Share via

Cannot create any host DNS zone is locked

Md. Rubiat Haque 151 Reputation points
2021-06-17T07:30:13.823+00:00

Hi,

I have 2 DC where I can't creating any DNS record. When I create a record, getting this error.

106440-image.png

Please provide me the solution with appropriate definition. If any group policy need to create then please also describe the reason. It is urgent.

Note: I have also tried to change dynamic update type from secure to non secure and secure only but when i clicked apply, i was getting the above error.

Thank You

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,642 questions
Windows DHCP
Windows DHCP
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.DHCP: Dynamic Host Configuration Protocol (DHCP). A communications protocol that lets network administrators manage centrally and automate the assignment of Internet Protocol (IP) addresses in an organization's network.
1,040 questions

5 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2021-06-17T12:26:12.3+00:00

    It may have been in the middle of updating. Try again in a few minutes.

    --please don't forget to upvote and Accept as answer if the reply is helpful--

    0 comments
  2. Sunny Qi 11,051 Reputation points Microsoft Vendor
    2021-06-18T03:11:24.347+00:00

    Hi,

    Welcome to Q&A platform.

    For dynamic update, in these two scenarios nonsecure and secure, secure only, the host record cannot be created in these 2 scenarios?

    If the record cannot be created in nonsecure and secure scenario, please check if there is any related event log in Event viewer for further troubleshooting.

    Best Regards,
    Sunny

    ----------

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

  3. Anonymous
    2021-06-20T12:10:20.533+00:00
    • 4016 The DNS server timed out attempting an Active Directory service operation on <distinguished name>. Check Active Directory to see that it is functioning properly. The event data contains the error.
    • 4004 The DNS server is configured to use information obtained from Active Directory for this zone and is unable to load the zone without it.
      Check that Active Directory is functioning properly and repeat enumeration of the zone.
    • 519 Record create - dynamic update
    • 520 Record delete - dynamic update
    • 4016 The DNS server timed out attempting an Active Directory service operation on <distinguished name>. Check Active Directory to see that it is functioning properly. The event data contains the error.

    Please run;

    Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log
    repadmin /showrepl >C:\repl.txt
    ipconfig /all > C:\dc1.txt
    ipconfig /all > C:\dc2.txt

    then put unzipped text files up on OneDrive and share a link.

    0 comments
  4. Sunny Qi 11,051 Reputation points Microsoft Vendor
    2021-06-21T07:40:56.34+00:00

    Hi,

    Thanks for your update.

    I would like to confirm with you the following information with you:

    1. Is the issue occurred in all zones which hosted by this DNS server or only occurred in some specific zones?
    2. Is the issue only occurred when created Host record or occurred when created all kinds of records?
    3. What's the type of these problematic zones? AD integrated zone or primary zone or secondary zone?
    4. May I know why do you need created the Host record manually? As far as I know, the host record can be dynamically updated by Client or DHCP server.

    I would also suggest you run those commands provided by DSPatrick, and please kindly check if there is any error message after running these commands, if yes, please post the specific error message for further troubleshooting.

    Best Regards,
    Sunny

    ----------

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

  5. Anonymous
    2021-06-21T12:13:52.84+00:00

    Just checking if there's any progress or updates?

    --please don't forget to upvote and Accept as answer if the reply is helpful--

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.