DC重新開機後執行nltest /query , nltest /dsregdns會出現錯誤訊息: ERROR_NO_LOGON_SERVERS

問題描述

DC重新開機後執行nltest /query , nltest /dsregdns會出現錯誤訊息: ERROR_NO_LOGON_SERVERS

相關資訊

此狀況是正常現象並不會影響AD的運作.

After the restart netlogon service or reboot, the security channel between the DC and the PDC will be reset to invalid:

11/24 11:11:07 [SESSION] CBIS: NlSetStatusClientSession: Set connection status to c000005e   (in the netlogon debug log)

If no requirement for re-connecting the security channel between the DC and the PDC, the security channel's status will not be updated.

If we run the command "nltest /sc_verify:<domain>" before the command "nltest /dsregdns" or “nltest /query”, the security channel between the DC and the PDC will be re-connected, and there should be no error returned by the command "nltest /dsregdns" or “nltest /query”.

This symptoms can be reproduced on any Windows Server 2003's DC (non-PDC).