Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Naming information cannot be located?

430 views
Skip to first unread message

Rob Billington

unread,
Apr 26, 2003, 6:01:16 PM4/26/03
to
I had a problem with client licenses not going onto the
sbs 2000, this issue was resolved by putting the version
number 5.0 in the relevant registry entry. But after doing
this, it may not be related? I cannot access the active
directoy etc. A pop up screen tells me "Naming information
cannot be located because no authority could be contacted
for authentication." everytime I try to access it. I'm
desperate to try & resolve this, can anybody help?

Les Connor [SBS MVP]

unread,
Apr 26, 2003, 6:39:55 PM4/26/03
to
Hi Rob,

DNS.

This is almost 100% DNS problem. Try flushing DNS cache (ipconfig
/flushdns). Check, that you have reverse lookup zone setup. Doublecheck your
DNS settings on server (ipconfig /all).

Do you have the firewall client installed on the server? It shouldn't be.

DNS
296250 The Domain Name System Name Recommendations for Small Business Server

266324 Windows 2000 Host Cannot Join the Domain

282924 Event ID 5775 and Event ID 506 May Be Logged After You Run the
Internet

292822 Name Resolution and Connectivity Issues on Windows 2000 Domain
Controller with RRAS


How to Use the IP Address of Your Internal Network Adapter for DNS
http://support.microsoft.com/default.aspx?scid=fh;en-us;sbstopdns


--
Les Connor
------------------
[SBS MVP]

"Rob Billington" <r...@westek.ltd.uk> wrote in message
news:034d01c30c3f$5c059ad0$3301...@phx.gbl...

Merv Porter

unread,
Apr 26, 2003, 6:48:43 PM4/26/03
to
Hi Rob:

Is the Kerberos Key Distribution Center service turned off?

Disabled Kerberos Key Distribution Prevents Exchange Services from Starting
http://support.microsoft.com/?kbid=316710

--
Merv Porter [SBS MVP]
===================================

"Rob Billington" <r...@westek.ltd.uk> wrote in message
news:034d01c30c3f$5c059ad0$3301...@phx.gbl...

Rob Billington

unread,
Apr 26, 2003, 6:57:26 PM4/26/03
to

I have ran the dos command ipconfig /flushdns & it dosent
seem to have made a difference? anything associated with
the Active directory will not let me access it? The server
was working perfectly before I added a client access disk?
and i also took of a tapeware programme as it was hanging
on a service? runnig ipconfig /all tells me :

DHCP enabled NO - using router
ip address 192.168.0.2 - static on server
subnet 255.255.255.0
default gateway 192.168.0.1 - adsl router
dns servers 217.149.108.10 - 192.168.0.1

regards

rob

>.
>

Rob Billington

unread,
Apr 26, 2003, 7:01:14 PM4/26/03
to
The "Kerberos Key Distribution" is started automatic, the
task manager tells me that the idle process is at 99% as
well? I'm accessing the Server remotely to try and fix it
before ??Monday morning & it does seem slow?
>.
>

Susan Bradley, CPA aka Ebitz SBS Rocks [MVP]

unread,
Apr 26, 2003, 7:02:54 PM4/26/03
to
dns servers 217.149.108.10 -- that's pointing outward for your DNS.
Only put the inside NIC as your DNS, put the ISP's DNS in as fowarders
when you run the ICW

Rob Billington

unread,
Apr 26, 2003, 7:21:44 PM4/26/03
to
ok, I have changed the nic to the server i.p. for DNS, in
the event log it is comping up with an error: USERENV
eventid 1000 - "Windows cannot determine the user or
computer name, return value (1908)?

Rob..

>.
>

Susan Bradley, CPA aka Ebitz SBS Rocks [MVP]

unread,
Apr 26, 2003, 7:34:20 PM4/26/03
to Rob Billington
www.eventid.net [subscribe to that site....seriously!]

Pointing to Kerberos again.....

Source Userenv
Type Error
Description Windows cannot determine the user or computer name. Return
value (<return error code>).
Comments Adrian Grigorof
This event occurs in various conditions, the return code providing more
details about the problem. Use NET HELPMSG to obtain a description of
the code.

Value 14 - "Not enough storage is available to complete this operation."
- As per Microsoft: "Do one of the following, then retry the operation:
(1) reduce the number of running programs;
(2) remove unwanted files from the disk the paging file is on and
restart the system;
(3) check the paging file disk for an I/O error;
(4) install additional memory in your system."

