General discussion


Secondary Domain Controller

By twanstall ·
Hi, im having bit of trouble setting up a secondary domain controller.

I have 2 servers both running w2k3, the first one is setup with integrated AD. The DNS for my DC is as follows:

ip address
prefered dns

For my other server:

ip address
prefered dns

Iam running these servers locally only and do not have an internet connection.

When i go though the DCPROMO /ADV selection to add an additional DC to an existing domain i get the following error message:

Error when DNS queries for the service location (SRV) resource record used to locate a domain controller for domain

error was DNS server failure
error code 0x0000232A RCODE_SERVER_FAILURE

query was for SRV record for _ldap_tcp.dc_msdcs

one or more of following zones contains in correct delegation

(the root zone)

Ive been trying to get this problem fixed for ages and its becomming very irritating.

If anybody could help me id be most appreciative.

Thank you


This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

by shankarsaba2005 In reply to Secondary Domain Controll ...


Put the gateway as for the 2nd server


Collapse -

by twanstall In reply to

thanks for trying but didnt work

Collapse -

by lopsa84 In reply to Secondary Domain Controll ...

I would created the SRV record for this DC that you are trying to integrate on the DNS. That way it will be recognized by DNS.

Collapse -

by twanstall In reply to

Hi thanks for your help, i tried adding SRV record and got the same error message

Collapse -

by tdhanapal2003 In reply to Secondary Domain Controll ...

I think u didn't DNS configure properly.Run
this following commant at commant promt in primary server.

nslookup domain name

if unable to resolve domain name.u have to configure PTR in reverse lookup zone in primary dns server



Collapse -

by twanstall In reply to

Hi and thanks for help, but i tried nslookup command and if i enter the domain name it finds it and displays ip address of primary dns, however it still says "non existant domain" afterwards.

With regards to reverse zone in dns i, have nothing in this zone at all. Only in forward zones.....could this be the problem..?

Thanks for you help its much appreciated!

Collapse -

by sgt_shultz In reply to Secondary Domain Controll ...

i think maybe you have made a 'single lable domain'. if that is what is preventing the new server from dynamically registering itself in dns you can see a fix (read the whole thing) in this article
Information about configuring Windows for domains with single-label DNS names
my 2 cents is: if your situation allows, i would slam on the brakes right now and recreate AD with proper naming conventions. if you don't know how it is well worth a paid call to microsoft imho or ask here for suggestions in setting up your domain names in AD

Collapse -

by sgt_shultz In reply to

ps: regarding the lack of reverse lookup records. that is not the problem. those records are, um, for lack of a better way to put it, optional

Collapse -

Think is not single lable domain name

by twanstall In reply to

Hi, thanks for you help with this. I read the article you posted and it says that a single label domain name is whne you do not add the .com, .net etc..

My domain name is .local which implies it is not Single label domain name - unless of course im missing something.

Thank you

Collapse -

is the second one a member server?

by CG IT In reply to Secondary Domain Controll ...

The error message gives you the correct domain to use yandoopalce.local when you try to dcpromo /adv to add DCs to a target domain from backed up system state.

Note: if the server in question is a member server of a domain that is not the same as the system state backup your trying to use, then you'll get a DNS error and the error will give you the correct domain [but not the system state domain if different].

Related Discussions

Related Forums