先说一下环境
父域:PRI1(192.168.1.1) 额外域PRI2(192.168.1.2)
子域:SUB1(192.168.0.1) 额外域SUB2(192.168.0.2)
因为子域SUB1有问题,所以才建的SUB2,但在安装SUB2的AD时发现没有共享SYSVOL和NETLOGON,后来从网上找了一些方法共享上这两个了,但感觉还是有问题,在SUB2下运行的诊断如下:
加/v参数
Domain Controller Diagnosis
Performing initial setup:
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SUB2
Starting test: Connectivity
......................... SUB2 passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SUB2
Starting test: Replications
[PRI1] DsBindWithSpnEx() failed with error 1722,
RPC 服务器不可用。.
[Replications Check,SUB2] A recent replication attempt failed:
From SUB1 to SUB2
Naming Context: CN=Schema,CN=Configuration,DC=wwwdomain,DC=com
The replication generated an error (1722):
RPC 服务器不可用。
The failure occurred at 2008-05-30 09:13:31.
The last success occurred at 2008-05-30 08:57:06.
1 failures have occurred since the last success.
The source SUB1 is responding now.
[PRI2] DsBindWithSpnEx() failed with error 1722,
RPC 服务器不可用。.
[Replications Check,SUB2] A recent replication attempt failed:
From SUB1 to SUB2
Naming Context: CN=Configuration,DC=wwwdomain,DC=com
The replication generated an error (1722):
RPC 服务器不可用。
The failure occurred at 2008-05-30 09:13:10.
The last success occurred at 2008-05-30 08:57:05.
1 failures have occurred since the last success.
The source SUB1 is responding now.
[Replications Check,SUB2] A recent replication attempt failed:
From SUB1 to SUB2
Naming Context: DC=ForestDnsZones,DC=wwwdomain,DC=com
The replication generated an error (1722):
RPC 服务器不可用。
The failure occurred at 2008-05-30 09:14:32.
The last success occurred at 2008-05-30 08:57:06.
1 failures have occurred since the last success.
The source SUB1 is responding now.
[Replications Check,SUB2] A recent replication attempt failed:
From SUB1 to SUB2
Naming Context: DC=DomainDnsZones,DC=wclszo,DC=wwwdomain,DC=com
The replication generated an error (1722):
RPC 服务器不可用。
The failure occurred at 2008-05-30 09:14:16.
The last success occurred at 2008-05-30 08:57:06.
1 failures have occurred since the last success.
The source SUB1 is responding now.
......................... SUB2 passed test Replications
Starting test: NCSecDesc
......................... SUB2 passed test NCSecDesc
Starting test: NetLogons
......................... SUB2 passed test NetLogons
Starting test: Advertising
Warning: SUB2 is not advertising as a time server.
......................... SUB2 failed test Advertising
Starting test: KnowsOfRoleHolders
Warning: PRI2 is the Schema Owner, but is not responding to DS RPC Bind.
[PRI2] LDAP search failed with error 58,
指定的服务器无法运行请求的操作。.
Warning: PRI2 is the Schema Owner, but is not responding to LDAP Bind.
Warning: PRI1 is the Domain Owner, but is not responding to DS RPC Bind.
[PRI1] LDAP search failed with error 58,
指定的服务器无法运行请求的操作。.
Warning: PRI1 is the Domain Owner, but is not responding to LDAP Bind.
......................... SUB2 failed test KnowsOfRoleHolders
Starting test: RidManager
......................... SUB2 passed test RidManager
Starting test: MachineAccount
......................... SUB2 passed test MachineAccount
Starting test: Services
......................... SUB2 passed test Services
Starting test: ObjectsReplicated
......................... SUB2 passed test ObjectsReplicated
Starting test: frssysvol
......................... SUB2 passed test frssysvol
Starting test: frsevent
......................... SUB2 passed test frsevent
Starting test: kccevent
......................... SUB2 passed test kccevent
Starting test: systemlog
An Error Event occured. EventID: 0xC25A001D
Time Generated: 05/30/2008 09:12:19
Event String: The time provider NtpClient is configured to
An Error Event occured. EventID: 0xC0001B6E
Time Generated: 05/30/2008 09:14:24
(Event String could not be retrieved)
......................... SUB2 failed test systemlog
Starting test: VerifyReferences
......................... SUB2 passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CrossRefValidation
......................... ForestDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Running partition tests on : DomainDnsZones
Starting test: CrossRefValidation
......................... DomainDnsZones passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Running partition tests on : wclszo
Starting test: CrossRefValidation
......................... wclszo passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... wclszo passed test CheckSDRefDom
Running partition tests on : Schema
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Running partition tests on : Configuration
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Running enterprise tests on : wwwdomain.com
Starting test: Intersite
......................... wwwdomain.com passed test Intersite
Starting test: FsmoCheck
Warning: DcGetDcName(TIME_SERVER) call failed, error 1355
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 1355
A Good Time Server could not be located.
