If the laptop is gone, you should be able to reset the computer account for the DC, reboot and be pretty much back in service. The most you should need to do is DCPROMO to a member server, then DCPROMO again.
-- Durf On Jan 9, 2008 1:31 PM, Matt Plahtinsky <[EMAIL PROTECTED]> wrote: > I belive that this is more than a DNS issue. > > The two DC's are not replicating. I am not able to create an AD zone > or transfer FSMO roles. This all started when someone on my team > found a laptop on our network that was renamed to the same Fully > Qulified name as our dc that is haveing problems. It was on a > workgroup instead of a domain. I am unclear what they did next other > than renaming the pc and addeding it to the domain under the corrent > name but here are a few of the errors im getting. > > ................................... > Source: Userenv > Event ID: 1053 > User: NT Authority\system > Computer (my DC with problems) > > Windows cannot determine the user or computer name. (Access is denied. > ). Group Policy processing aborted. > ........................................ > > Source: Kerberos > Event ID: 4 > Computer (my DC with problems) > > The kerberos client received a KRB_AP_ERR_MODIFIED error from the > server host/ermc.corp.ermc2.com. The target name used was LDAP/ERMC. > This indicates that the password used to encrypt the kerberos service > ticket is different than that on the target server. Commonly, this is > due to identically named machine accounts in the target realm > (CORP.ERMC2.COM), and the client realm. Please contact your system > administrator. > > ............................................. > > Source: NTDS Genderal > Category: Global Catalog > Event ID: 1655 > > Active Directory attempted to communicate with the following global > catalog and the attempts were unsuccessful. > > Global catalog: > \\ermc.corp.ermc2.com > > ................................................ > > > > > > > > On Jan 9, 2008 11:57 AM, Senter, John <[EMAIL PROTECTED]> wrote: > > If the DNS zone that is missing was a AD integrated zone then the other > > DC should also be empty. If not, then it sounds like you have AD issues. > > > > You should not have to seize the roles and rebuild since the server is > > still up and running. > > > > -----Original Message----- > > From: Bob Fronk [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, January 09, 2008 11:47 AM > > To: NT System Admin Issues > > > > Subject: RE: DNS GONE!!!! Frack me > > > > You should be able to delete the zone and re-add it. If you are using > > DHCP and your clients are configured to register to DNS, the list should > > repopulate, except for any alias or static entries. > > > > Are the DNS services running? Did you try a reboot first? > > > > What does the event log tell you? > > > > Bob Fronk > > > > > > > > > > -----Original Message----- > > From: Matt Plahtinsky [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, January 09, 2008 10:53 AM > > To: NT System Admin Issues > > Subject: DNS GONE!!!! Frack me > > > > I have two DC's... DC(1) Holds all the FSMO roles and runs DNS, and > > DHCP. DC(2) is a second GC and also runs DNS. > > > > DC(1) has lost all of its DNS information. Is empty. Whats the > > fastest / best way to recover from this? > > > > 1. Can I uninstall create a new zone and sync from DC(2) > > 2. Restore just the DNS from tape > > 3. Since there is no DNS on DC(1) I'm betting that transfering roles > > from DC's are not going to work. > > > > > > Computers atm are able to log into the domain but exchange is down. > > > > Any thoughts > > > > Matt > > > > ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ > > ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~ > > > > > > This email and any attached files are confidential and intended solely > > for the intended recipient(s). If you are not the named recipient you > > should not read, distribute, copy or alter this email. Any views or > > opinions expressed in this email are those of the author and do not > > represent those of the Davis H. Elliot Company company. Warning: > > Although precautions have been taken to make sure no viruses are present > > in this email, the company cannot accept responsibility for any loss or > > damage that arise from the use of this email or attachments. > > > > ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ > > ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~ > > > > ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ > > ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~ > > > > ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ > ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~ > -- -------------- Give a man a match, and he'll be warm for a minute. But set a man on fire, and he'll be warm for the rest of his life. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
