question

Josiahbrainard-8986 avatar image
0 Votes"
Josiahbrainard-8986 asked DaisyZhou-MSFT commented

Cant add new Domain Controller

Hello all and thanks in advance for any help. (sorry if i dont format something properly, first time posting here)

I am trying to migrate a clients domain from a server running 2008R2 to and server running 2019.
their domain is ad.clientdomain.com according to the 2008 DC


the first issue happens when i try to add the new 2019 server to the domain. i go to add the domain and type in ad.clientdomain.com and i get the below error.


 Note: This information is intended for a network administrator.  If you are not your network's administrator, notify the administrator that you received this information, which has been recorded in the file C:\Windows\debug\dcdiag.txt.
 The following error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain "ad.clientdomain.com":
 The error was: "DNS name does not exist."
 (error code 0x0000232B RCODE_NAME_ERROR)
 The query was for the SRV record for _ldap._tcp.dc._msdcs.ad.clientdomain.com
 Common causes of this error include the following:
 - The DNS SRV records required to locate a AD DC for the domain are not registered in DNS. These records are registered with a DNS server automatically when a AD DC is added to a domain. They are updated by the AD DC at set intervals. This computer is configured to use DNS servers with the following IP addresses:
 192.168.254.2
 - One or more of the following zones do not include delegation to its child zone:
 ad.clientdomain.com
 clientdomain.com
 com
 . (the root zone)

i can get around this by changing the domain name that i am trying to join from ad.clientdomain.com to clientdomain. but, after it joins i can this error

 changing the promary domain DNS name of this computer to "" failed. the name will remain "ad.clientdomain.com".
    
 the specified domain either does not exist or could not be contected.

after it reboots and i try to promote it to a DC it says it cannot contact to domain controller

I have the old DC set as the DNS server on the new server



let me know if more info is needed.
thanks again for any help!

-Josiah





windows-active-directorywindows-dhcp-dns
· 8
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello @Josiahbrainard-8986,
Would you please tell me how things are going on your side. If you have any questions or concerns about the information I provided, please don't hesitate to let us know.
Again thanks for your time and have a nice day!

Best Regards,
Daisy Zhou

0 Votes 0 ·

Hello @Josiahbrainard-8986,
I am just writing to see if this question has any update. If anything is unclear, please feel free to let us know.
Thanks for your time and have a nice day!

Best Regards,
Daisy Zhou

0 Votes 0 ·

@DaisyZhou-MSFT
this is still at the same just as broken as when i started. not sure what to try at this point. seems like the current DC is broken, but it also still works enough to let computers join the domain and login.

0 Votes 0 ·
DSPatrick avatar image DSPatrick Josiahbrainard-8986 ·

Did you follow my suggestion? What errors are present in the event logs since last boot?




0 Votes 0 ·

all firewall off-ed? anti-virus firewall as well?

0 Votes 0 ·

I know the windows firewall is off. Microsoft security essentials are running, should I turn that off too?

0 Votes 0 ·
Show more comments
Josiahbrainard-8986 avatar image
0 Votes"
Josiahbrainard-8986 answered

@DSPatrick
just looked through the logs and found some warnings and errors that might be helpful

77296-2021-03-12-08-32-28-window.png


77304-2021-03-12-08-38-43-window.png



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered DaisyZhou-MSFT commented

Kind of a catch 22 since it is the server 192.168.254.2 that is broken. Might need to restore a recent know good backup.

--please don't forget to Accept as answer if the reply is helpful--





· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

unfortunately, this client only has file backup.

0 Votes 0 ·

Hello @Josiahbrainard-8986,

I am sorry for the late reply.

Considering that your problem may be a bit complicated and cannot be solved by general methods, it may need to collect logs for further analysis and troubleshooting. I suggest you submit a service request to MS Professional tech support service so that a dedicated support professional can further assist you with this request.

The following web site for more detail of Professional Support Options and incident submission methods is for your reference:

https://support.microsoft.com/en-in/gp/contactus81?forceorigin=esmc&Audience=Commercial

https://support.microsoft.com/en-us/help/4051701/global-customer-service-phone-numbers


Thank you for your understanding and support.


Best Regards,
Daisy Zhou

0 Votes 0 ·