Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Tuesday, July 16, 2019 6:58 PM
Our 2016 member servers running webservers and sql servers failed to authenticate from DC02/DNS a Read Only DC. We could not RDP into this DC as it kept saying a lost trust issue which I have only seen on member servers and client machines. This was the first time saw I on a DC which read only.
We saw this on this error on the dead domain controller which has been removed now ..
Name resolution for the name _ldap._tcp.dc._msdcs.ourdomain.local. timed out after none of the configured DNS servers responded.
and this
The primary Domain Controller for this domain could not be located.
This dead read only dc was in the azure cloud and there are other DCs/DNS in cloud and on-premise.
This dead DC on its tcp/ip propteries had pdns set to a DC/DNS in the cloud close to it and sdns was set to a DC/DNS on-premise and when it caused issues ALL OTHER DC/DNS were functioning as far as I know.
Unsure why these member servers could not authenticate to other DCs/DNS when they could not reach this non-responsive DC/DNS. Our troubleshooting showed the member servers could communicate via IP and not names...which tells us a DNS issue and ofcourse the error above alose indicates it. We pulled the event logs from the dead DC later.
Thoughts?
Thank you
All replies (3)
Wednesday, July 17, 2019 5:34 AM âś…Answered
Hi,
We saw this on this error on the dead domain controller which has been removed now ..
Why use a dead DC?
Please configure a AD-integrated DNS server for the windows 2016 server.
* We could not RDP into this DC as it kept saying a lost trust issue which I have only seen on member servers and client machines. *
check the trust relationship between RODC and PDC.
Best regards,
Travis
Please remember to mark the replies as an answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected]
Tuesday, July 23, 2019 6:22 AM
Hi,
Just checking in to see if the information provided was helpful.
Please let us know if you would like further assistance.
Best Regards,
Travis
Please remember to mark the replies as an answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected]
Tuesday, July 30, 2019 2:32 AM
Hi,
Was your issue resolved?
If you resolved it using our solution, please "mark it as answer" to help other community members find the helpful reply quickly.
If you resolve it using your own solution, please share your experience and solution here. It will be very beneficial for other community members who have similar questions.
If no, please reply and tell us the current situation in order to provide further help.
Best Regards,
Travis
Please remember to mark the replies as an answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected]