проблема с AD windows 2003
Модератор: Модераторы
Сообщений: 5
• Страница 1 из 1
Vincent » 18 авг 2005, 13:45
Всем привет.
Имеется 2 сервера windows 2003. На одном стоит ISA, почта, DNS. На втором AD, DNS. Первый не является контроллером домена. dcdiag выдает следующее:
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site\SERVERNAME
Starting test: Connectivity
The host 47bba151-9492-484c-b314-8239f723eea3._msdcs.domen.local could n
ot be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(47bba151-9492-484c-b314-8239f723eea3._msdcs.domen.local) couldn't be
resolved, the server name (SERVERNAME.domen.local) resolved to the IP
address (192.168.100.253) and was pingable. Check that the IP address
is registered correctly with the DNS server.
......................... SERVERNAME failed test Connectivity
Doing primary tests
Testing server: Default-First-Site\SERVERNAME
Skipping all tests, because server SERVERNAME is
not responding to directory service requests
Running partition tests on : TAPI3Directory
Starting test: CrossRefValidation
......................... TAPI3Directory passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... TAPI3Directory passed test CheckSDRefDom
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : domen
Starting test: CrossRefValidation
......................... domen passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... domen passed test CheckSDRefDom
Running enterprise tests on : domen.local
Starting test: Intersite
......................... domen.local passed test Intersite
Starting test: FsmoCheck
Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 135
5
A Good Time Server could not be located.
......................... domen.local failed test FsmoCheck
А ЭТО netdiag:
.....................................
Computer Name: SERVERNAME
DNS Host Name: SERVERNAME.domen.local
System info : Windows 2000 Server (Build 3790)
Processor : x86 Family 15 Model 2 Stepping 5, GenuineIntel
List of installed hotfixes :
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : LAN internal
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : SERVERNAME
IP Address . . . . . . . . : 192.168.100.253
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.100.254
Dns Servers. . . . . . . . : 192.168.100.253
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
r Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Skipped
There are no WINS servers configured for this interface.
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{EE39BFF0-0C90-4278-B254-BA335B0295EE}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Servi
ce', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] The DNS entries for this DC are not registered correctly on DNS se
rver '192.168.100.253'. Please wait for 30 minutes for DNS server replication.
[FATAL] No DNS servers have the DNS records for this DC registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{EE39BFF0-0C90-4278-B254-BA335B0295EE}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{EE39BFF0-0C90-4278-B254-BA335B0295EE}
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
Windows IP Configuration
Host Name . . . . . . . . . . . . : SERVERNAME
Primary Dns Suffix . . . . . . . : domen.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domen.local
Ethernet adapter LAN internal:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® PRO/1000 MT Network Connection
Physical Address. . . . . . . . . : 00-07-E9-3F-86-37
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.100.253
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.100.254
DNS Servers . . . . . . . . . . . : 192.168.100.253
У пользователей в домене возникают такие ошибки:
1.Не удалось получить имя контроллера домена в этой сети. (Сделана попытка выполнить операцию на сокете для недоступного хоста. ). Обработка групповой политики прекращена.
2.Ошибка DCOM "Класс не зарегистрирован " с компьютера COMP1 при попытке активации сервера:
{5A5AA0AA-1DEB-4683-96B0-B43301E83971}
3. Не удалось установить связь DCOM с компьютером COMP2 через один из настроенных протоколов.
Выложил всё как есть. Что написано я понимаю, но не знаю, где это исправлять и вообще как подойти к этому.
Имеется 2 сервера windows 2003. На одном стоит ISA, почта, DNS. На втором AD, DNS. Первый не является контроллером домена. dcdiag выдает следующее:
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site\SERVERNAME
Starting test: Connectivity
The host 47bba151-9492-484c-b314-8239f723eea3._msdcs.domen.local could n
ot be resolved to an
IP address. Check the DNS server, DHCP, server name, etc
Although the Guid DNS name
(47bba151-9492-484c-b314-8239f723eea3._msdcs.domen.local) couldn't be
resolved, the server name (SERVERNAME.domen.local) resolved to the IP
address (192.168.100.253) and was pingable. Check that the IP address
is registered correctly with the DNS server.
