Share via

DFS cache issue

Anonymous
2022-11-24T12:18:25+00:00

We have a domain which has 6 different sites, 3 of the sites has a DC and a DFS server. To make this easier to see:
Site A: DC + DFS + PCs

Site B: DC + DFS + PCs

Site C: DC +DFS + PCs

Site D: just PCs, all PCs point DNS to site A plus DFS

Site E: just PCS all PCs point DNS to site A plus DFS

Site F: just PCs all PCs point DNS to site A plus DFS.

All PCs (all windows 10) in the entire network got built at site A then physically installed at each site.

The DFS issue is that we have 2 shares Share A and Share B that get pushed out via gpo to all users and all sites and PCs. The issue is Share A and B both appear but when you click on them it says "K:\ is not unavailable, if the location is connected or the disc is inserted, and then try again. If the location is on a network, make sure you're connected to the network or internet, and then try again. If the location still cant be found, it might have been moved or deleted." If you wait about 20 minutes or so then the Shares both work at site E and F. This does NOT happen at every site. Sites A, B, C, and D are fine. Site E and F have the issues. All sites have the exact same group policies. If I rebuild a PC at site E or F and rejoin it to the domain they pick up the shares and they work fine. But I dont want to have to rebuild every PC that has the issue. If I clear the DFS cache on the PCs that cant access the shares using the commands (as an admin) "dfsutil cache referral flush" or even "dfsutil /spcflush" it flushes the DFS cache and then after about 2 minutes, the shares appear and work. The issue is though, when I reboot the PCs at sites E and F after clearing the cache they then have the DFS issue after reboot as if it picks up its cached DFS issue from somewehre again. The only way is to rebuild them, which long.

I have checked ADSI to see if there are any old DFS servers or paths still around, there isn't. I have checked that all DFS servers have access based enumeration checked on both shares, they do, they all match. I have ran "DFSDiag /TestDFSIntegrity /DFSRoot:\domain.com\Fileshares /Recurse" on all servers, there all ok. I have ran dcdiag on the DCs, all came back ok with no issues. if I run 'dfsutil /pktinfo" on a faulty client PC they point to the correct share paths.

One thing I did notice which was a bit weird was that when I ran 'dfsutil /spcinfo' on each DFS server, I found Site B DFS had a * symbol within its actual name output below (but the PCs with the issues are trying to pull the shares from Site A I believe as thats where it gets them from when they do actually work):
[*][2003server1.contoso.com*contoso.com] - There should not be a * symbol within the name itself as shown here.

[*][CONTOSO]

[*][contoso.com]

[+][CONTOSO] 

[-2003server2] 

[+2003server1]

[-][contoso.com]

I am out of ideas... any ideas help will be gratefully appreciated. Is there somewhere I can see where the cached DFS info lies or gets pulled from?

Windows for home | Other | Files, folders, and storage

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.

0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. David-M 112.6K Reputation points Independent Advisor
    2022-11-24T12:52:05+00:00

    Hi, I'm David.

    Sorry. The Microsoft Community is a forum for home users.

    Due to the scope of your question, I suggest you access the link below, which will direct you to the Microsoft Q&A page.

    https://learn.microsoft.com/en-us/answers/index...

    Microsoft Q&A has IT professionals and system admins who can best help with this type of question.

    Best regards.

    Was this answer helpful?

    0 comments