question

RudolfAmarlapudi-2729 avatar image
0 Votes"
RudolfAmarlapudi-2729 asked DSPatrick answered

The System cannot contact a domain controller to service the authentication reqeust. Please try again later.

Hello,

Environment: Windows 2012 Standard Server | Windows 10 clients.

Recently, customer's ISP installed a modem/router on the network that was running DHCP. This caused their equipment to begin dishing out IP addresses. I eventually found this; disabled DHCP Service on the router, and re-enabled DHCP on the Domain Controller/DHCP/DNS server. Verified that client workstations were now correctly obtaining IP from the server.

We found however, that multiple client workstations are unable to correctly authenticate to the server. They first receive this message:
![126376-image.png][1]
[1]: /answers/storage/attachments/126376-image.png

During the process of troubleshooting, I found that the time on the workstation differed from that on the server by 2 minutes. Matching it addressed the issue on a few workstations, but issue remains on a few.

I see that a possible resolution is to remove and rejoin to the domain.

I've also flushed DNS from the server. DNS server Service restarted. Event Logs are clean.

Any other suggestions would be welcome.

Thanks in advance.

Regards,
Rudy

windows-server
image.png (45.2 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Please run;

Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log
repadmin /showrepl >C:\repl.txt
ipconfig /all > C:\dc1.txt
ipconfig /all > C:\dc2.txt
ipconfig /all > C:\problemworkstation.txt

then put unzipped text files up on OneDrive and share a link.



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

LimitlessTechnology-2700 avatar image
0 Votes"
LimitlessTechnology-2700 answered

Hello RudolfAmarlapudi,

In this case, if the ammount of remaining affected machines if not very big, the fastest solution would be to re-join them in the domain since everything else seems to work fine now. There might be a number of causes why that machines remain not able to authenticate, but I suspect something related with AD token expiration during the time that were not able to authenticate.

Best regards,
Luis P

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Just checking if there's any progress or updates?

--please don't forget to upvote and Accept as answer if the reply is helpful--



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.