Hello everyone,

I am working for new company and I am setting up a domain for it.

We have 5 sites on different locations. I build the domain/DC to SitaA (running on ESXi VM, VM itself is running Win2012R2 Std). Then I create 2nd DC for SiteB (again on VM, Win2012R Std), which i was able to join to the domain). But have issues to join the 3rd DC, which is for SiteC. When i am trying to join it to the domain i get following error:
DNS was successfully queried for the service location (SRV) resource record used to locate a domain controller for domain "tek-experts.com":
The query was for the SRV record for _ldap._tcp.dc._msdcs.tek-experts.com
The following domain controllers were identified by the query:
siteb.tek-experts.com
sitea.tek-experts.com

However no domain controllers could be contacted.
Common causes of this error include:
- Host (A) or (AAAA) records that map the names of the domain controllers to their IP addresses are missing or contain incorrect addresses.
- Domain controllers registered in DNS are not connected to the network or are not running.

DNS address has been set properly in the tcp/ip settings. The weird thing is i can join PCs to the domain from sitea and siteb, but from sitec none of the PCs are able join to the domain with the same error. Its still in early stages, so i didnt make any changes in DNS server or anything else. Not sure why I cant join machines from siteC to the domain. 

Host (A) records in the DNS are properly set to the correct IP address. 

Win firewall was disabled. No AV installed at the moment to any of the DCs. The server from siteC can ping the other DCs via IP, FQDN and NETBIOS name and the DCs from siteA and siteB can ping the server in siteC. But still server in siteC cant join to the domain and promote it as DC for AD. Nslookup resolve the server names, because i made the reverse lookup zone. 

I am thinking about network issues. 

Any ideas from you? Every opinion will be good, what to check ..etc.

Best Regards,

0 Comments   [ + ] Show Comments

Comments

Please log in to comment

Answers

0
I've had the odd issue with a handful of computers not joining our domain unless I put the full domain name in. I work at a college in the UK and we would be able to just put in CollegeName and the pc's would resolve. The odd time though I would need to put in the full name of CollegeName.ac.uk for it to properly join. Hopefully that makes sense to you and that it helps.
Answered 10/31/2014 by: alphabeta
Third Degree Brown Belt

  • I am trying to join with the full name, not with netbios..as i said i am able to join PCs from SiteA and B to the domain. The problem is only to join PCs from siteC. I had tried ldp tool check and telnet to the DCs in Site A/B and i am not able to open port 389. Our network admin allow for all DC's ip address any connections, but still cant join PCs from siteC to the domain. I am not sure is there proper routing between the sites.
Please log in to comment
Answer this question or Comment on this question for clarity

Share