dns event 4016 timed out attempting an active directory service operation
folks:
in dns event log, have many 4016 errors (the dns server timed out while attempting active directory operation), , references ad server.
can me figure out?
micah
starting test: kccevent
warning event occurred. eventid: 0x800004c0
time generated: 10/14/2013 00:12:48
evtformatmessage failed (second call), error 15029 substitution
string insert index (%1) not found..
(event string (event log = directory service) not be
retrieved, error 0x3ab5)
this can tricky one. see there kcc error. kcc service partners dcs replication within site , uses istg create partnerships between sites , maintains replication topology.
i assume following:
- all dcs, member servers , workstations using dcs dns, meaning no outside dns servers or router being used dns server on machine.
- none of dcs multihomed (more 1 unteamed nic, ip address, rras or iscsi connection on it).
- an ipconfig /all not show wins proxy or ip routing enabled.
- the windows firewall disabled (done in control panel, windows firewall)
- any antivirus software's sercurity features have been disabled. av major cause of ad dc communications , functionality problems if not configured exclude ad , dc functions, files , folders.
-
here's more info on it:
http://eventid.net/display.asp?eventid=4016&eventno=1632&source=dns&phase=1
-
if use adsi edit, can see zones in database? can use blog below on how connect partitions view dns zones. while you're @ it, can check make sure no duplicate zones exist.
using adsi edit resolve conflicting or duplicate ad integrated dns zones
http://msmvps.com/blogs/acefekay/archive/2009/09/02/using-adsi-edit-to-resolve-conflicting-or-duplicate-ad-integrated-dns-zones.aspx
-
another suggestion try following, and work fine if have handful of dcs, if have numerous dcs , in many sites, not recommend due complexity of process , dcs involved.
- turn zone into a primary zone.
- stop dns service
- delete zone(s)
- delete data in the system32\dns folder
- delete the system32\config\netlogon.dns , netlogon.bak files
- uninstall dns - not restart machine
- reinstall dns - not restart machine
- re-create zone
- enable updates
- ipconfig /registerdns
- net stop netlogon
- net start netlogon
- makes sure srv records exist , see if helps.
-
here's info on troubleshooting kccevents microsoft ask ds team:
http://blogs.technet.com/b/askds/archive/2008/10/31/troubleshooting-kcc-event-log-errors.aspx
-
if have numerous dcs, , above suggestions not work, maybe best bet demote dc in question, repromote it.
-
ace fekay
mvp, mct, mcitp/ea, mcts windows 2008/r2 & exchange 2007, exchange 2010 ea, mcse & mcsa 2003/2000, mcsa messaging 2003
microsoft certified trainer
microsoft mvp - directory services
technical blogs & videos: http://www.delawarecountycomputerconsulting.com/
this post provided as-is no warranties or guarantees , confers no rights.
Windows Server > Directory Services
Comments
Post a Comment