Netlogon Event ID: 5774 We renamed a Windows 2003 domain  and after completing successfully, we found that the DNS records are still being registered for the Old Domain Name.

Environment: Windows Server 2003 R2

Renaming domain is a complex task, ensuring all the functionality in Domain to remain working. However, in this particular environment, we follow everything by the book. Unfortunately, something was still not done properly, and finally we started to dig deeper to find what went wrong. Primarily we noticed the following event in the logs to start our troubleshooting with:


Event Type: Error
Event Source: NETLOGON
Event Category: None
Event ID: 5774
Date:  12/18/2014
Time:  4:02:57 AM
User:  N/A
Computer: DC01
Description:
The dynamic registration of the DNS record ‘_kpasswd._udp..com. 600 IN SRV 0 100 464 NewDC..com.’ failed on the following DNS server:

DNS server IP address: x.x.x.x
Returned Response Code: 9
Returned Status Code: 9009

For computers and users to locate this domain controller, this record must be registered in DNS.

USER ACTION
Determine what might have caused this failure, resolve the problem, and initiate registration of the DNS records by the domain controller. To determine what might have caused this failure, run DCDiag.exe. You can find this program on the Windows Server 2003 installation CD in Support\Tools\support.cab. To learn more about DCDiag.exe, see Help and Support Center. To initiate registration of the DNS records by this domain controller, run ‘nltest.exe /dsregdns’ from the command prompt on the domain controller or restart Net Logon service. Nltest.exe is available in the Microsoft Windows Server Resource Kit CD.
Or, you can manually add this record to DNS, but it is not recommended.

ADDITIONAL DATA

Error Value: DNS server not authoritative for zone.


Resolution: The easiest fix we found to this problem was to run “random /clean” again. Yes, we did run it first time as well, but may have over looked the results on the first place. However, as we were advised, ran this command again against all the Domain Controllers in the following format.

rendom /clean /dc:DCName

rendom /end

Once we ran the above command against all the domain controllers, we were able to successfully register the proper DNS records for the New Domain.

 

The following two tabs change content below.
Passionate for Latest Gadgets, a Computer geek by Hobby, and luckily Profession too. Started my career in 2005 with IBM, worked with Microsoft later. Back in 2009, started Pledge Technologies (www.pledgetechnologies.com) (parent company to Grishbi). We, at Pledge Technologies, provide IT Consulting to SMBs across US & UK. Specialized in Microsoft Technologies like AD, Exchange, etc., and lot of experience of Office 365 Migration for various clients. Grishbi is a platform where we express what we learned today, and share it with world.
%d bloggers like this: