Hi Team Spice,
Have read into nearly every thread that deals with this issue from technet to some guys blog in Japanese and so on ... each instance is a little different, most of them contain a lot more errors, and none of them feel just right in terms of resolution.
Short story, I installed a 3rd DC and it’s SYSVOL and NETLOGON did not populate. I demoted it, created a new VM with a new name and different IP and same result. Before I demote this one and burn my office to the ground… I would like to get to the bottom of this issue.
Steps that let to this moment:
I had a S2008 based network with 2 DCs since 2009. In the last 3 months I have slowly replaced all my servers to S2012. First was a S2012 DC and that went very well. Then a second S2012 DC and that also went well. After some time, I took the 2008 DCs off line and all good. Upgraded Exchange /LYNC from 2007/2010 to 2013 and smooth.
All of these are Gen 2 S2012 VMs on Hyper-V 2012 R2
Last week, setup a second Hyper-V host for replication and to host a 3rd DC. So I created a 3rd DC. This is where things got spicy.
By the way, I did not clone any VMs.
The new DC promotes successfully ahem, but then I notice sysvol and netlogon did not populate. Now before I promoted, I ran DNSLINT on both DCs and they passed 100%, I ran DCDIAG on both DCs and they passed. I ran nearly every possible DCDIAG test on the new member server before promoting it and it passed. So why would DFSR fail to fly?
AD objects seem to populate onto the new DC. I can delete an AD object on one or add and it populates to the new DC. But SYSVOL and NETLOGON are not populating
REPADMIN
Replication Summary Start Time: 2014-01-07 08:50:17
Beginning data collection for replication summary, this may take awhile:
......
Source DSA largest delta fails/total %% error
JEFFERSON 59m:04s 0 / 10 0
REAGAN 56m:18s 0 / 10 0
ROOSEVELT 59m:04s 0 / 10 0
Destination DSA largest delta fails/total %% error
JEFFERSON 01m:18s 0 / 10 0
REAGAN 59m:05s 0 / 10 0
ROOSEVELT 56m:19s 0 / 10 0
(One warning here, got bored with the planets and opted for US presidents this time, no political preference here =))
SERVERS/ROLES:
- Roosevelt is my PDC
- Jefferson is the second DC that is working “ok”
- Reagan is my new DC
C:\Users\darthvader>domain query fsmo
Schema master JEFFERSON.domain.com
Domain naming master JEFFERSON.domain.com
PDC ROOSEVELT.domain.com
RID pool manager ROOSEVELT.domain.com
Infrastructure master JEFFERSON.domain.com
What setting am I missing here? Short of setting up a 4th DC on the same Hyper-V host… I would prefer to resolve this issue because I can’t find any communication issues between the two hosts. They are both plugged into the same switch and all other forms of communication is ok between.
Would really appreciate some help before I open a case with MSFT. Below is all the info you will want to see, sorry if I’m leaving out details or assuming you know something, I have not slept in a few days.
