Hi,
I have one domain controller on 2008 R2 and it holds all the FSMO roles. I am having a few issues and I am struggling to resolve the issue.
So here it goes, below is a list of problems:
1. Cannot open ADUS, Sites & Services, ADSI Edit or Domains and Trust because of error: Naming Information cannot be located. However I can open AD Admin Centre to manage users.
2. Netdom query fsmo reports: specified domain either does not exist.
3. DcDiag reports: ALL GCs are down and server holding PDC is down.
Things I have checked so far:
1. Check DNS to ensure all SRV records are in place for the GC and PDC under msdcs container.
2. NTDS util to check the FSMO roles returns the correct server for each role (itself).
3. IP config has DNS server setup correctly. i.e. Primary DNS is the server itself and Secondary points elsewhere.
4. IPv6 is disabled in the Network Adapter and in the registry.
5. Nslookup of _ldap._tcp.dc._msdcs.domainname returns the correct SRV record.
6. Restart AD Service, DNS service, netlogon service and problem still exists.
7. Windows firewall is turned off so pretty sure its not causing the issue.
8. Anti-virus installed is Forefront Endpoint Protection, doubt this is causing any interference.
Things I haven't done:
1. Delete the _msdcs zone and restart DNS server service.
2. I have read in an article somewhere that a tdi filter driver on 2008 R2 could result in networking issues? How do I check if TDI filter driver is installed or its causing the problem?
The funny thing is on random occasions you can open ADUS and netdom query fsmo reports all the FSMO roles but most of the time there is this problem. I am sort of stuck right now on where to go next with this issue. Any help will be appreciated.
Thanks