question

TonyHodge-2871 avatar image
0 Votes"
TonyHodge-2871 asked GaryReynolds commented

Missing SRV Records

I'm trying to replicate a Server 2016 domain controller. It appears to complete correctly, everything looks good in AD UC and AD SS with no errors from the DC promotion in Server Manager and I can authenticate to my old domain controllers to log into my domain.

However, all the SRV records for the new domain controller are missing in DNS (kerberos, ldap, gc) and I cannot use the new DC to join new clients to the domain. I get an error that only the old comain controllers were identified by the query and that doesn't include the new DC which I am using as the target DNS to attach to the domain.

I need to be able to do this because the goal is to rebuild our system and decommission the old one including the old DCs.

I've tried running the registerdns command and restarted the netlogon service and the server itself several times. No change.

This is migrating from one virtual zone to another and they use internal and external IP addresses so something there might be part of the problem.

windows-server-2016windows-dhcp-dns
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

TonyHodge-2871 avatar image
0 Votes"
TonyHodge-2871 answered GaryReynolds commented

I was able to resolve this by demoting the domain controller, ensuring the "reister this connection's addresses in DNS" checkbox was checked, then re-promoting the domain controller.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi Tony,

You didn't need to demote the DC, you could have enabled the register DNS option and then restarted the netlogon service or reboot the server for the SRV records to be recreated.

Gary.

0 Votes 0 ·
LimitlessTechnology-2700 avatar image
0 Votes"
LimitlessTechnology-2700 answered LimitlessTechnology-2700 commented

Hello Tony H,

You can read a whole deep dive into this issue, that definitely can help you with the actions to resolve it:

https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/the-case-of-the-missing-srv-records/ba-p/255650

Hope this resolves your question and your issue!
Best regards,

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

I actually came across this article when troubleshooting the issue on my own. Unfortunately we have a several day aging interval set so this doesn't appear to address our issue.

0 Votes 0 ·

Thanks for checking and coming back,

I have made a repro in my sandbox and I would suggest then to directly fix the records,

You can Import SRV records from a healthy DC stored in %SystemRoot%\Config\NetLogon.dns file.
Stop the DNS Service on the failing DC, rename the Netlogon.dns to Netlogon.dns.OLD and copy the file from the healthy DC
Start DNS Service
Restart NetLogon Service on the domain controller
Run> DCDiag /Fix
Run> NetDiag /Fix

Please let us know if this fixes the issue, or if any error appears during the operation.

Best regards,

0 Votes 0 ·
DSPatrick avatar image
0 Votes"
DSPatrick answered DSPatrick commented

Please run;

Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log
repadmin /showrepl >C:\repl.txt
ipconfig /all > C:\dc1.txt
ipconfig /all > C:\dc2.txt

then put unzipped text files up on OneDrive and share a link.



· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Unfortunately my system is on a closed internal network. I cannot move files off of it or copy/paste large amounts of text.

0 Votes 0 ·

cannot move files off of it or copy/paste large amounts of text.

These files are not what I would consider "large" another option is to start a case here with product support.
https://support.serviceshub.microsoft.com/supportforbusiness

--please don't forget to upvote and Accept as answer if the reply is helpful--





0 Votes 0 ·