活动目录中,DNS不能创建的问题.
曾睿智
我先说说我的网络的环境吧!
两台都是windows server 2003 sp2的服务器,已经打了最新的补丁。2000混合模式。
server1:AD主控(角色都在server1上)、dns服务器、moss2007。
server2:AD辅控、exchange
由于前几天被某软件,修改了两台server的时间。(这个是题外话)
而且造成了长时间不同步。但是昨天刚弄好,可以进行同步了。
今天使用ghost备份server1重新启动了下,发现DNS中的数据不见了。
重新启动server1也无效,重新启动server1中的dns server和net logon服务也无效。
server1的IP是192.168.2.20 DNS是指向自己的(192.168.2.20)
server2的IP是192.168.2.21
DNS是指向server1的(192.168.2.20)。两台都有相互信任关系。仔细检查过,域环境内没有计算机和server1\server2中同名。
下面我说说我在操作中所遇见的错误提示:
在“AD站点和服务”中手动进行同步,出现:在尝试联系域控制器server1\server2时发生下列错误:RPC服务器不可用。该状况可能是是
一个DNS查找问题引起的。(我也知道是DNS问题)
手动创建DNS出现报错提示:
因为所需应用程序目录分区不存在,无法复制此区域到(null)Active
Directory域中的所有DNS服务器。只有企业管理员有合适的权限创建应用程序目录分区。(可是我已经是有企业管理员组的,当前登陆的用户是administrator)
在此分区创建之后,要在域容器中存储此区域。请关闭此消息消息,然后单击“复制到 Active
Directory域中所有域控制器”选项。(不能创建DNS,所以重新启动server1中的dns server和net logon服务也无效。)
在运行里输入\\server1后出现错误提示:\\server1不可访问。您可能没有权限使用网络资源。请与这台服务器的管理员联系以查明您是否有访问权限。登陆失败:该目标帐户名称不正确。但是可以输入\\192.168.2.20可以进入访问共享。(我感觉是Kerberos验证的问题)
我在baidi、google中搜索了,可是没有什么相关的资料。
下面帖出server1的错误日志:
应用程序日志:
来源:userenv 事件:1053 描述:Windows 不能确定用户或计算机名称(拒绝访问。 )。组策略处理中止。
来源:userenv 事件:1058 描述:Windows 无法访问 GPO
CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=office,DC=net
的文件 gpt.ini。此文件必须在
<\\office.net\sysvol\office.net\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}\gpt.ini>。(登录失败: 该目标帐户名称不正确。 )。组策略处理中止。
目录服务日志:
来源:NTDS General 事件:1126 描述:Active Directory 无法建立与全局编录的连接。
额外数据
错误值:
8430 目录服务遇到一个内部故障。
内部 ID:
3200c89
用户操作:
请确定在林中有可用的全局编录,并且可以从此域控制器访问。 您可以使用 nltest 实用工具来诊断此问题。
DNS服务器日志:
来源:DNS 事件:4000 描述:DNS 服务器无法打开 Active Directory。这台 DNS 服务器配置成为这个区域获得并
使用目录中信息并且没有它便不能加载区域。请检查 Active Directory 操作正常并 重新加载区域。记录数据包含错误状态。 事件数据是错误代码。
DNS的警告日志
来源DNS 事件:4013 描述:DNS 服务器未能打开 Active Directory。 这个 DNS 服务器被配置来使用目录服务信息。
如果没有目录访问权,则不能操作。 DNS 服务器会等目录启动。如果已启动 DNS 服务器, 但还没有记录适当的事件;那么,DNS 服务器还在等待目录 启动。
文件复制服务的警告日志
来源:NTFRS 事件:13508 描述:文件复制服务有困难启用复制: 从 SERVER2 到 SERVER1 为
c:\windows\sysvol\domain 用 DNS 名称 server2.office.net。FRS 将继续重试。
以下是您看到此警告的一些原因。
[1] FRS 不能从此计算机正确解析此 DNS 名称 server2.office.net。
[2] FRS 不在 server2.office.net 上运行。
[3] Active Directory 里此副件的拓扑信息还没有复制到所有域控制器。
这个事件纪录消息将每个连接出现一次。问题解决后,您将看到另一个事件日志消息, 它表明连接被建立。
系统警告日志:
来源:LSASRV 事件:40960 描述:安全系统检测到一个对服务器 cifs/SERVER1 的 身份验证错误。来自身份验证协议 Kerberos
的失败代码为 "登录无效。可能原因为无效的用户名或验证信息。
(0xc000006d)"。
来源:netlogon 事件:5774 描述:在下列 DNS 服务器上动态注册 DNS 记录
'_kerberos._tcp.Default-First-Site-Name._sites.office.net. 600 IN SRV 0 100
88 server1.office.net.' 失败:
DNS 服务器 IP 地址: 192.168.2.210
返回的响应码 (RCODE): 5
返回的状态码: 9017
对于要定位此域控制器的计算机和用户,这个记录必须 在 DNS 中注册。
用户操作
确定造成这一错误的原因,解决问题并由域控制器启动 DNS 记录的注册。要确定造成这一错误的原因,运行 DCDiag.exe。 您可以在 Windows
Server 2003 安装 CD 上的 Support\Tools\support.cab 中找到此程序。要了解有关 DCDiag.exe
的详细信息,请参阅“帮助和支持中心”。要 通过此域控制器启动 DNS 记录的注册,请在域控制器上的 命令提示符运行 'nltest.exe
/dsregdns'或重新启动 Net Logon 服务。Nltest.exe 可以在 Microsoft Windows Server
Resource Kit CD 中找到。
或者,您可以手动添加 记录到 DNS,但不建议这么做。
其他数据
错误值: DNS 不正确密钥。
我所做过的操作,重新安装DNS服务器,可是还是不能建立DNS查询。报一样的错提示。
运行kerbtray.exe,右键点击右下脚的绿色图标,选择Purge Tickets,然后,重启系统。重新启动Kerberos Key
Distribution Center服务。访问\\server1还是报一样的错误提示。
手动重命名C:\WINDOWS\system32\config中的netlogon.dns和netlogon.dnb,再重新启动dns
server和net logon服务也无效。
我现在想解决这个问题。至少也要先解决dns问题。请达人帮助我解决DNS错误。再解决活动其他的同步问题。
不然发netdiag的日志也没多大的意义。
v-to...@prcvap.microsoft.com
我发现您原先发过另外一个内容非常相近的帖子,为了保持新闻组的连贯性,我们会在您的那个帖子里对您的问题进行回复,请您谅解!谢谢。
Tom Zhang 张一平
在线技术支持工程师
微软全球技术支持中心
---------------------------------------------------------------------------------------
我们的服务时间:周一至周五9:00-18:00(节假日除外)。我们将在两个工作日(48小时)内提供初始回应,并和您一起研究并解决问题。更多微软新闻组技术支持信息,请访问:http://support.microsoft.com/gp/newsgroupsupport/zh-cn.
回帖时,请在您的新闻组阅读器中使用“回复组(Reply to Group)”,这将帮助其他用户从您的提问中获益
---------------------------------------------------------------------------------------
本贴子以”现状”提供且没有任何担保,同时也没有授予任何权利。
曾睿智
v-to...@prcvap.microsoft.com
如果您遇到什么问题,请您再和我们联系,我们会尽力为您解答。
感谢您的支持!
和永飞
"曾睿智" <@discussions.microsoft.com> 写入消息新闻:BB27AC5F-4986-4B6D...@microsoft.com...
> 来源:userenv 事件:1053 描述:Windows 不能确定用户或计算机名称(拒绝访。 )。组策略处理中止。
曾睿智
和永飞
第一,我现在只有一个dc了。其它的全部被我x掉了
第二,我在剩下的这个dc上夺取5个fsmo后,在清理掉其它dc信息后,彻底挂了。
1.dns不能正常启动了。
2.ad也打不开了。。
还不如没修以前。虽然建不了ad集成区域(跟你的出错一样------因为所需应用程序目录分区不存在,无法复制此区域到(null)Active
> Directory域中的所有DNS服务器。只有企业管理员有合适的权限创建应用程序目录分区。(可是我已经是有企业管理员组的,当前登陆的用户是administrator)但至少ad还可以打的开。就是其它电及无法加进这个域来.
