Can't join anything to domain

We have an ADC running SBS 2011. We have never used the ADC. Now, for some software install requirements we need to add our new Win 2012 R2 server to the domain. This is the message I get:

The following error occurred attempting to join the domain "...":
The specified domain either does not exist or could not be contacted.

I also tried adding an XP Pro computer to the domain and get this:

The following error occurred attempting to join the domain "...":

Login failed: unknown username or bad password

December 18th, 2014 6:30pm

It looks like a DNS problem. Can you ping that SBS server? And if so, can you ping the domain?

Free Windows Admin Tool Kit Click here and download it now
December 18th, 2014 8:16pm

We can ping the server and rdp to it but not the domain. The ADC is also the domain controller. Should we be able to ping the domain if the pcs are not getting dns info from that server?

The xp machine can see the domain because it gets a login failure. If I make up a domain name it says it can't find it.

  • Edited by Aquinas Friday, December 19, 2014 2:34 AM adding details
December 18th, 2014 8:42pm

The pcs will need to know about the domain you are trying to connect to. If this is not specified in the system you are currently using for dns, then clients will not be able to connect to that domain.

How are clients currently configured for dns?

Free Windows Admin Tool Kit Click here and download it now
December 19th, 2014 5:59am

Greetings!

Two different scenarios. If Windows XP clients can ping the domain but you can not join them to the domain because of the mentioned "Login Faiure" error you have no permission to join the domain or the username and password provided is wrong. Make sure in security policy of your domain "Add workstation to domain" policy is properly configured and the username and password you are providing is correct and updated.

If you can not ping the domain is completely related to DNS as other mentioned. Add DNS address of your domain in NIC table of your computers and check name resolution process. No DNS will result in No name resolution and No joining to the domain.

Regards.

December 19th, 2014 8:04am
In addition, please make sure the dns entries for this devices are pointing tht same server that the DC is pointing to in most cases that will be the DC itself.
Free Windows Admin Tool Kit Click here and download it now
December 19th, 2014 8:52am

Hi,

from the client pc - who is already joined to the domain, see if you can hit the sysvol directory this will prove that you have healthy AD server which clients can access.

Now when you plan to join the computer, all you need to do this is ping check, DNS - static (in case DHCP is not available or DHCP is pointing to a different DNS server), you need to isolate the issue with couple of clients to understand the problem.

I would also change the hostfile on the client computer before i join this box to domain just to make sure i have direct connection and removing any DNS issue in between.

give a shot with the domain join and let us know the results, if this fails, then i would like to target your domain controller to run dcdiag /v > dcdiag.txt to examine what is going on.

Is you ADC running DNS and Global catalog service as well, is the ADC is running any FSMO roles?

December 19th, 2014 10:01am


Directory Server Diagnosis


Performing initial setup:

   Trying to find home server...

   * Verifying that the local machine SQLSVR, is a Directory Server.
   Home Server = SQLSVR

   * Connecting to directory service on server SQLSVR.

   * Identified AD Forest.
   Collecting AD specific global data
   * Collecting site info.

   Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=BCRSVR,DC=local,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
   The previous call succeeded
   Iterating through the sites
   Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=BCRSVR,DC=local
   Getting ISTG and options for the site
   * Identifying all servers.

   Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=BCRSVR,DC=local,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
   The previous call succeeded....
   The previous call succeeded
   Iterating through the list of servers
   Getting information for the server CN=NTDS Settings,CN=SQLSVR,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=BCRSVR,DC=local
   objectGuid obtained
   InvocationID obtained
   dnsHostname obtained
   site info obtained
   All the info for the server collected
   * Identifying all NC cross-refs.

   * Found 1 DC(s). Testing 1 of them.

   Done gathering initial info.


Doing initial required tests

  
   Testing server: Default-First-Site-Name\SQLSVR

      Starting test: Connectivity

         * Active Directory LDAP Services Check
         The host f2eedbe7-1c10-4262-96f6-2752a1db641d._msdcs.BCRSVR.local

         could not be resolved to an IP address. Check the DNS server, DHCP,

         server name, etc.

