We just upgraded our Windows NT domain to Windows 2000 Active Directory. After the upgrade, clients can log in ok but I'm getting errors for event 5781 on my domain controller and 5788 & 5789 errors on member servers.
I will get to the details but what bothering me is that I think there was some sort of corruption in my NT domain before the upgrade that is resulting in failed attempts to add a second WIN2k domain controller or DHCP server after
the upgrade.
Before the upgrade, the Win NT primary domain controller's hostname was "SERVER1". The WinNT NET BIOS domain name was DOMAIN. During the upgrade, I specified the windows active directory domain name should be "DOMAIN-NC.org" . After the upgrade, the host name of the Windows 2000 Active Directory Domain Controller was appended with the NETBIOS domain name to read SERVER1.DOMAIN. The active
directory domain name is DOMAIN-NC.org which is what I wanted. The forward lookup zone in DNS (which is running on the DC) starts with the folder "DOMAIN-NC.org" domain. The folder contains SOA records, NS records
and a few A records including one for the domain controller, but no SRV records for the domain. It also includes a subfolder called "DOMAIN" which got added
by the IT guy before me I'm guessing because the DC's fully qualified domain name is now SERVER1.DOMAIN.DOMAIN-NC.org as if there was a child domain. There is no child domain however. All of our computers are members of the domain
"DOMAIN-NC.org" not "DOMAIN.DOMAIN-NC.org". There are no SRV records in the phantom child domain either, just an "A" record for SERVER1. They don't appear in advanced mode in the DNS snap-in either. Here's a sample of what the netlogon.dns file has in it.
DOMAIN-NC.org. 600 IN A 192.168.0.15
_ldap._tcp.DOMAIN-NC.org. 600 IN SRV 0 100 389 server1.domain.
_ldap._tcp.Default-First-Site-Name._sites.DOMAIN-NC.org. 600 IN SRV 0 100 389 server1.domain.
_ldap._tcp.pdc._msdcs.DOMAIN-NC.org. 600 IN SRV 0 100 389 server1.domain.
_ldap._tcp.gc._msdcs.DOMAIN-NC.org. 600 IN SRV 0 100 3268 server1.domain.
Shouldn't the end of each of these be the FQDN of the DC "server1.domain-nc.org" instead of "server1.domain"? Might editing this file or deleting the child domain
mentioned above put me on the right track? Let me know if more info is needed. Thanks for your help!
I will get to the details but what bothering me is that I think there was some sort of corruption in my NT domain before the upgrade that is resulting in failed attempts to add a second WIN2k domain controller or DHCP server after
the upgrade.
Before the upgrade, the Win NT primary domain controller's hostname was "SERVER1". The WinNT NET BIOS domain name was DOMAIN. During the upgrade, I specified the windows active directory domain name should be "DOMAIN-NC.org" . After the upgrade, the host name of the Windows 2000 Active Directory Domain Controller was appended with the NETBIOS domain name to read SERVER1.DOMAIN. The active
directory domain name is DOMAIN-NC.org which is what I wanted. The forward lookup zone in DNS (which is running on the DC) starts with the folder "DOMAIN-NC.org" domain. The folder contains SOA records, NS records
and a few A records including one for the domain controller, but no SRV records for the domain. It also includes a subfolder called "DOMAIN" which got added
by the IT guy before me I'm guessing because the DC's fully qualified domain name is now SERVER1.DOMAIN.DOMAIN-NC.org as if there was a child domain. There is no child domain however. All of our computers are members of the domain
"DOMAIN-NC.org" not "DOMAIN.DOMAIN-NC.org". There are no SRV records in the phantom child domain either, just an "A" record for SERVER1. They don't appear in advanced mode in the DNS snap-in either. Here's a sample of what the netlogon.dns file has in it.
DOMAIN-NC.org. 600 IN A 192.168.0.15
_ldap._tcp.DOMAIN-NC.org. 600 IN SRV 0 100 389 server1.domain.
_ldap._tcp.Default-First-Site-Name._sites.DOMAIN-NC.org. 600 IN SRV 0 100 389 server1.domain.
_ldap._tcp.pdc._msdcs.DOMAIN-NC.org. 600 IN SRV 0 100 389 server1.domain.
_ldap._tcp.gc._msdcs.DOMAIN-NC.org. 600 IN SRV 0 100 3268 server1.domain.
Shouldn't the end of each of these be the FQDN of the DC "server1.domain-nc.org" instead of "server1.domain"? Might editing this file or deleting the child domain
mentioned above put me on the right track? Let me know if more info is needed. Thanks for your help!