a controller error on \Device\CdRom0.
An error event occurred. EventID: 0x40000004
Time Generated: 04/13/2013 11:16:05
Event String:
The Kerberos client received a KRB_AP_ERR_MODIFIED error from the se
rver sdc$. The target name used was ldap/pdc.spectrum.local. This indicates that
the target server failed to decrypt the ticket provided by the client. This can
occur when the target server principal name (SPN) is registered on an account o
ther than the account the target service is using. Please ensure that the target
SPN is registered on, and only registered on, the account used by the server. T
his error can also happen when the target service is using a different password
for the target service account than what the Kerberos Key Distribution Center (K
DC) has for the target service account. Please ensure that the service on the se
rver and the KDC are both updated to use the current password. If the server nam
e is not fully qualified, and the target domain (SPECTRUM.LOCAL) is different fr
om the client domain (SPECTRUM.LOCAL), check if there are identically named serv
er accounts in these two domains, or use the fully-qualified name to identify th
e server.
An error event occurred. EventID: 0xC004000B
Time Generated: 04/13/2013 11:29:24
Event String:
The driver detected a controller error on \Device\CdRom0.
An error event occurred. EventID: 0xC00038D6
Time Generated: 04/13/2013 11:30:09
Event String:
The DFS Namespace service could not initialize cross forest trust in
formation on this domain controller, but it will periodically retry the operatio
n. The return code is in the record data.
......................... SDC failed test SystemLog
Starting test: VerifyReferences
......................... SDC passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : spectrum
Starting test: CheckSDRefDom
......................... spectrum passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... spectrum passed test CrossRefValidation
Running enterprise tests on : spectrum.local
Starting test: LocatorCheck
Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1355
A Global Catalog Server could not be located - All GC's are down.
Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1355
A Primary Domain Controller could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error
1355
A Good Time Server could not be located.
Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1355
A KDC could not be located - All the KDCs are down.
......................... spectrum.local failed test LocatorCheck
Starting test: Intersite
......................... spectrum.local passed test Intersite