Thank you and from here and below is the wall of info that should answer any question you might have about my network:
- DCDIAG (some of them lost their formatting)
- ERRORS
- IPCONFIG /All
- and last is the DNSLINT report
It's a lot of info, and not that many errors. The DCDIAGs are clean on Jefferson and Roosevelt and only a few on Reagan of which I bolded them. I have since changed my DNS and each DC is pointing at each other as primary as per some great support below. DNSLINT, no errors
1. DCDIAG REPORTS
Reagan:
C:\Users\darthvader>dcdiag
Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
Home Server = REAGAN
* Identified AD Forest.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\REAGAN
Starting test: Connectivity
......................... REAGAN passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\REAGAN
Starting test: Advertising Warning: DsGetDcName returned information for \\ROOSEVELT.domain.com, when we were trying to rea REAGAN. SERVER IS NOT RESPONDING or IS NOT CONSIDERED SUITABLE. ......................... REAGAN failed test Advertising
Starting test: FrsEvent ......................... REAGAN passed test FrsEvent
Starting test: DFSREvent There are warning or error events within the last 24 hours after the SYSVOL has been shared. Failing SYSVOL replication problems may cause Group Policy problems. ......................... REAGAN failed test DFSREvent
Starting test: SysVolCheck ......................... REAGAN passed test SysVolCheck
Starting test: KccEvent ......................... REAGAN passed test KccEvent
Starting test: KnowsOfRoleHolders ......................... REAGAN passed test KnowsOfRoleHolders
Starting test: MachineAccount ......................... REAGAN passed test MachineAccount
Starting test: NCSecDesc ......................... REAGAN passed test NCSecDesc
Starting test: NetLogons Unable to connect to the NETLOGON share! (\\REAGAN\netlogon) [REAGAN] An net use or LsaPolicy operation failed with error 67, The network name cannot be found.. ......................... REAGAN failed test NetLogons
Starting test: ObjectsReplicated ......................... REAGAN passed test ObjectsReplicated
Starting test: Replications ......................... REAGAN passed test Replications
Starting test: RidManager ......................... REAGAN passed test RidManager
Starting test: Services ......................... REAGAN passed test Services
Starting test: SystemLog ......................... REAGAN passed test SystemLog
Starting test: VerifyReferences ......................... REAGAN passed test VerifyReferences
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : domain
Starting test: CheckSDRefDom
......................... domain passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... domain passed test CrossRefValidation
Running enterprise tests on : domain.com
Starting test: LocatorCheck
......................... domain.com passed test LocatorCheck
Starting test: Intersite
......................... domain.com passed test Intersite
Roosevelt:
Testing server: Default-First-Site-Name\ROOSEVELT
Starting test: Connectivity
......................... ROOSEVELT passed test Connectivity
ing primary tests
Testing server: Default-First-Site-Name\ROOSEVELT
Starting test: Advertising ......................... ROOSEVELT passed test Advertising
Starting test: FrsEvent ......................... ROOSEVELT passed test FrsEvent
Starting test: DFSREvent There are warning or error events within the last 24 hours after the SYSVOL has been shared. Failing SYSVOL replication problems may cause Group Policy problems. ......................... ROOSEVELT failed test DFSREvent
Starting test: SysVolCheck ......................... ROOSEVELT passed test SysVolCheck
Starting test: KccEvent ......................... ROOSEVELT passed test KccEvent
Starting test: KnowsOfRoleHolders ......................... ROOSEVELT passed test KnowsOfRoleHolders
Starting test: MachineAccount ......................... ROOSEVELT passed test MachineAccount
Starting test: NCSecDesc ......................... ROOSEVELT passed test NCSecDesc
Starting test: NetLogons ......................... ROOSEVELT passed test NetLogons
Starting test: ObjectsReplicated ......................... ROOSEVELT passed test ObjectsReplicated
Starting test: Replications ......................... ROOSEVELT passed test Replications
Starting test: RidManager ......................... ROOSEVELT passed test RidManager
Starting test: Services ......................... ROOSEVELT passed test Services
Starting test: SystemLog ......................... ROOSEVELT passed test SystemLog
Starting test: VerifyReferences
......................... ROOSEVELT passed test VerifyReferences
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : domain
Starting test: CheckSDRefDom
......................... domain passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... domain passed test CrossRefValidation
Running enterprise tests on : domain.com
Starting test: LocatorCheck
......................... domain.com passed test LocatorCheck
Starting test: Intersite
......................... domain.com passed test Intersite
Jefferson:
Testing server: Default-First-Site-Name\JEFFERSON
Starting test: Connectivity
......................... JEFFERSON passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\JEFFERSON
Starting test: Advertising
......................... JEFFERSON passed test Advertising
Starting test: FrsEvent
......................... JEFFERSON passed test FrsEvent
Starting test: DFSREvent
There are warning or error events within the last 24 hours after the SYSVOL has been shared.
Failing SYSVOL replication problems may cause Group Policy problems.
