Attempted to increase Domain Functional level (through dsa.msc) - in our case this resulted in error as there was a lingering failed DC object.
Attempt to remove this in ntsutil (metadata cleanup) resulted in various errors but most common one being error 0x20e3 (The DSA object could not be found) .
Event logs such as "the directory service agent has detected an object with a null GUID" were also being recorded.
Trying to remove/delete the NTDS Settings of the server in ADSIEdit's Configuration Schema also resulted in a errors such as problem 5001 (busy) or
ince I was attempting to join a promote a machine to DC via a VPN, I was getting a "Could not find an active Direcory domain controller". I had to manually create DNS A records pointing to the new server newserv.mydomain and associated PTR records as per: https://serverfault.com/a/795801
After establishing connectivity, I still couldn't join. Reason being the domain I was trying to join was a single label domain: and this is the fix https://www.itprotoday.com/windows-78/single-label-domain-dns-resolution
After this I was able to Join the domain but had to upgrade File Replication System to DFSR.
Upgraded from FRS to DFSR following the "Quick Migration" paragraph at the below link and ran into no issues:
https://techcommunity.microsoft.com/t5/storage-at-microsoft/streamlined-migration-of-frs-to-dfsr-sysvol/ba-p/425405
Attempt to remove this in ntsutil (metadata cleanup) resulted in various errors but most common one being error 0x20e3 (The DSA object could not be found) .
Event logs such as "the directory service agent has detected an object with a null GUID" were also being recorded.
Trying to remove/delete the NTDS Settings of the server in ADSIEdit's Configuration Schema also resulted in a errors such as problem 5001 (busy) or
Unable to update schema - problem 5001 ( BUSY )
ince I was attempting to join a promote a machine to DC via a VPN, I was getting a "Could not find an active Direcory domain controller". I had to manually create DNS A records pointing to the new server newserv.mydomain and associated PTR records as per: https://serverfault.com/a/795801
After establishing connectivity, I still couldn't join. Reason being the domain I was trying to join was a single label domain: and this is the fix https://www.itprotoday.com/windows-78/single-label-domain-dns-resolution
After this I was able to Join the domain but had to upgrade File Replication System to DFSR.
Upgraded from FRS to DFSR following the "Quick Migration" paragraph at the below link and ran into no issues:
https://techcommunity.microsoft.com/t5/storage-at-microsoft/streamlined-migration-of-frs-to-dfsr-sysvol/ba-p/425405
No comments:
Post a Comment