最近,我们停电了 2 个小时以上。我们不得不关闭 9 台服务器中的 8 台。我让 1 台服务器(server6)继续运行,因为它全天候托管我们需要的 Web 服务。电源恢复后,我尝试先启动 server1 和 server2,因为 server1 是主操作主机,而 server2 是我们的 DNS 服务器。两个系统都停留在“正在加载网络连接”状态约 10-20 分钟。系统启动后,我登录后发现事件查看器中充满了错误。
服务器1有:
The Security System detected an authentication error for the server LDAP/SERVER1. The failure code from authentication protocol Kerberos was "There are currently no logon servers available to service the logon request.
(0xc000005e)”。
和
Dynamic registration or deletion of one or more DNS records associated with DNS domain 'DomainDnsZones.JVS.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).
Server2 有:
Dynamic registration or deletion of one or more DNS records associated with DNS domain 'JVS.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).
和
The Security System detected an authentication error for the server ldap/server2.JVS. The failure code from authentication protocol Kerberos was "There are currently no logon servers available to service the logon request.
(0xc000005e)”。
我进入 Active Directory 站点和服务,尝试多次连接到 JVS 林,但都失败了。最后,在大约第 8 次尝试后,它找到了林,一切恢复正常。这让我感觉我们的域出了问题。我可以运行哪些测试来查看我们的域出了什么问题?有人听说过这种情况吗?
答案1
每个 AD 服务器也应该有 DNS。您可能最终会遇到无法连接到 DNS 服务器的 AD 服务器,因为 DNS 服务器找不到要进行身份验证的 AD 服务器。