现在我的dcdiag的信息是这样的。请帮我看下:
Domain Controller Diagnosis
Performing initial setup:
* Verifying that the local machine mailserver, is a DC.
* Connecting to directory service on server mailserver.
* Collecting site info.
* Identifying all servers.
* Identifying all NC cross-refs.
* Found 1 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\MAILSERVER
Starting test: Connectivity
* Active Directory LDAP Services Check
* Active Directory RPC Services Check
......................... MAILSERVER passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\MAILSERVER
Starting test: Replications
* Replications Check
* Replication Latency Check
DC=ForestDnsZones,DC=nengtyi,DC=com,DC=cn
Latency information for 9 entries in the vector were ignored.
9 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
DC=DomainDnsZones,DC=nengtyi,DC=com,DC=cn
Latency information for 9 entries in the vector were ignored.
9 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
CN=Schema,CN=Configuration,DC=nengtyi,DC=com,DC=cn
Latency information for 9 entries in the vector were ignored.
9 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
CN=Configuration,DC=nengtyi,DC=com,DC=cn
Latency information for 9 entries in the vector were ignored.
9 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
DC=nengtyi,DC=com,DC=cn
Latency information for 9 entries in the vector were ignored.
9 were retired Invocations. 0 were either: read-only
replicas and are not verifiably latent, or dc's no longer replicating this
nc. 0 had no latency information (Win2K DC).
* Replication Site Latency Check
......................... MAILSERVER passed test Replications
Test omitted by user request: Topology
Test omitted by user request: CutoffServers
Starting test: NCSecDesc
* Security Permissions check for all NC's on DC MAILSERVER.
* Security Permissions Check for
DC=ForestDnsZones,DC=nengtyi,DC=com,DC=cn
(NDNC,Version 2)
* Security Permissions Check for
DC=DomainDnsZones,DC=nengtyi,DC=com,DC=cn
(NDNC,Version 2)
* Security Permissions Check for
CN=Schema,CN=Configuration,DC=nengtyi,DC=com,DC=cn
(Schema,Version 2)
* Security Permissions Check for
CN=Configuration,DC=nengtyi,DC=com,DC=cn
(Configuration,Version 2)
* Security Permissions Check for
DC=nengtyi,DC=com,DC=cn
(Domain,Version 2)
......................... MAILSERVER passed test NCSecDesc
Starting test: NetLogons
* Network Logons Privileges Check
Verified share \\MAILSERVER\netlogon
Verified share \\MAILSERVER\sysvol
......................... MAILSERVER passed test NetLogons
Starting test: Advertising
Fatal Error:DsGetDcName (MAILSERVER) call failed, error 1355
The Locator could not find the server.
......................... MAILSERVER failed test Advertising
Starting test: KnowsOfRoleHolders
Role Schema Owner = CN=NTDS
Settings,CN=MAILSERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nengtyi,DC=com,DC=cn
Role Domain Owner = CN=NTDS
Settings,CN=MAILSERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nengtyi,DC=com,DC=cn
Role PDC Owner = CN=NTDS
Settings,CN=MAILSERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nengtyi,DC=com,DC=cn
Role Rid Owner = CN=NTDS
Settings,CN=MAILSERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nengtyi,DC=com,DC=cn
Role Infrastructure Update Owner = CN=NTDS
Settings,CN=MAILSERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nengtyi,DC=com,DC=cn
......................... MAILSERVER passed test KnowsOfRoleHolders
Starting test: RidManager
* Available RID Pool for the Domain is 8609 to 1073741823
* mailserver.nengtyi.com.cn is the RID Master
* DsBind with RID Master was successful
Failed with 8481: 穓碝礚猭眖戈畐いъ妮┦
Could not get Rid set Reference :failed with 8481: 穓碝礚猭眖戈畐いъ妮┦
......................... MAILSERVER failed test RidManager
Starting test: MachineAccount
Checking machine account for DC MAILSERVER on DC MAILSERVER.