......................... JEFFERSON failed test DFSREvent
Starting test: SysVolCheck
......................... JEFFERSON passed test SysVolCheck
Starting test: KccEvent
......................... JEFFERSON passed test KccEvent
Starting test: KnowsOfRoleHolders
......................... JEFFERSON passed test KnowsOfRoleHolders
Starting test: MachineAccount
......................... JEFFERSON passed test MachineAccount
Starting test: NCSecDesc
......................... JEFFERSON passed test NCSecDesc
Starting test: NetLogons
......................... JEFFERSON passed test NetLogons
Starting test: ObjectsReplicated
......................... JEFFERSON passed test ObjectsReplicated
Starting test: Replications
......................... JEFFERSON passed test Replications
Starting test: RidManager
......................... JEFFERSON passed test RidManager
Starting test: Services
......................... JEFFERSON passed test Services
Starting test: SystemLog
......................... JEFFERSON passed test SystemLog
Starting test: VerifyReferences
......................... JEFFERSON passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : domain
Starting test: CheckSDRefDom
......................... domain passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... domain passed test CrossRefValidation
Running enterprise tests on : domain.com
Starting test: LocatorCheck
......................... domain.com passed test LocatorCheck
Starting test: Intersite
......................... domain.com passed test Intersite
2. ERRORS
The errors causing DFSR test to fail are:
The DFSR errors piling up in the two “working” DCs. Warning 5014, error 5002, and 4612.
Warning: 5014
The DFS Replication service is stopping communication with partner REAGAN for replication group Domain System Volume due to an error. The service will retry the connection periodically.
Additional Information:
Error: 9033 (The request was cancelled by a shutdown)
Connection ID: 9B9281D0-5620-40FF-ACF4-36811DDF407A
Replication Group ID: 57A5E004-6491-4912-B803-8F5AFE90841A
Error: 5002
The DFS Replication service encountered an error communicating with partner REAGAN for replication group Domain System Volume.
Partner DNS address: REAGAN.domain.com
Optional data if available:
Partner WINS Address: REAGAN
Partner IP Address: 192.168.1.26
The service will retry the connection periodically.
Additional Information:
Error: 1753 (There are no more endpoints available from the endpoint mapper.)
Connection ID: 9B9281D0-5620-40FF-ACF4-36811DDF407A
Replication Group ID: 57A5E004-6491-4912-B803-8F5AFE90841A
Error 4612
The DFS Replication service initialized SYSVOL at local path C:\Windows\SYSVOL\domain and is waiting to perform initial replication. The replicated folder will remain in the initial synchronization state until it has replicated with its partner REAGAN.domain.com. If the server was in the process of being promoted to a domain controller, the domain controller will not advertise and function as a domain controller until this issue is resolved. This can occur if the specified partner is also in the initial synchronization state, or if sharing violations are encountered on this server or the sync partner. If this event occurred during the migration of SYSVOL from File Replication service (FRS) to DFS Replication, changes will not replicate out until this issue is resolved. This can cause the SYSVOL folder on this server to become out of sync with other domain controllers.
Additional Information:
Replicated Folder Name: SYSVOL Share
Replicated Folder ID: 287A9C87-C962-4C05-99CC-F1A08EA19815
Replication Group Name: Domain System Volume
Replication Group ID: 9B9281D0-5620-40FF-ACF4-36811DDF407A
Member ID: B83FB855-F360-442E-9706-F2951F662228
Read-Only: 0
3. IPCONFIG /ALL
How about ipconfig /all from all 3 DCs, sure:
Jefferson:
Windows IP Configuration
Host Name . . . . . . . . . . . . : JEFFERSON
Primary Dns Suffix . . . . . . . : domain.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.com
Ethernet adapter Ethernet:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Hyper-V Network Adapter
Physical Address. . . . . . . . . : 00-15-5D-01-02-00
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::a5e8:2fa2:209c:6c32%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.9(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 251663709
