PDA

Click to See Complete Forum and Search --> : adding a server from workgroup into a domain

mclaic
03-28-2003, 09:39 AM
Hello,

I have a one server as a dc and another server someone put into a workgroup that should have been added as a member server to the domain. When I try and add the workgroup server as member server to the domain I get a dns error. Has anyone had this same problem.

Network setup.

1 dc win2000 AD (dns pointing to linux ns servers)
1 workgroup server win2000 no AD (dns pointing to linux ns servers)
2 ns servers Linux (dns running).

I can do all my nslookups on both win2000 servers. just can't add the workgroup server to the domain.

All the research I have done, points to the _ldap._tcp.dc configurations from the netlogon.dns file after you start dns on a win2000 dc; however, I have also found documentation stating this is a bug in win2000. I have not upgraded yet to service pack 3, which supposedly fixes this problem.


Does anyone have another way around this. I already tried starting up DNS and coping over the netlogon.dns into my dns files I get so far then it tells me network path not found. My understanding is that the workgroup server should not be looking for this request. ???
cowanrl
03-30-2003, 11:31 AM
I might be able to give you an idea of what your problem is but I can't tell you how to fix it.

Here's a quote from a book I've been reading on Win2k AD:

"Active Directory use DNS as it location service, enabling computers to find the location of domain controllers. To find a domain controller in a particular domain, a client queries DNS for resource records that provide the names and IP addresses of the Lightweight Directory Access Protocol (LDAP) servers for the domain. LDAP is the protocol used to query and update Active Directory and all domain controllers run the LDAP service".

Even though you may have an entry in your DNS server for your Win2k DC, the server you are trying to join the domain from won't query that record. It will query DNS for "any" domain controller via an LDAP record.

I would say you need to create a record on your DNS server for an LDAP server that points to the IP address of your Win2k DC. I don't have enough experience with DNS to know how to do that. Possibly with some type of an SRV record?

I've always copped out on my Win2k domains and used the Microsoft DNS server. It takes care of all of that for you.