......................... wwwdomain.com failed test FsmoCheck
但是不加/v的诊断结果却是
Starting test: FsmoCheck
......................... wwwdomain.com passed test FsmoCheck
过了几天,加不加/v都通过FSMOCHECK了。但其它错误还是存在。
下面是它的FSMO角色
C:\Program Files\Support Tools>netdom query fsmo
Schema owner PRI2.wwwdomain.com
Domain role owner PRI1.wwwdomain.com
PDC role SUB2.[url]www.wwwdomain.com[/url]
RID pool manager SUB2.[url]www.wwwdomain.com[/url]
Infrastructure owner SUB2.[url]www.wwwdomain.com[/url]
The command completed successfully.
下面是它的netdiag
.......................................
Computer Name: SUB2
DNS Host Name: SUB2.[url]WWW.WWWDOMAIN.com[/url]
System info : Microsoft Windows Server 2003 (Build 3790)
Processor : x86 Family 6 Model 15 Stepping 13, GenuineIntel
List of installed hotfixes :
Q147222
Netcard queries test . . . . . . . : Failed
GetStats failed for '直接并口'. [ERROR_NOT_SUPPORTED]
GetStats failed for 'WAN 微型端口 (PPTP)'. [ERROR_INVALID_FUNCTION]
GetStats failed for 'WAN 微型端口 (PPPOE)'. [ERROR_INVALID_FUNCTION]
GetStats failed for 'WAN 微型端口 (IP)'. [ERROR_INVALID_FUNCTION]
GetStats failed for 'WAN 微型端口 (L2TP)'. [ERROR_NOT_SUPPORTED]
GetStats failed for 'Intel(R) 82566DM-2 Gigabit Network Connection'. [ERROR_INVALID_FUNCTION]
[FATAL] - None of the netcard drivers provided satisfactory results.
Per interface results:
Adapter : 本地连接 2
Netcard queries test . . . : Failed
NetCard Status: UNKNOWN
Host Name. . . . . . . . . : SUB2
IP Address . . . . . . . . : 192.168.0.2
Subnet Mask. . . . . . . . : 255.255.255.0
Default Gateway. . . . . . : 192.168.0.253
Primary WINS Server. . . . : 132.148.160.6
Dns Servers. . . . . . . . : 192.168.0.2
132.148.160.6
AutoConfiguration results. . . . . . : Passed
Default gateway test . . . : Passed
NetBT name test. . . . . . : Passed
[WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.
WINS service test. . . . . : Passed
Global results:
Domain membership test . . . . . . : Passed
NetBT transports test. . . . . . . : Passed
List of NetBt transports currently configured:
NetBT_Tcpip_{8A082817-0D1A-42EE-A721-B0A03A23C035}
1 NetBt transport currently configured.
Autonet address test . . . . . . . : Passed
IP loopback ping test. . . . . . . : Passed
Default gateway test . . . . . . . : Passed
NetBT name test. . . . . . . . . . : Passed
[WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.
Winsock test . . . . . . . . . . . : Passed
DNS test . . . . . . . . . . . . . : Passed
[WARNING] The DNS entries for this DC are not registered correctly on DNS server '192.168.5.193'. Please wait for 30 minutes for DNS server replication.
PASS - All the DNS entries for DC are registered on DNS server '132.148.160.65' and other DCs also have some of the names registered.
Redir and Browser test . . . . . . : Passed
List of NetBt transports currently bound to the Redir
NetBT_Tcpip_{8A082817-0D1A-42EE-A721-B0A03A23C035}
The redir is bound to 1 NetBt transport.
List of NetBt transports currently bound to the browser
NetBT_Tcpip_{8A082817-0D1A-42EE-A721-B0A03A23C035}
The browser is bound to 1 NetBt transport.
DC discovery test. . . . . . . . . : Passed
DC list test . . . . . . . . . . . : Passed
Trust relationship test. . . . . . : Skipped
Kerberos test. . . . . . . . . . . : Passed
LDAP test. . . . . . . . . . . . . : Passed
Bindings test. . . . . . . . . . . : Passed
WAN configuration test . . . . . . : Skipped
No active remote access connections.
Modem diagnostics test . . . . . . : Passed
IP Security test . . . . . . . . . : Skipped
Note: run "netsh ipsec dynamic show /?" for more detailed information
The command completed successfully
哪位前辈知道怎么解决吗?麻烦帮忙看看。谢谢!
附件: 您所在的用户组无法下载或查看附件