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-47-77-7D-00-15-5D-01-02-00
DNS Servers . . . . . . . . . . . : ::1
192.168.1.9
192.168.1.18
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{AE550679-06C4-47C6-8544-06B88D312B20}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Teredo Tunneling Pseudo-Interface:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Roosevelt:
Windows IP Configuration
Host Name . . . . . . . . . . . . : ROOSEVELT
Primary Dns Suffix . . . . . . . : domain.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.com
Ethernet adapter Ethernet:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Hyper-V Network Adapter
Physical Address. . . . . . . . . : 00-15-5D-01-02-03
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::20d0:a738:2e33:8af9%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.18(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 251663709
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-4D-8A-F4-00-15-5D-01-02-03
DNS Servers . . . . . . . . . . . : ::1
192.168.1.18
192.168.1.9
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{B239ECD1-9782-438E-8B94-C59636F0CA83}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Teredo Tunneling Pseudo-Interface:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Reagan:
Windows IP Configuration
Host Name . . . . . . . . . . . . : REAGAN
Primary Dns Suffix . . . . . . . : domain.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.com
Ethernet adapter Ethernet:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Hyper-V Network Adapter
Physical Address. . . . . . . . . : 00-15-5D-01-03-05
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::a4b5:9196:14dc:2683%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.26(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 251663709
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-5B-2C-4F-00-15-5D-01-03-05
DNS Servers . . . . . . . . . . . : ::1
192.168.1.26
192.168.1.18
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{2C5A7524-6151-4D72-8055-79D94C7D0218}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Teredo Tunneling Pseudo-Interface:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
4. DNSLINT
DNSLINT Report from Jefferson:
DNSLint Report
System Date: Tue Jan 07 08:40:16 2014
Command run:
dnslint /ad /s 192.168.1.9 /v
Root of Active Directory Forest:
domain.com
Active Directory Forest Replication GUIDs Found:
DC: JEFFERSON
GUID: 7c66bbb6-3015-4faf-8326-061194936f52
DC: ROOSEVELT
GUID: 91764a59-5158-4df0-baf8-a1a1f70398a1
DC: REAGAN
GUID: 2d677d1e-d21b-462f-8c89-f2dd601b2d9d
Total GUIDs found: 3
--------------------------------------------------------------------------------
The following 3 DNS servers were checked for records related to AD forest replication:
DNS server: jefferson.domain.com
IP Address: 192.168.1.9
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: jefferson.domain.com
Hostmaster: hostmaster.domain.com
Zone serial number: 1238
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
roosevelt.domain.com 192.168.1.18
jefferson.domain.com 192.168.1.9
reagan.domain.com 192.168.1.26
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: 7c66bbb6-3015-4faf-8326-061194936f52._msdcs.domain.com
Alias: jefferson.domain.com
Glue: 192.168.1.9
CNAME: 91764a59-5158-4df0-baf8-a1a1f70398a1._msdcs.domain.com
Alias: roosevelt.domain.com
Glue: 192.168.1.18
CNAME: 2d677d1e-d21b-462f-8c89-f2dd601b2d9d._msdcs.domain.com
Alias: reagan.domain.com
Glue: 192.168.1.26
Total number of CNAME records found on this server: 3
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
--------------------------------------------------------------------------------
DNS server: roosevelt.domain.com
IP Address: 192.168.1.18
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: roosevelt.domain.com
Hostmaster: hostmaster.domain.com
Zone serial number: 1238
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
roosevelt.domain.com 192.168.1.18
jefferson.domain.com 192.168.1.9
reagan.domain.com 192.168.1.26
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: 7c66bbb6-3015-4faf-8326-061194936f52._msdcs.domain.com
Alias: jefferson.domain.com
Glue: 192.168.1.9
CNAME: 91764a59-5158-4df0-baf8-a1a1f70398a1._msdcs.domain.com
Alias: roosevelt.domain.com
