I have a test domain that I recently configured. All of a sudden, no users can log in except those with cached credentials. The domain includes two domain controllers that are both global catalogs that replicate to each other.
After investigating the issue, I discovered that all of the _mcdcs domain records are completely gone on both of the DNS servers. This makes it impossible to locate a domain controller because SRV records such as _ldap and _kerberos are unresolvable.
I'm not quite sure how this happened… is this something that clearing the DNS cache or DNS scavenging would cause?
At this point I need to restore the records somehow. I looked at the settings of another domain, and it looks like they can be recreated manually… but I noticed that some of the DNS records appear to have SID names in them… and I have no idea what identifier would need to be used to recreate them.
Is there is a better process that one can use for getting out of a situation like this?
Best Answer
1.
Restart the Netlogon service on one of the Domain ControllersOR
2.
Run DCDiag /fixOR
3.
Manually create the records from the netlogon.dns file from one of the Domain Controllers