Sunday, September 9, 2012

Event ID 4013 DNS-Server-Service on a P2V domain controller

Last week, I needed to perform P2V on one of domain controllers from production environment to test environment. The test environment is in an isolate network. All servers in test network cannot connect to the servers are in production environment. After the domain controllers converted to the VM format in test environment, I tried to start-up and log in the domain controllers. However, if the VMs is added the network adapter, I can't use one of the domain administrator accounts to log in. Then I logged in the domain controller at DSRM (Directory Service Restore Mode). I found the following error.

The DNS server is waiting for Active Directory Domain Services (AD DS) to signal that the initial synchronization of the directory has been completed. The DNS server service cannot start until the initial synchronization is completed because critical DNS data might not ey be replicated onto this domain controller. If events in the AD DS event log indicate that there is a problem with DNS name resolution, consider adding the IP address of another DNS sever for this domain to the DNS server list in the Internet Protocol properties of this computer. This event will be logged every two minutes until AD DS has signaled that the initial synchronization has successfully completed.


Because the domain controller is in isolate network. It can't contact the other domain controllers to perform initial synchronization. If the initial synchronization does not perform, the DNS service startup is delayed.

To solved this case, I followed the steps which are provided by KB 2001093.

Prerequisites

  • Remove all network adapters on the VM, domain controller.

1. At the domain controller, log in as Administrator at DSRM.
2. Launch "Registry Editor".
3. Expand "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Parameters".
4. Right-click "Parameters", select "New > DWORD (32-bit) Value".
5. Enter "Repl Perform Initial Synchronization".


This domain controller will bypass initial synchronization. I can add the network adapter for this domain controller and boot up on normal mode.

As a result, I can log in as Domain Administrator in test lab.

Reference:
Troubleshooting DNS Event ID 4013: The DNS server was unable to load AD integrated DNS zones
http://support.microsoft.com/kb/2001093

This posting is provided “AS IS” with no warranties, and confers no rights!