......................... SERVERNAME failed test Connectivity
Doing primary tests
Testing server: Default-First-Site\SERVERNAME
Skipping all tests, because server SERVERNAME is
not responding to directory service requests
Running partition tests on : TAPI3Directory
Starting test: CrossRefValidation
......................... TAPI3Directory passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... TAPI3Directory passed test CheckSDRefDom
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : domen
Starting test: CrossRefValidation
......................... domen passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... domen passed test CheckSDRefDom
Running enterprise tests on : domen.local
Starting test: Intersite
......................... domen.local passed test Intersite
Starting test: FsmoCheck
Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 135
5
A Good Time Server could not be located.
......................... domen.local failed test FsmoCheck
А ЭТО netdiag:
.....................................
Computer Name: SERVERNAME
DNS Host Name: SERVERNAME.domen.local
System info : Windows 2000 Server (Build 3790)
Processor : x86 Family 15 Model 2 Stepping 5, GenuineIntel
List of installed hotfixes :
Q147222
Netcard queries test . . . . . . . : Passed
Per interface results:
Adapter : LAN internal
Netcard queries test . . . : Passed
Host Name. . . . . . . . . : SERVERNAME
IP Address . . . . . . . . : 192.168.100.253
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.100.254
Dns Servers. . . . . . . . : 192.168.100.253
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenge
r Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Skipped
There are no WINS servers configured for this interface.
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{EE39BFF0-0C90-4278-B254-BA335B0295EE}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Servi
ce', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Failed
[WARNING] The DNS entries for this DC are not registered correctly on DNS se
rver '192.168.100.253'. Please wait for 30 minutes for DNS server replication.
[FATAL] No DNS servers have the DNS records for this DC registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{EE39BFF0-0C90-4278-B254-BA335B0295EE}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{EE39BFF0-0C90-4278-B254-BA335B0295EE}
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
Windows IP Configuration
Host Name . . . . . . . . . . . . : SERVERNAME
Primary Dns Suffix . . . . . . . : domen.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domen.local
Ethernet adapter LAN internal:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® PRO/1000 MT Network Connection
Physical Address. . . . . . . . . : 00-07-E9-3F-86-37
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.100.253
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.100.254
DNS Servers . . . . . . . . . . . : 192.168.100.253
У пользователей в домене возникают такие ошибки:
1.Не удалось получить имя контроллера домена в этой сети. (Сделана попытка выполнить операцию на сокете для недоступного хоста. ). Обработка групповой политики прекращена.
2.Ошибка DCOM "Класс не зарегистрирован " с компьютера COMP1 при попытке активации сервера:
{5A5AA0AA-1DEB-4683-96B0-B43301E83971}
3. Не удалось установить связь DCOM с компьютером COMP2 через один из настроенных протоколов.
Выложил всё как есть. Что написано я понимаю, но не знаю, где это исправлять и вообще как подойти к этому.
Harry33 » 18 авг 2005, 14:51
Убери DNS сервер с ISA.
Настрой на DNS контроллера форвард наружу.
У пользователей в качестве ДНС установи только тот что на контроллере.
Настрой на DNS контроллера форвард наружу.
У пользователей в качестве ДНС установи только тот что на контроллере.
Знания, которые нельзя применить - бесполезны
Harry33 » 19 авг 2005, 14:13
azh
| Цитата |
| На сервере с ISA в DNSе смени тип зон на active directory-integrated
[/quote] Это как? Рекомендуемый тиб зоны возможен только при условии размещения DNS сервера и контроллера домена на одной машине. Второй вопрос зачем? К чему бы это привело? Знания, которые нельзя применить - бесполезны
Сообщений: 5
• Страница 1 из 1
Вернуться в Сетевые операционные системы Кто сейчас на конференцииСейчас этот форум просматривают: нет зарегистрированных пользователей и гости: 10 |