Share via

DNS error 4015 on backup DC servers if main DC is off

Kahi N 1 Reputation point
Apr 7, 2021, 10:57 AM

Everything related to this error seams to be IP addressing issue so far but I cant see thats may case.

I have 3 -Domain Controllers(Windows Server 2019): lets call them DC1, DC2 and DC3.
DC1 and DC2 are located on same site and DC3 is on remote site.

DC1 - is main server (operations master).
As a DNS IP it has DC2s IP address and itself.

DC2 - for backup and redundancy.
As a DNS IP it has DC1s IP and Itself.

DC3 - serves as Domain Controller and DNS for remote site
As a DNS IP it has DC2s IP address and itself. (No DC1s IP at all)

when DC1 is up and running I have no events or issues. Also, dcdiag.exe shows no issues.

When DC1 is off I see 4015 error logged every 5min on DC2 and DC3 ( which is remote server)
Strangely Im also loosing DFS management to my Namespace though I still can access my share and users not having issues. This could be somehow related with DNS errors I guess.

If main DC1 is off and I run dcdiag it complains that role holder is nor reachable as expected.

I have flushed, reregistered, restarted DNS server on DC2 but still same outcome.

Also not having DNS or AD/DS replication issues, as lets say if I create entry on DC2s DNS while DC1 is off, when DC1 comes back it replicates from DC2 and all records are equal.

I would highly appreciate any suggestions or thoughts.

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,984 questions
Windows Server 2012
Windows Server 2012
A Microsoft server operating system that supports enterprise-level management, data storage, applications, and communications.
1,638 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,726 questions
Windows DHCP
Windows DHCP
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.DHCP: Dynamic Host Configuration Protocol (DHCP). A communications protocol that lets network administrators manage centrally and automate the assignment of Internet Protocol (IP) addresses in an organization's network.
1,047 questions

9 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    Apr 7, 2021, 2:31 PM

    Sounds like problematic DNS configuration.
    https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/dd349575(v=ws.10)?redirectedfrom=MSDN

    Short outages of the PDC emulator should be a big deal. If there is going to be an extended outage you may want to transfer the roles to another healthy domain controller.

    --please don't forget to Accept as answer if the reply is helpful--

    0 comments
  2. Kahi N 1 Reputation point
    Apr 8, 2021, 2:57 AM

    I have tried that, restarting servers doesnt log any errors or warnings.
    Even if I stop main DC1 DNS Server completely non of other server DC2 or DC3 complain or log any error.
    I assume this is not related with DC1 DNS and its something else?

    So when you say short outage of PDC emulator is big deal, is this behaviour expected? Or there is some issue behind that?
    Im not shutting down main DC1 longer then and hour to see what happens next, but as soon as its of DNS error 4015 logs every 5 min on all servers.
    Even on servers not pointing to DC1 in their DNS entry.

    Any other troubleshooting steps for this?

    0 comments
  3. Sunny Qi 11,076 Reputation points Microsoft External Staff
    Apr 8, 2021, 3:04 AM

    Hi,

    Thanks for posting in Q&A platform.

    Before we go further, could you please help to provide screenshot of the Event 4015 with specific errors for further troubleshooting?

    Best Regards,
    Sunny

    0 comments
  4. Kahi N 1 Reputation point
    Apr 8, 2021, 5:16 AM

    85539-untitled.jpg

    This is when DC1(main server) is off. This error comes up straight away after 5 min and keeps logging

    0 comments
  5. Sunny Qi 11,076 Reputation points Microsoft External Staff
    Apr 8, 2021, 6:47 AM

    Hi,

    Thank you for your feedback.

    For testing, could you please configure the zone to allow both non-secure and secure update on DC2 and DC3 when DC1 was down? Then please kindly check if event 4015 is still occurred.

    If the issue still existed, please run the following command in DC2 and DC3, and please share the results for us further troubleshooting. (Please remove the information which may leak your private information)

    Dcdiag /v >c:\dcdiag1.log

    Repadmin /showrepl >C:\repl.txt

    *Repadmin /showreps *

    Best Regards,
    Sunny

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.