C:\Users\Administrator.NGAMIE>dcdiag Directory Server Diagnosis Performing initial setup: Trying to find home server... Home Server = HLG70SW11EX * Identified AD Forest. Done gathering initial info. Doing initial required tests Testing server: Default-First-Site-Name\HLG70SW11EX Starting test: Connectivity ......................... HLG70SW11EX passed test Connectivity Doing primary tests Testing server: Default-First-Site-Name\HLG70SW11EX Starting test: Advertising Fatal Error:DsGetDcName (HLG70SW11EX) call failed, error 1355 The Locator could not find the server. ......................... HLG70SW11EX failed test Advertising Starting test: FrsEvent ......................... HLG70SW11EX passed test FrsEvent Starting test: DFSREvent There are warning or error events within the last 24 hours after the SYSVOL has been shared. Failing SYSVOL replication problems may cause Group Policy problems. ......................... HLG70SW11EX failed test DFSREvent Starting test: SysVolCheck ......................... HLG70SW11EX passed test SysVolCheck Starting test: KccEvent A warning event occurred. EventID: 0x80000829 Time Generated: 08/04/2024 12:36:54 Event String: This directory partition has not been backed up since at least the following number of days. A warning event occurred. EventID: 0x80000829 Time Generated: 08/04/2024 12:36:54 Event String: This directory partition has not been backed up since at least the following number of days. A warning event occurred. EventID: 0x80000829 Time Generated: 08/04/2024 12:36:54 Event String: This directory partition has not been backed up since at least the following number of days. A warning event occurred. EventID: 0x80000829 Time Generated: 08/04/2024 12:36:54 Event String: This directory partition has not been backed up since at least the following number of days. A warning event occurred. EventID: 0x80000829 Time Generated: 08/04/2024 12:36:54 Event String: This directory partition has not been backed up since at least the following number of days. A warning event occurred. EventID: 0x80000603 Time Generated: 08/04/2024 12:37:34 Event String: Active Directory Domain Services could not disable the software-based disk write cache on the following hard disk. A warning event occurred. EventID: 0x80000BEB Time Generated: 08/04/2024 12:37:35 Event String: The directory has been configured to not enforce per-attribute authorization during LDAP add operations. Warning events will be logged, but no requests will be blocked. A warning event occurred. EventID: 0x80000BEE Time Generated: 08/04/2024 12:37:35 Event String: The directory has been configured to allow implicit owner privileges when initially setting or modifying the nTSecurityDescriptor attribute during LDAP add and modify operations. Warning events will be logged, but no requests will be blocked. A warning event occurred. EventID: 0x80000B46 Time Generated: 08/04/2024 12:37:48 Event String: The security of this directory server can be significantly enhanced by configuring the server to reject SASL (Negotiate, Kerberos, NTLM, or Digest) LDAP binds that do not request signing (integrity verification) and LDAP simple binds that are performed on a clear text (non-SSL/TLS-encrypted) connection. Even if no clients are using such binds, configuring the server to reject them will improve the security of this server. A warning event occurred. EventID: 0x80000BE1 Time Generated: 08/04/2024 12:37:48 Event String: The security of this directory server can be significantly enhanced by configuring the server to enforce validation of Channel Binding Tokens received in LDAP bind requests sent over LDAPS connections. Even if no clients are issuing LDAP bind requests over LDAPS, configuring the server to validate Channel Binding Tokens will improve the security of this server. A warning event occurred. EventID: 0x80000828 Time Generated: 08/04/2024 12:37:58 Event String: Active Directory Domain Services could not use DNS to resolve the IP address of the source domain controller listed below. To maintain the consistency of Security groups, group policy, users and computers and their passwords, Active Directory Domain Services successfully replicated using the NetBIOS or fully qualified computer name of the source domain controller. A warning event occurred. EventID: 0x8000082C Time Generated: 08/04/2024 12:38:48 Event String: A warning event occurred. EventID: 0x8000051C Time Generated: 08/04/2024 12:42:48 Event String: The Knowledge Consistency Checker (KCC) has detected that successive attempts to replicate with the following directory service has consistently failed. ......................... HLG70SW11EX passed test KccEvent Starting test: KnowsOfRoleHolders ......................... HLG70SW11EX passed test KnowsOfRoleHolders Starting test: MachineAccount ......................... HLG70SW11EX passed test MachineAccount Starting test: NCSecDesc ......................... HLG70SW11EX passed test NCSecDesc Starting test: NetLogons Unable to connect to the NETLOGON share! (\\HLG70SW11EX\netlogon) [HLG70SW11EX] An net use or LsaPolicy operation failed with error 67, The network name cannot be found.. ......................... HLG70SW11EX failed test NetLogons Starting test: ObjectsReplicated ......................... HLG70SW11EX passed test ObjectsReplicated Starting test: Replications [Replications Check,HLG70SW11EX] A recent replication attempt failed: From HLG70SW04EX to HLG70SW11EX Naming Context: DC=DomainDnsZones,DC=ngamie,DC=mlg,DC=gov,DC=bw The replication generated an error (5): Access is denied. The failure occurred at 2024-08-04 12:38:33. The last success occurred at 2024-08-04 09:58:26. 