B
BatiTSO
I have an offline domain (air-gap) and added a 2nd DC (Hyper-V VM). /showrepl looks fine, but dcdiag showing a ton of errors (sorry can't easily post the log here). I see many references to internet sites in dcdiag (such as time.windows.com and ctldl.windowsupdate.com, v10.vortex-win.data.microsoft.com), which is an obvious issue since I can't communicate to the internet.
To build the first DC I used a Server 2016 disk that I had on-hand with no issues, but didn't have it for this one so I downloaded the ISO from MS Volume Licensing Center. Is there an easy way to configure this thing for offline? I'm assuming that's the problem.. the errors I'm seeing are:
- DsGetDcName = SERVER IS NOT RESPONDING or IS NOT CONSIDERED SUITABLE ... DC1 failed test Advertising
- KccEvent = EventID: 0x80000603, ADDS could not disable the software-based disk write cache
EventID: 0x80000828, ADDS could not use DNS to resolve the IP address of the source DC listed below
- Netlogons - Unable to connect to the NETLOGON share! [DC2] An net use or LsaPolicy operation failed with error 67, The network name cannot be found
- Then a bunch of DNS resolution errors for NtpClientto "time.windows.com", which obviously I will never be able to reach
- I also have a bunch of "driver detected that the device \Device\Harddisk0\DR0 has its write cache enabled. Data corruption may occur
- The application-specific permission settings do not grant local Activation permission for the COM Server application with CLSID
- NtpClient: No valid response has been received from comain controller dc1.blah.com after 8 attempts. The client fails authenticating a response with a bad signature
- DC2 failed test SystemLog
All other tests appear to pass, policies and accounts are replicated... Not sure what to do here or why this image is trying to reach out to external sites. I've not had any previous images try to do so.
Thanks!
Continue reading...
To build the first DC I used a Server 2016 disk that I had on-hand with no issues, but didn't have it for this one so I downloaded the ISO from MS Volume Licensing Center. Is there an easy way to configure this thing for offline? I'm assuming that's the problem.. the errors I'm seeing are:
- DsGetDcName = SERVER IS NOT RESPONDING or IS NOT CONSIDERED SUITABLE ... DC1 failed test Advertising
- KccEvent = EventID: 0x80000603, ADDS could not disable the software-based disk write cache
EventID: 0x80000828, ADDS could not use DNS to resolve the IP address of the source DC listed below
- Netlogons - Unable to connect to the NETLOGON share! [DC2] An net use or LsaPolicy operation failed with error 67, The network name cannot be found
- Then a bunch of DNS resolution errors for NtpClientto "time.windows.com", which obviously I will never be able to reach
- I also have a bunch of "driver detected that the device \Device\Harddisk0\DR0 has its write cache enabled. Data corruption may occur
- The application-specific permission settings do not grant local Activation permission for the COM Server application with CLSID
- NtpClient: No valid response has been received from comain controller dc1.blah.com after 8 attempts. The client fails authenticating a response with a bad signature
- DC2 failed test SystemLog
All other tests appear to pass, policies and accounts are replicated... Not sure what to do here or why this image is trying to reach out to external sites. I've not had any previous images try to do so.
Thanks!
Continue reading...