I just inherited a clients network.  I cannot add any new PC's to the network.  The server is getting all kinds of errors.  Specifically DNS 4000 and 4013, AD event 1126 that it was unable to establish a connection with the global catalog(yet when I check, this server is the global catalog), also all types of DFS and FRS errors.

The server is pointing to itself for DNS as well as all clients.  Any help would be appreciated!

Thanks!

Hi

Is there any other DC on your domain?if yes,check the replication between them"repadmin /replsum"And which is the fsmo roles holder,check with "netdom query fsmo" also is it avaible??

if it is single DC on domain, Please first run "ipconfig /all" and check config.only 1 nic and ip configuration have to registered on DNS...

And check DC health to run "dcdiag" then check for errors..

And check this article for event is 1126;

https://technet.microsoft.com/en-us/library/cc756476(v=ws.10).aspx

Event id 4000&4013 means simply AD DS,DNS needs to be restart;

https://technet.microsoft.com/en-us/library/cc735673%28v=ws.10%29.aspx?f=255&MSPPError=-2147217396

Thanks for the response.  It is a single server DC(may have been more at one time though).  I will run the reports.

C:\Users\administrator.PCCPA>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : PCCPA_Server
   Primary Dns Suffix  . . . . . . . : pccpa.local
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : pccpa.local

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel(R) I350 Gigabit Network Connection
   Physical Address. . . . . . . . . : 00-25-90-7C-F6-AC
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5991:ee5d:906d:239f%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 10.0.0.10(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 167781776
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-EB-EC-B1-00-25-90-7C-F6-AC

   DNS Servers . . . . . . . . . . . : 10.0.0.10
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{8C6BA373-09B7-4F27-A7C2-879EAA49AB0C}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

C:\Users\administrator.PCCPA>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : PCCPA_Server
   Primary Dns Suffix  . . . . . . . : pccpa.local
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : pccpa.local

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel(R) I350 Gigabit Network Connection
   Physical Address. . . . . . . . . : 00-25-90-7C-F6-AC
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5991:ee5d:906d:239f%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 10.0.0.10(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 167781776
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-EB-EC-B1-00-25-90-7C-F6-AC

   DNS Servers . . . . . . . . . . . : 10.0.0.10
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{8C6BA373-09B7-4F27-A7C2-879EAA49AB0C}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

C:\Users\administrator.PCCPA>dcdiag

Directory Server Diagnosis

Performing initial setup:
   Trying to find home server...
   Home Server = PCCPA_Server
   * Identified AD Forest.
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site-Name\PCCPA_SERVER
      Starting test: Connectivity
         The host 6ca2f3ac-af57-435c-8ef0-e8b036f069f2._msdcs.pccpa.local could
         not be resolved to an IP address. Check the DNS server, DHCP, server
         name, etc.
         Got error while checking LDAP and RPC connectivity. Please check your
         firewall settings.
         ......................... PCCPA_SERVER failed test Connectivity

Doing primary tests

   Testing server: Default-First-Site-Name\PCCPA_SERVER
      Skipping all tests, because server PCCPA_SERVER is not responding to
      directory service requests.


   Running partition tests on : ForestDnsZones
      Starting test: CheckSDRefDom
         ......................... ForestDnsZones passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... ForestDnsZones passed test
         CrossRefValidation

   Running partition tests on : DomainDnsZones
      Starting test: CheckSDRefDom
         ......................... DomainDnsZones passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... DomainDnsZones passed test
         CrossRefValidation

   Running partition tests on : Schema
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation

   Running partition tests on : Configuration
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation

   Running partition tests on : pccpa
      Starting test: CheckSDRefDom
         ......................... pccpa passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... pccpa passed test CrossRefValidation

   Running enterprise tests on : pccpa.local
      Starting test: LocatorCheck
         ......................... pccpa.local passed test LocatorCheck
      Starting test: Intersite
         ......................... pccpa.local passed test Intersite

C:\Users\administrator.PCCPA>

Your IP settings look OK. However, I can see the following error message:

The host 6ca2f3ac-af57-435c-8ef0-e8b036f069f2._msdcs.pccpa.local could
         not be resolved to an IP address. 

As you can see, the DC is unable to resolve a DNS record to an IP.

Please make sure the _msdcs.pccpa.local zone exists and accept dynamic DNS updates. If it does not exist then create it manually.

Also, run ipconfig /registerdns and restart netlogon service to force the update of DNS records.

Yeah, I see that.  The issue is I cannot access DNS Console from this server or a Windows 7 box with admin tools installed.  I get an access denied error...  Thanks for the reply!

Any ideas? Thanks!

Hi

 Please modify the protocol bindings and network provider order on DC.(your prefered seems to IPv6,needs to change to IPv4).

https://technet.microsoft.com/en-us/library/cc732472%28v=ws.10%29.aspx?f=255&MSPPError=-2147217396

Just checked this, and IPv4 is listed as first binding.

Any other ideas?  Thanks!

Hi,

The DNS Server service relies on Active Directory Domain Services (AD DS) to store and retrieve information for AD DS-integrated zones. 4000 error indicates that AD DS is not responding to requests from the DNS Server service. Ensure that AD DS is functioning properly, troubleshoot any problems, and then restart the DNS Server service.

To restart the DNS Server service:

1. On the DNS server, start Server Manager. To start Server Manager, click Start, click Administrative Tools, and then click Server Manager.
2. In the console tree, expand Roles, expand DNS Server, and then expand DNS.
3. Right-click the DNS server, click All Tasks, and then click Restart.

https://technet.microsoft.com/en-us/library/dd349683(v=WS.10).aspx

Regards.

Thank you for the reply.  I have restarted the DNS server, and rebooted the server with the same result. I cannot launch the DNS console from any system, it states that access is denied.  Thanks!

Hi

 Do you have a success backup of DNS,so i recommend you remove DNS,then install DNS role again.