6 failures have occurred since the last success. [HLG70SW04EX] DsBindWithSpnEx() failed with error 1753, There are no more endpoints available from the endpoint mapper.. [Replications Check,HLG70SW11EX] A recent replication attempt failed: From HLG70SW04EX to HLG70SW11EX Naming Context: DC=ForestDnsZones,DC=ngamie,DC=mlg,DC=gov,DC=bw The replication generated an error (5): Access is denied. The failure occurred at 2024-08-04 12:38:30. The last success occurred at 2024-08-04 09:58:26. 6 failures have occurred since the last success. [Replications Check,HLG70SW11EX] A recent replication attempt failed: From HLG70SW04EX to HLG70SW11EX Naming Context: CN=Schema,CN=Configuration,DC=ngamie,DC=mlg,DC=gov,DC=bw The replication generated an error (5): Access is denied. The failure occurred at 2024-08-04 12:38:28. The last success occurred at 2024-08-04 09:58:26. 6 failures have occurred since the last success. [Replications Check,HLG70SW11EX] A recent replication attempt failed: From HLG70SW04EX to HLG70SW11EX Naming Context: CN=Configuration,DC=ngamie,DC=mlg,DC=gov,DC=bw The replication generated an error (5): Access is denied. The failure occurred at 2024-08-04 12:38:26. The last success occurred at 2024-08-04 09:58:26. 6 failures have occurred since the last success. [Replications Check,HLG70SW11EX] A recent replication attempt failed: From HLG70SW04EX to HLG70SW11EX Naming Context: DC=ngamie,DC=mlg,DC=gov,DC=bw The replication generated an error (5): Access is denied. The failure occurred at 2024-08-04 12:38:24. The last success occurred at 2024-08-04 09:58:26. 6 failures have occurred since the last success. ......................... HLG70SW11EX failed test Replications Starting test: RidManager ......................... HLG70SW11EX passed test RidManager Starting test: Services ......................... HLG70SW11EX passed test Services Starting test: SystemLog An error event occurred. EventID: 0x000003FA Time Generated: 08/04/2024 11:49:27 Event String: The DHCP service failed to restore the database. The following error occurred: A warning event occurred. EventID: 0x00002724 Time Generated: 08/04/2024 11:49:31 Event String: This computer has at least one dynamically assigned IPv6 address.For reliable DHCPv6 server operation, you should use only static IPv6 addresses. A warning event occurred. EventID: 0x00002724 Time Generated: 08/04/2024 11:49:56 Event String: This computer has at least one dynamically assigned IPv6 address.For reliable DHCPv6 server operation, you should use only static IPv6 addresses. A warning event occurred. EventID: 0x0000000C Time Generated: 08/04/2024 12:16:43 Event String: Time Provider NtpClient: This machine is configured to use the domain hierarchy to determine its time source, but it is the AD PDC emulator for the domain at the root of the forest, so there is no machine above it in the domain hierarchy to use as a time source. It is recommended that you either configure a reliable time service in the root domain, or manually configure the AD PDC to synchronize with an external time source. Otherwise, this machine will function as the authoritative time source in the domain hierarchy. If an external time source is not configured or used for this computer, you may choose to disable the NtpClient. A warning event occurred. EventID: 0x00001695 Time Generated: 08/04/2024 12:23:11 Event String: Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ngamie.mlg.gov.bw.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition). A warning event occurred. EventID: 0x00001695 Time Generated: 08/04/2024 12:23:11 Event String: Dynamic registration or deletion of one or more DNS records associated with DNS domain 'DomainDnsZones.ngamie.mlg.gov.bw.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition). A warning event occurred. EventID: 0x00001695 Time Generated: 08/04/2024 12:23:11 Event String: Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ForestDnsZones.ngamie.mlg.gov.bw.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition). A warning event occurred. EventID: 0x80040020 Time Generated: 08/04/2024 12:37:34 Event String: The driver detected that the device \Device\Harddisk0\DR0 has its write cache enabled. Data corruption may occur. A warning event occurred. EventID: 0x80040020 Time Generated: 08/04/2024 12:37:34 Event String: The driver detected that the device \Device\Harddisk0\DR0 has its write cache enabled. Data corruption may occur. A warning event occurred. EventID: 0x80040020 Time Generated: 08/04/2024 12:37:34 Event String: The driver detected that the device \Device\Harddisk0\DR0 has its write cache enabled. Data corruption may occur. A warning event occurred. EventID: 0x000727AA Time Generated: 08/04/2024 12:37:52 Event String: The WinRM service failed to create the following SPNs: WSMAN/HLG70SW11EX.ngamie.mlg.gov.bw; WSMAN/HLG70SW11EX. A warning event occurred. EventID: 0x00002724 Time Generated: 08/04/2024 12:37:55 Event String: This computer has at least one dynamically assigned IPv6 address.For reliable DHCPv6 server operation, you should use only static IPv6 addresses. An error event occurred. EventID: 0x00000423 Time Generated: 