Glue: 192.168.1.18
CNAME: 2d677d1e-d21b-462f-8c89-f2dd601b2d9d._msdcs.domain.com
Alias: reagan.domain.com
Glue: 192.168.1.26
Total number of CNAME records found on this server: 3
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
--------------------------------------------------------------------------------
DNS server: reagan.domain.com
IP Address: 192.168.1.26
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: reagan.domain.com
Hostmaster: hostmaster.domain.com
Zone serial number: 1238
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
reagan.domain.com 192.168.1.26
roosevelt.domain.com 192.168.1.18
jefferson.domain.com 192.168.1.9
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: 7c66bbb6-3015-4faf-8326-061194936f52._msdcs.domain.com
Alias: jefferson.domain.com
Glue: 192.168.1.9
CNAME: 91764a59-5158-4df0-baf8-a1a1f70398a1._msdcs.domain.com
Alias: roosevelt.domain.com
Glue: 192.168.1.18
CNAME: 2d677d1e-d21b-462f-8c89-f2dd601b2d9d._msdcs.domain.com
Alias: reagan.domain.com
Glue: 192.168.1.26
Total number of CNAME records found on this server: 3
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
DNSLINT Report from Reagan:
DNSLint Report
System Date: Tue Jan 07 08:42:34 2014
Command run:
dnslint /ad /s 192.168.1.26 /v
Root of Active Directory Forest:
domain.com
Active Directory Forest Replication GUIDs Found:
DC: JEFFERSON
GUID: 7c66bbb6-3015-4faf-8326-061194936f52
DC: ROOSEVELT
GUID: 91764a59-5158-4df0-baf8-a1a1f70398a1
DC: REAGAN
GUID: 2d677d1e-d21b-462f-8c89-f2dd601b2d9d
Total GUIDs found: 3
--------------------------------------------------------------------------------
The following 3 DNS servers were checked for records related to AD forest replication:
DNS server: reagan.domain.com
IP Address: 192.168.1.26
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: reagan.domain.com
Hostmaster: hostmaster.domain.com
Zone serial number: 1238
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
roosevelt.domain.com 192.168.1.18
jefferson.domain.com 192.168.1.9
reagan.domain.com 192.168.1.26
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: 7c66bbb6-3015-4faf-8326-061194936f52._msdcs.domain.com
Alias: jefferson.domain.com
Glue: 192.168.1.9
CNAME: 91764a59-5158-4df0-baf8-a1a1f70398a1._msdcs.domain.com
Alias: roosevelt.domain.com
Glue: 192.168.1.18
CNAME: 2d677d1e-d21b-462f-8c89-f2dd601b2d9d._msdcs.domain.com
Alias: reagan.domain.com
Glue: 192.168.1.26
Total number of CNAME records found on this server: 3
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
--------------------------------------------------------------------------------
DNS server: roosevelt.domain.com
IP Address: 192.168.1.18
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: roosevelt.domain.com
Hostmaster: hostmaster.domain.com
Zone serial number: 1238
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
jefferson.domain.com 192.168.1.9
reagan.domain.com 192.168.1.26
roosevelt.domain.com 192.168.1.18
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: 7c66bbb6-3015-4faf-8326-061194936f52._msdcs.domain.com
Alias: jefferson.domain.com
Glue: 192.168.1.9
CNAME: 91764a59-5158-4df0-baf8-a1a1f70398a1._msdcs.domain.com
Alias: roosevelt.domain.com
Glue: 192.168.1.18
CNAME: 2d677d1e-d21b-462f-8c89-f2dd601b2d9d._msdcs.domain.com
Alias: reagan.domain.com
Glue: 192.168.1.26
Total number of CNAME records found on this server: 3
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
--------------------------------------------------------------------------------
DNS server: jefferson.domain.com
IP Address: 192.168.1.9
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: jefferson.domain.com
Hostmaster: hostmaster.domain.com
Zone serial number: 1238
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
jefferson.domain.com 192.168.1.9
reagan.domain.com 192.168.1.26
roosevelt.domain.com 192.168.1.18
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: 7c66bbb6-3015-4faf-8326-061194936f52._msdcs.domain.com
Alias: jefferson.domain.com
Glue: 192.168.1.9
CNAME: 91764a59-5158-4df0-baf8-a1a1f70398a1._msdcs.domain.com
Alias: roosevelt.domain.com
Glue: 192.168.1.18
CNAME: 2d677d1e-d21b-462f-8c89-f2dd601b2d9d._msdcs.domain.com
Alias: reagan.domain.com
Glue: 192.168.1.26
Total number of CNAME records found on this server: 3
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0