Your account | Cart Cart
 Search
Home Products FAQs Download Shop Contact
UMove for Active Directory
IntroductionIntroduction
Choice of OperationChoice of Operation
Loading Active DirectoryLoading Active Directory
InterviewInterview
Selecting Backup MediaSelecting Backup Media
Incremental RestoreIncremental Restore
Internet AddressInternet Address
Moving SYSVOL FilesMoving SYSVOL Files
Clicking the Finish ButtonClicking the Finish Button
Results of Moving Active DirectoryResults of Moving Active Directory
Advanced TopicsAdvanced Topics
Error MessagesError Messages

Clicking the Finish Button

When you click the Finish button, UMove will load Active Directory into the computer. During this process your computer will reboot.

Your computer (and Active Directory) will be ready when the logon prompt appears.

How to Cancel

You can interrupt the procedure by clicking the Cancel button. UMove will stop and roll back all pending changes to the computer.

Execution Time

It will typically take about 5-15 minutes for the operation to complete depending on how fast your computer can reboot.

If you have a large NTDS.DIT database (more than one gigabyte, for example) the process may take additional time depending the speed of your disk drive.

If you are booting the first domain controller in a domain and the other domain controllers are not present, Windows will pause up to 15 minutes while booting as it searches for the other domain controllers. During this time Windows will display the message Preparing network connections..   The delay is normal.

In rare cases it may take up to 30 minutes to complete the first boot if DNS is not configured correctly. Be patient and the computer will eventually finish startup and present the logon screen.

If you are running Exchange, there may be an additional 10-15 minute delay during each shutdown.

Error Messages During the First 30 Minutes

Some error messages may appear in the Event Log during the first 30 minutes. These error messages are normal and can be ignored. The normal error messages include those generated by NTFRS and by the Directory Service during the initial dynamic DNS registration of the domain controllers and the Global Catalog.

AD should stabilize within 30 minutes and the error messages will stop automatically.

The normal temporary error messages include the following:

  • NETLOGON: “Dynamic registration or deletion of one or more DNS records associated with DNS domain MyDomain failed.” (Event ID 5781) More information.
  • NTDS Replication: “Active Directory could not resolve the following DNS host name of the domain controller to an IP address: ComputerName” (Event ID 2087) More information.
  • NTDS General: “Active Directory attempted to communicate with the global catalog and the attempts were unsuccessful. Global catalog: ComputerName” (Event ID 1655)
  • NTDS General: “Active Directory was unable to establish a connection with the global catalog.” (Event ID 1126)
  • LSASRV: “The Security System detected an authentication error for the server MyServer. There failure code from authentication protocol Kerberos was 'There are current no logon servers available to service the logon request.'” (Event ID 40960)
  • MSDTC: “MS DTC could not correctly process a DC Promotion/Demotion event.” (Event ID 53258)
  • MSMQ: “The Message Queuing sevice failed to join the computer's domain” (Event ID 2124)
  • NtFrs: “File Replication Service is scanning the data in the system volume. Computer cannot become a domain controller until this process is complete. The system volume will then be shared as SYSVOL.” (Event ID 13566)
  • NtFrs: “The File Replication Service moved the preexisting files in C:\windows\sysvol\domain to c:\windows\sysvol\domain\NtFrs_PreExisting___See_EventLog.” (Event ID 13520). More information.
  • Schannel: “No suitable default server credential exists on this system. This will prevent server applications that expect to make use of the system default credentials from accepting SSL connections. An example of such an application is the directory server. Applications that manage their own credentials, such as the internet information server, are not affected by this.” (Event ID 36782).
  • SPNEGO: “The Security System detected an authentication error for the server LDAP. There are currently no logon servers available to service the logon request.” (Event ID 40960)
  • Userenv: “Windows cannot obtain the domain controller name for your computer network. (The specified domain either does not exist or could not be contacted.) Group Policy processing aborted.” (Event ID 1054). More information.

If the messages persist after 30 minutes you may need to troubleshoot your DNS settings.

For More Information

See also the topics Results of Moving Active Directory, and Unattended Operation.

Algin Technology LLC
   Home -- Products -- FAQs -- Shop -- Download -- Reseller -- Privacy -- Contact
Copyright © 2009, Algin Technology LLC