         Got error while checking LDAP and RPC connectivity. Please check your

         firewall settings.

         ......................... SQLSVR failed test Connectivity

Doing primary tests

  
   Testing server: Default-First-Site-Name\SQLSVR

      Skipping all tests, because server SQLSVR is not responding to directory

      service requests.

      Test omitted by user request: Advertising

      Test omitted by user request: CheckSecurityError

      Test omitted by user request: CutoffServers

      Test omitted by user request: FrsEvent

      Test omitted by user request: DFSREvent

      Test omitted by user request: SysVolCheck

      Test omitted by user request: KccEvent

      Test omitted by user request: KnowsOfRoleHolders

      Test omitted by user request: MachineAccount

      Test omitted by user request: NCSecDesc

      Test omitted by user request: NetLogons

      Test omitted by user request: ObjectsReplicated

      Test omitted by user request: OutboundSecureChannels

      Test omitted by user request: Replications

      Test omitted by user request: RidManager

      Test omitted by user request: Services

      Test omitted by user request: SystemLog

      Test omitted by user request: Topology

      Test omitted by user request: VerifyEnterpriseReferences

      Test omitted by user request: VerifyReferences

      Test omitted by user request: VerifyReplicas

  
      Test omitted by user request: DNS

      Test omitted by user request: DNS

  
   Running partition tests on : ForestDnsZones

      Starting test: CheckSDRefDom

         ......................... ForestDnsZones passed test CheckSDRefDom

      Starting test: CrossRefValidation

         ......................... ForestDnsZones passed test

         CrossRefValidation

  
   Running partition tests on : DomainDnsZones

      Starting test: CheckSDRefDom

         ......................... DomainDnsZones passed test CheckSDRefDom

      Starting test: CrossRefValidation

         ......................... DomainDnsZones passed test

         CrossRefValidation

  
   Running partition tests on : Schema

      Starting test: CheckSDRefDom

         ......................... Schema passed test CheckSDRefDom

      Starting test: CrossRefValidation

         ......................... Schema passed test CrossRefValidation

  
   Running partition tests on : Configuration

      Starting test: CheckSDRefDom

         ......................... Configuration passed test CheckSDRefDom

      Starting test: CrossRefValidation

         ......................... Configuration passed test CrossRefValidation

  
   Running partition tests on : BCRSVR

      Starting test: CheckSDRefDom

         ......................... BCRSVR passed test CheckSDRefDom

      Starting test: CrossRefValidation

         ......................... BCRSVR passed test CrossRefValidation

  
   Running enterprise tests on : BCRSVR.local

      Test omitted by user request: DNS

      Test omitted by user request: DNS

      Starting test: LocatorCheck

         GC Name: \\SQLSVR.BCRSVR.local

         Locator Flags: 0xe00033fd
         PDC Name: \\SQLSVR.BCRSVR.local
         Locator Flags: 0xe00033fd
         Time Server Name: \\SQLSVR.BCRSVR.local
         Locator Flags: 0xe00033fd
         Preferred Time Server Name: \\SQLSVR.BCRSVR.local
         Locator Flags: 0xe00033fd
         KDC Name: \\SQLSVR.BCRSVR.local
         Locator Flags: 0xe00033fd
         ......................... BCRSVR.local passed test LocatorCheck

      Starting test: Intersite

         Skipping site Default-First-Site-Name, this site is outside the scope

         provided by the command line arguments provided.
         ......................... BCRSVR.local passed test Intersite

Free Windows Admin Tool Kit Click here and download it now
December 19th, 2014 2:40pm



      Starting test: Connectivity

         * Active Directory LDAP Services Check
         The host f2eedbe7-1c10-4262-96f6-2752a1db641d._msdcs.BCRSVR.local

         could not be resolved to an IP address. Check the DNS server, DHCP,

         server name, etc.

         Got error while checking LDAP and RPC connectivity. Please check your

         firewall settings.

         ......................... SQLSVR failed test Connectivity

 Do what it says Aquinas. :)
December 19th, 2014 11:33pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics