Azure AD Domain Join error code 0x0000232B RCODE_NAME_ERROR

Sand Box 1 Reputation point
2020-06-17T03:03:47.23+00:00

Just setup a new Azure AD subscription associated with our Azure AD. Deployed a new Windows Server 2019 Data Center VM and whenever I attempt to join the VM to our domain (which I can ping by name from a command prompt) I get the following error:

(domain name and IP changed for posting)

The error was: "DNS name does not exist." (error code 0x0000232B RCODE_NAME_ERROR) The query was for the SRV record for _ldap._tcp.dc._msdcs.ourdomain.com Common causes of this error include the following: - The DNS SRV records required to locate a AD DC for the domain are not registered in DNS. These records are registered with a DNS server automatically when a AD DC is added to a domain. They are updated by the AD DC at set intervals. This computer is configured to use DNS servers with the following IP addresses: 1.2.3.4 - One or more of the following zones do not include delegation to its child zone: ourdomain.com com . (the root zone)

The VNET has the Azure Active Directory Service Endpoint enabled so I would expect the DNS Server to have the required DNS SRV records needed for this.

What am I missing here? Thanks!

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,621 questions
Azure DNS
Azure DNS
An Azure service that enables hosting Domain Name System (DNS) domains in Azure.
393 questions
No comments
{count} votes

1 answer

Sort by: Most helpful
  1. AmanpreetSingh-MSFT 55,201 Reputation points
    2020-06-17T14:05:47.927+00:00

    Hello @SandBox-3325

    This error usually occur if the computer that you want to join to the domain is not able to resolve the domain name. Please try to configure the IP addresses of Azure AD Domain Services object as DNS server address in the V-Net. You can find the IP Address in the overview blade of the Network Interfaces created for Azure AD Domain Services and in properties of Azure AD Domain Services object as well.


    Please do not forget to "Accept the answer" wherever the information provided helps you. This will help others in the community as well.

    No comments