Share via

Hyper-V Hosted Domain Controllers Failing

Dylan DeCrausaz 1 Reputation point
2020-07-28T21:12:04.88+00:00

I'm dealing with two domain controllers hosted in Hyper-V, each running Server 2008 R2. One is a primary and the other a secondary. Unfortunately I did not install them so I'll provide as much information as I can.

Shortly after acquiring this client and assessing the server, the DC 1 (primary) failed to boot, throwing a stop c00002e2 error (device connected to this system is not functioning properly). Since DC 2 was still active, I troubleshot DC 1 for several weeks to no avail. I tried all ntdsutil and esentutl commands to try to rebuild what appeared to be a corrupt database with no luck.

Fast forward several years (DC 1 has been out of commission this whole time) and DC 2 now finally decides to throw the same error and cease booting properly. Again, I tried all ntdsutil and esentutl commands I could find online, no luck. I find it surprising that so many people report success here.

I'm now out of options and looking for any assistance at ALL. This network will not function well for long without a DC, as we have several services that rely on DC authentication. Where do I start troubleshooting this?

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,601 questions
Hyper-V
Hyper-V
A Windows technology providing a hypervisor-based virtualization solution enabling customers to consolidate workloads onto a single server.
2,627 questions
0 comments

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2020-07-28T21:17:14.42+00:00

    Sounds well beyond trouble shooting. You'll need to restore one of them from a recent backup. If it isn't the role holder then you can seize roles.
    https://support.microsoft.com/en-us/help/255504/using-ntdsutil-exe-to-transfer-or-seize-fsmo-roles-to-a-domain-control
    then perform cleanup.
    https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/ad-ds-metadata-cleanup

    Then build a new replacement for the other one. It's always recommended to have at least two active domain controllers to maintain high availability and for disaster mitigation.

    --please don't forget to Accept as answer if the reply is helpful--

    0 comments
  2. Vicky Wang 2,646 Reputation points
    2020-07-31T09:08:29.36+00:00

    Hi,
     
    Just checking in to see if the information provided was helpful. Please let us know if you would like further assistance.
     
    Best Regards,
    Vicky

    0 comments
  3. Vicky Wang 2,646 Reputation points
    2020-08-06T07:58:23.987+00:00

    Hi,
     
    Just want to confirm the current situations.
     
    Please feel free to let us know if you need further assistance.
     
    Best Regards,
    Vicky 

    0 comments