***Error: The server MAILSERVER is missing its machine account.
Try
running with the /repairmachineaccount option.
* The current DC is not in the domain controller's OU
* MAILSERVER Server Reference is incorrect
* Missing SPN :LDAP/mailserver.nengtyi.com.cn/nengtyi.com.cn
* Missing SPN :LDAP/mailserver.nengtyi.com.cn
* Missing SPN :LDAP/MAILSERVER
* Missing SPN :LDAP/mailserver.nengtyi.com.cn/NENGTYI
* Missing SPN
:LDAP/8611b7d2-b28f-4e44-acb2-82a7086510c5._msdcs.nengtyi.com.cn
* Missing SPN
:E3514235-4B06-11D1-AB04-00C04FC2DCD2/8611b7d2-b28f-4e44-acb2-82a7086510c5/nengtyi.com.cn
* Missing SPN :HOST/mailserver.nengtyi.com.cn/nengtyi.com.cn
* Missing SPN :HOST/mailserver.nengtyi.com.cn
* Missing SPN :HOST/MAILSERVER
* Missing SPN :HOST/mailserver.nengtyi.com.cn/NENGTYI
* Missing SPN :GC/mailserver.nengtyi.com.cn/nengtyi.com.cn
......................... MAILSERVER failed test MachineAccount
Starting test: Services
* Checking Service: Dnscache
* Checking Service: NtFrs
* Checking Service: IsmServ
* Checking Service: kdc
* Checking Service: SamSs
* Checking Service: LanmanServer
* Checking Service: LanmanWorkstation
* Checking Service: RpcSs
* Checking Service: w32time
w32time Service is stopped on [MAILSERVER]
* Checking Service: NETLOGON
NETLOGON Service is stopped on [MAILSERVER]
......................... MAILSERVER failed test Services
Test omitted by user request: OutboundSecureChannels
Starting test: ObjectsReplicated
MAILSERVER is in domain DC=nengtyi,DC=com,DC=cn
Checking for (null) in domain DC=nengtyi,DC=com,DC=cn on 1 servers
Failed to read object metadata on MAILSERVER, error 把计岿粇
Object is up-to-date on all servers.
Checking for CN=NTDS
Settings,CN=MAILSERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nengtyi,DC=com,DC=cn
in domain CN=Configuration,DC=nengtyi,DC=com,DC=cn on 1 servers
Object is up-to-date on all servers.
......................... MAILSERVER passed test ObjectsReplicated
Starting test: frssysvol
* The File Replication Service SYSVOL ready test
File Replication Service's SYSVOL is ready
......................... MAILSERVER passed test frssysvol
Starting test: frsevent
* The File Replication Service Event log test
......................... MAILSERVER passed test frsevent
Starting test: kccevent
* The KCC Event log test
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 10:57:46
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x800006D4
Time Generated: 12/17/2007 10:57:58
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x800006D4
Time Generated: 12/17/2007 10:57:58
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 10:58:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 10:58:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 10:59:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 10:59:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:00:16
(Event String could not be retrieved)
An Warning Event occured. EventID: 0x800004C8
Time Generated: 12/17/2007 11:00:41
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:00:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:01:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:01:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:02:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:02:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:03:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:03:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:04:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:04:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:05:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:05:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:06:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:06:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:07:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:07:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:08:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:08:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:09:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:09:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:10:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:10:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:11:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:11:46
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0000490
Time Generated: 12/17/2007 11:12:16
(Event String could not be retrieved)
......................... MAILSERVER failed test kccevent
Starting test: systemlog
* The System Event log test
An Error Event occured. EventID: 0x0000410B
Time Generated: 12/17/2007 10:38:16
(Event String could not be retrieved)
An Error Event occured. EventID: 0x000015E2
Time Generated: 12/17/2007 10:39:45
Event String: An internal error occurred while accessing the
computer's local or network security database.
An Error Event occured. EventID: 0xC25A002E
Time Generated: 12/17/2007 10:40:04
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0002720
Time Generated: 12/17/2007 10:40:39
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0001B6E
Time Generated: 12/17/2007 10:40:53
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0001B6F
Time Generated: 12/17/2007 10:40:53
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0001B59
Time Generated: 12/17/2007 10:40:53
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0001B59
Time Generated: 12/17/2007 10:40:53
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0001B59
Time Generated: 12/17/2007 10:40:53
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0001B6F
Time Generated: 12/17/2007 10:40:53
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0001B6F
Time Generated: 12/17/2007 10:41:25
(Event String could not be retrieved)
An Error Event occured. EventID: 0x000015E2
Time Generated: 12/17/2007 10:46:45
Event String: An internal error occurred while accessing the
computer's local or network security database.
An Error Event occured. EventID: 0xC0001B59
Time Generated: 12/17/2007 10:46:45
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0001B6F
Time Generated: 12/17/2007 10:46:45
(Event String could not be retrieved)
An Error Event occured. EventID: 0x000015E2
Time Generated: 12/17/2007 10:48:28
Event String: An internal error occurred while accessing the
computer's local or network security database.
An Error Event occured. EventID: 0xC0001B59
Time Generated: 12/17/2007 10:48:28
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0001B6F
Time Generated: 12/17/2007 10:48:28
(Event String could not be retrieved)
An Error Event occured. EventID: 0xC0001B59
Time Generated: 12/17/2007 10:53:58
(Event String could not be retrieved)
......................... MAILSERVER failed test systemlog
Test omitted by user request: VerifyReplicas
Starting test: VerifyReferences
Some objects relating to the DC MAILSERVER have problems:
[1] Problem: Missing Expected Value
Base Object:
CN=MAILSERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nengtyi,DC=com,DC=cn
Base Object Description: "Server Object"
Value Object Attribute: serverReference
Value Object Description: "DC Account Object"
Recommended Action: This could hamper authentication (and thus
replication, etc). Check if this server is deleted, and if so
clean up this DCs Account Object. If the problem persists and
this is not a deleted DC, authoratively restore the DSA object
from
a good copy, for example the DSA on the DSA's home server.
[1] Problem: Missing Expected Value
Base Object:
CN=NTDS
Settings,CN=MAILSERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=nengtyi,DC=com,DC=cn
Base Object Description: "DSA Object"
Value Object Attribute Name: serverReferenceBL
Value Object Description: "SYSVOL FRS Member Object"
Recommended Action: See Knowledge Base Article: Q312862
......................... MAILSERVER failed test VerifyReferences
Test omitted by user request: VerifyEnterpriseReferences
Test omitted by user request: CheckSecurityError
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
It appears this partition
(DC=ForestDnsZones,DC=nengtyi,DC=com,DC=cn) has an empty replica
set. This partition should be re-instantiated on the last
replica
to hold this NC, or removed from the Active Directory.
......................... ForestDnsZones passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
It appears this partition
(DC=DomainDnsZones,DC=nengtyi,DC=com,DC=cn) has an empty replica
set. This partition should be re-instantiated on the last
replica
to hold this NC, or removed from the Active Directory.
......................... DomainDnsZones passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test
CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running partition tests on : nengtyi
Starting test: CrossRefValidation
......................... nengtyi passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... nengtyi passed test CheckSDRefDom
Running enterprise tests on : nengtyi.com.cn
Starting test: Intersite
Skipping site Default-First-Site-Name, this site is outside the
scope
provided by the command line arguments provided.
......................... nengtyi.com.cn passed test Intersite
Starting test: FsmoCheck
Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1355
A Global Catalog Server could not be located - All GC's are down.
Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1355
A Primary Domain Controller could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error
1355
A Good Time Server could not be located.
Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1355
A KDC could not be located - All the KDCs are down.
......................... nengtyi.com.cn failed test FsmoCheck
Test omitted by user request: DNS
Test omitted by user request: DNS
"曾睿智" <@discussions.microsoft.com> 写入消息新闻:BB27AC5F-4986-4B6D...@microsoft.com...
> 来源:userenv 事件:1053 描述:Windows 不能确定用户或计算机名称(拒绝访。 )。组策略处理中止。
曾睿智
和永飞
"曾睿智" <@discussions.microsoft.com> 写入消息新闻:E8FC3511-F18A-4EF1...@microsoft.com...