08/04/2024 12:37:59 Event String: The DHCP service failed to see a directory server for authorization. An error event occurred. EventID: 0x00000423 Time Generated: 08/04/2024 12:37:59 Event String: The DHCP service failed to see a directory server for authorization. A warning event occurred. EventID: 0x0000000C Time Generated: 08/04/2024 12:38:01 Event String: Time Provider NtpClient: This machine is configured to use the domain hierarchy to determine its time source, but it is the AD PDC emulator for the domain at the root of the forest, so there is no machine above it in the domain hierarchy to use as a time source. It is recommended that you either configure a reliable time service in the root domain, or manually configure the AD PDC to synchronize with an external time source. Otherwise, this machine will function as the authoritative time source in the domain hierarchy. If an external time source is not configured or used for this computer, you may choose to disable the NtpClient. A warning event occurred. EventID: 0x0000008E Time Generated: 08/04/2024 12:38:17 Event String: The time service has stopped advertising as a time source because the local clock is not synchronized. A warning event occurred. EventID: 0x00000090 Time Generated: 08/04/2024 12:38:17 Event String: The time service has stopped advertising as a good time source. An error event occurred. EventID: 0x0000168E Time Generated: 08/04/2024 12:38:22 Event String: The dynamic registration of the DNS record 'ngamie.mlg.gov.bw. 600 IN A 10.141.193.10' failed on the following DNS server: An error event occurred. EventID: 0x0000168E Time Generated: 08/04/2024 12:38:27 Event String: The dynamic registration of the DNS record '_ldap._tcp.ngamie.mlg.gov.bw. 600 IN SRV 0 100 389 hlg70sw11ex.ngamie.mlg.gov.bw.' failed on the following DNS server: An error event occurred. EventID: 0x0000168E Time Generated: 08/04/2024 12:38:31 Event String: The dynamic registration of the DNS record '_ldap._tcp.Default-First-Site-Name._sites.ngamie.mlg.gov.bw. 600 IN SRV 0 100 389 hlg70sw11ex.ngamie.mlg.gov.bw.' failed on the following DNS server: An error event occurred. EventID: 0x0000168E Time Generated: 08/04/2024 12:38:34 Event String: The dynamic registration of the DNS record '_ldap._tcp.gc._msdcs.ngamie.mlg.gov.bw. 600 IN SRV 0 100 3268 hlg70sw11ex.ngamie.mlg.gov.bw.' failed on the following DNS server: An error event occurred. EventID: 0x00000469 Time Generated: 08/04/2024 12:42:09 Event String: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has successfully processed. If you do not see a success message for several hours, then contact your administrator. A warning event occurred. EventID: 0xC000042B Time Generated: 08/04/2024 12:42:21 Event String: The RD Session Host server cannot register 'TERMSRV' Service Principal Name to be used for server authentication. The following error occured: The specified domain either does not exist or could not be contacted. An error event occurred. EventID: 0x00000469 Time Generated: 08/04/2024 12:42:37 Event String: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has successfully processed. If you do not see a success message for several hours, then contact your administrator. A warning event occurred. EventID: 0x00002720 Time Generated: 08/04/2024 12:42:41 Event String: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID ......................... HLG70SW11EX failed test SystemLog Starting test: VerifyReferences ......................... HLG70SW11EX passed test VerifyReferences Running partition tests on : DomainDnsZones Starting test: CheckSDRefDom ......................... DomainDnsZones passed test CheckSDRefDom Starting test: CrossRefValidation ......................... DomainDnsZones passed test CrossRefValidation Running partition tests on : ForestDnsZones Starting test: CheckSDRefDom ......................... ForestDnsZones passed test CheckSDRefDom Starting test: CrossRefValidation ......................... ForestDnsZones passed test CrossRefValidation Running partition tests on : Schema Starting test: CheckSDRefDom ......................... Schema passed test CheckSDRefDom Starting test: CrossRefValidation ......................... Schema passed test CrossRefValidation Running partition tests on : Configuration Starting test: CheckSDRefDom ......................... Configuration passed test CheckSDRefDom Starting test: CrossRefValidation ......................... Configuration passed test CrossRefValidation Running partition tests on : ngamie Starting test: CheckSDRefDom ......................... ngamie passed test CheckSDRefDom Starting test: CrossRefValidation ......................... ngamie passed test CrossRefValidation Running enterprise tests on : ngamie.mlg.gov.bw Starting test: LocatorCheck Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1355 A Global Catalog Server could not be located - All GC's are down. Warning: DcGetDcName(TIME_SERVER) call failed, error 1355 A Time Server could not be located. The server holding the PDC role is down. Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 1355 A Good Time Server could not be located. Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1355 A KDC could not be located - All the KDCs are down. ......................... ngamie.mlg.gov.bw failed test LocatorCheck Starting test: Intersite ......................... ngamie.mlg.gov.bw passed test Intersite