Value 59 - "An unexpected network error occurred." - Typically,
connectivity problems (cable, hub, switch, etc.. layer 2 level)

Value 1722 - "The RPC Server is unavailable" - Usually occurs when DNS
servers are not configured properly. There is connectivity but not at
the service level. See the Q260371 link below for troubleshooting such
issues. One note here, usually it may appear that DNS is set properly
but one has to double-check all the aspects of DNS
registration/resolution as the problem may not be that obvious. See also
Q261007 - It says that this behavior can occur if the address for the
configured preferred DNS server on the client is invalid or unreachable.

From a newsgroup post: "Do the following to ensure that the SRV records
for the AD servers are in DNS properly: (from the DOS prompt)

nslookup
set type=srv
set type=srv
_ldap._tcp.dc._msdcs.YOURDOMAIN.COM
Server: dnsserver.yourdomain.com
Address: 192.168.100.2

you should see something like this:

_ldap._tcp.dc._msdcs.YOURDOMAIN.COM SRV service location:
priority = 0
weight = 100
port = 389
svr hostname = server1.YOURDOMAIN.COM
_ldap._tcp.dc._msdcs.YOURDOMAIN.COM SRV service location:
priority = 0
weight = 100
port = 389
svr hostname = server2.YOURDOMAIN.COM
server1.YOURDOMAIN.COM internet address = 1.1.1.2
server2.YOURDOMAIN.COM nternet address = 1.1.1.1

If you don't then you definately have a DNS problem.

I would also recommend running the dcdiag and netdiag utilities on
your domain controllers. If you find that the servers aren't in DNS,
then make sure dynamic updates are enabled on your DNS server and
restart the netlogon server on each of your DCs."

Value 1753 - "There are no more endpoints available from the endpoint
mapper." - no additional info.

Woodrow Wayne Collins (Last update 4/24/2003):
Value 1722 - "The RPC Server is unavailable" - Remove the machine from
the domain and then rejoin. See Q329708.

Make sure you set the authoritative time server correctly. If a machine
that you have set as the authoritative time server isn't available, then
time synchronization between DCs stops. Once the time difference between
DCs becomes greater than what Kerberos allows, authentication between
DCs fails, causing replication to fail along with it. Troubleshooting
such failures can be difficult because W32Time doesn’t generate any
error messages in the system log when specific hosts become unavailable.
Instead, look for an error message such as "the RPC server is
unavailable." If you see this message and you haven’t configured time
synchronization with an outside time source, the likely cause is your
DNS configuration.

Donald R. Gray (Last update 4/24/2003):
Value (-2146893022). It happens when you log into a child domain
controller with your parent domain account.

Dmitriy Zavgorodniy
Value 1908 - "Could not find the domain controller for this domain." -
Usually occurs when Kerberos Key Distribution Service is disabled. See
additional info Q316710.

Worg
Value 5 - "Access is denied.". See Q262958 (occurs because the computer
to which the user is logging on does not have the "Access this Computer
from the Network" permission at the validating domain controller.)

Greg Trzaska
Value 1359 - "An internal error occurred." - In Windows 2000 using the
same name for a user and a machine is a no-no I've been told. After we
upgraded some workstations from NT using the same value for user name
and computer name, this message would be generated. I noticed Windows
2000 added a "1" at the end of the machine name. The log on the
workstation no longer generated the message. Solution: Do not use the
same name for a machine name and user name.

Chris Scott
Value 1722 - "The RPC Server is unavailable". In addition to checking
the DNS configuration, make sure that if you have multiple adapaters,
that the LAN adapater for your local segment that resolves your LAN host
names is listed first in the adapter binding order in the Advanced
settings of Network and Dial-up Connections. Otherwise, the DNS resolver
will use the DNS servers for the adapter listed first which may not
resolve your LAN host names correctly. This will also cause problems
with Active Directory replication.

Anonymous
Value: -2146893006. This indicates that the user is locked out of
account.

Albert Fadool
Value 1326 - This will occur if a Terminal Session is disconnected and
not logged off and susequently the users logon password is changed. You
will still have access to the "stale" session with the new password.
This commonly happens with Administrators, who leave the session open by
disconnecting so as to leave a program running. Since an Administrator
can log back onto the session with the new password it can be
overlooked. Terminate the Terminal Services session by logging out and
the problem will disappear.

Abel
Value: 59 - "An unexpected network error occurred." - This may happen if
you have a firewall between your domain controller (or installed on the
DC itself) and a workstation that is trying to connect to it. I noticed
this while using Norton Internet Security 2002 on a domain controller
and after that the network became very slow and the eventviewer filled
with these events.

David T. Perry
See Q221833 on how to Enable User Environment Debug Logging in Retail
Builds of Windows.

Ed Nitch
In my case - Windows 2000 Pro Workstation - the user complained that all
Internet access and Internet email through MS Exchange was lost and IE
5.5 reported a DNS Error. The workstation's TCP/IP settings were
correctly obtained via DHCP. Release/renew and manually setting DNS did
not help. I removed the TCP/IP stack, reboot, login locally, reinstall
TCP/IP stack, reboot, login to the network - problem gone.

Anonymous
Value 1326 - "Logon failure: unknown user name or bad password." - I had
this error filling up my event viewers on two servers for days. I had
scheduled backups under my user name and password. After I changed my
password I started getting the errors. I fixed it by rescheduling the
jobs under my user name and new password; problem resolved.

This error may occur when an user account is left logged onto a PC, and
is disabled by an administrator in the background. Once the Disabled ID
is logged off, the error goes away.

I had this problem on a Windows 2000 DC. It turned out it wass caused by
ZoneAlarm firewall.

Johnnie Letarte
Value 1747 - "The authentication service is unknown." - Occurs when the
server is set up as a domain controller but not synchronizing with the
Main DC

Gary Pillans
Value 1723 - "The RPC server is too busy to complete this operation." -
No additional info available.

Paul Stonehewer
Value 1317 - "The specified user does not exist." - This error may occur
if you run DCPROMO ona Windows 2000 server but the NTFS permissions are
not set to Full control for local Administrators group.

Winoto J
Value: 1722 - "The RPC Server is unavailable". The server was not able
to update the GPO. When I was pinging from that server with FQDN I would
get the "Unknown Host" error message but I was able to ping with just
the host name. ipconfig /flushdns and /registerdns solved my problem.

Amesh Mansukhani
Value 1398 - "There is a time difference between the client and the
server" - Use the following command to sync the time "net time \\<domain
controller> /set /y"

Oliver Weber
Value 14 = "Not enough storage is available to complete this operation."
- If activated, policy debugging in winnt\debug shows "MyGetUserName
failed with 14". This can be caused by too many group memberships
assigned to the user. See Q263693: Group Policy May Not Be Applied to
Users Belonging to Many Groups. Without the registry change described in
the KB, the maximum number is about 75.
Links Q221833 , Q260371 , Q261007 , Q262958 , Q263693 , Q316710 ,
Q329708

Susan Bradley, CPA aka Ebitz SBS Rocks [MVP]

unread,
Apr 26, 2003, 7:36:48 PM4/26/03
to Rob Billington
Your workstation that you are remoting in from....is it within +- 2
minutes of the time of the server?

Ray Fong [MSFT]

unread,
Apr 26, 2003, 8:58:21 PM4/26/03
to
329642 Error Messages When You Open Active Directory Snap-ins and Exchange
http://support.microsoft.com/?id=329642

Check the following keys to make sure the Kerberos realm matches the
NetBIOS domain name.

HKEY_LOCAL_MACHINE\SECURITY\Policy\PolPrDmN
HKEY_LOCAL_MACHINE\SECURITY\Policy\PolAcDmN

If they are not set to the NetBIOS domain name, follow the article to
"COPY" (Can't manually edit the key) the values from PolPrDmN to PolAcDmN.
As always, please make sure you have the System State backup before you
modify these regsitry keys. Any wrong changes or manually type in the
netbios name will result in server no boot.

Ray Fong
Microsoft SBS Product Support

Buzz Lightyear

unread,
Apr 27, 2003, 12:54:24 AM4/27/03
to
firewall client installed on the server? if so, disable and reboot.


"Ray Fong [MSFT]" <ray...@online.microsoft.com> wrote in message
news:2f1cggFD...@cpmsftngxa06.phx.gbl...

Rob Billington

unread,
Apr 28, 2003, 6:34:11 AM4/28/03
to
Hi Ray,

HKEY_LOCAL_MACHINE\SECURITY - there is no other directory
after this? no policy/xxx?

Regards

Rob

>.
>

Ray Fong [MSFT]

unread,
Apr 28, 2003, 9:09:51 AM4/28/03
to
You need to use regedt32 to add administrator full control to the Security
key. The same article (329642) will tell you how to do that.

Ray Fong
Microsoft SBS Product Support

>

0 new messages