This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi All,
I have been digging through Google and trying fixes all day, I've never run into this problem quite this bad. I am trying to add another domain controller to my domain. There is only one currently and this is a 2012 R2 DC with the same being added. Here is the full error:
The operation failed because:
The Active Directory Domain Services Installation Wizard (Dcpromo.exe) was unable to convert the computer account CTG-HQ-DC$ to an Active Directory Domain Controller account.
Verify that the user running Dcpromo.exe is granted the "Enable computer and user accounts to be trusted for delegation" user right in the Default Domain Controllers Policy.
For more information, see the resolution section of http://go.microsoft.com/fwlink/?LinkId=178406.
The error was:
"The specified network resource or device is no longer available."
This is what I have verified so far
Anyone have any thoughts?
Please run;
Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log
repadmin /showrepl >C:\repl.txt
ipconfig /all > C:\dc1.txt
ipconfig /all > C:\dc2.txt
ipconfig /all > C:\dc3.txt
then put unzipped text files up on OneDrive and share a link.
Just checking if there's any progress or updates?
--please don't forget to upvote and Accept as answer if the reply is helpful--
Might work through this one.
https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/access-denied-error-occurs-dcpromo
--please don't forget to upvote and Accept as answer if the reply is helpful--
Does this help, this is the error in Event Viewer when DCPROMO fails
Internal error: An Active Directory Domain Services error has occurred.
Additional Data
Error value (decimal):
-1073741823
Error value (hex):
c0000001
Internal ID:
300181e
Not really, what Event source and event ID?
Looking into it now. Additional information. As I am trying to clean out all of the old DCs in DNS manager, once I refresh the screen their SRV, GC, LDAP records all start reappearing. Very confusing, they are not in ADUC, they don't have site records, they don't physically exist anymore, but they keep coming back. Even using NTDSUTIL can't connect to them because they don't exist.
I already verified that the Admin account has this right and the GPO is populating to the current DC and it is applied via the results screen.
You can also start a case here with product support.
https://support.serviceshub.microsoft.com/supportforbusiness
--please don't forget to upvote and Accept as answer if the reply is helpful--
Just checking if there's any progress or updates?
--please don't forget to upvote and Accept as answer if the reply is helpful--
The Event ID is 1168, I'm working through some other searches and building another server.
Could be some corruption.
https://learn.microsoft.com/en-US/troubleshoot/windows-server/identity/complete-semantic-database-analysis-ad-db
https://support.microsoft.com/en-us/topic/75cc8f0b-764e-d9ca-14f2-a90d5d39ee75
--please don't forget to upvote and Accept as answer if the reply is helpful--
Just checking if there's any progress or updates?
--please don't forget to upvote and Accept as answer if the reply is helpful--
I will get these items for you on Monday as I am not in my office over the weekend.
Sounds good.
Just checking if there's any progress or updates?
--please don't forget to
upvoteandAccept as answerif the reply is helpful--Running your commands now, I will have an update shortly.
Thanks,
Here is the link to the files.
https://corporatetechnologi-my.sharepoint.com/:f:/g/personal/bfogliano_ctgusa_net/EkQizJYVMElLvd3We1ChuLgBeJ76OqT9pPWqzoHI_GS0NA?e=Up6wEI
One thing that I found interesting was that even after removing after reference to our old DNS server it is still showing up in the DCDIAG. I flushed the DNS, made sure it was not statically assigned anymore and pulled every reference out of the DNS manager. Would a reboot of the server help?
Sign in to comment