Tuesday, July 13, 2010

The master browser is stopping or an election is being forced

One, or both of the following may be present in a clients events. If so then the solution is to alter the registry keys as listed to resolve the messages continual appearance.


Error Message:

The browser has received a server announcement indicating that the computer

is a master browser, but this computer is not a master browser.

The master browser has received a server announcement from the computer

that believes that it is the master browser for the domain on transport NetBT_Tcpip_{000000000000000000. The master browser is stopping or an election is being forced.


In order to stop this error from occuring, use Regedit and set the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Browser\Parameters\MaintainServerList from Auto or YES to FALSE

System Key: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Browser\Parameters]
Value Name: IsDomainMaster, MaintainServerList
To prevent an NT Workstation or Server (non-PDC) from acting as a browser, create a new string value, or modify the existing value, named “MaintainServerList” and set it “No”, the other options are “Yes”, “No” or “Auto”.


EventID:

Log Name:    System
Source:      bowser
Date:      13/07/2010 3:56:00 PM
Event ID:    8005
Task Category: None
Level:      Warning
Keywords:    Classic
User:      N/A
Computer:   

Description:
The browser has received a server announcement indicating that the computer

is a master browser, but this computer is not a master browser.


Log Name:    System
Source:      bowser
Date:      13/07/2010 3:56:00 PM
Event ID:    8003
Task Category: None
Level:      Error
Keywords:    Classic
User:      N/A
Computer:   

Description:
The master browser has received a server announcement from the computer

that believes that it is the master browser for the domain on transport NetBT_Tcpip_{. The master browser is stopping or an election is being forced.


Monday, October 19, 2009

The evaluation period for Microsoft Office Live Communication Server 2005 has expired

All of a sudden my LCS/OCS server shot this message in the application event log and the server wouldn’t start.


Error Message:

Event Type: Error
Event Source: Live Communications Server
Event Category: (1000)
Event ID: 12290
Date: 19/10/2009
Time: 9:10:42 AM
User: N/A
Computer: INTGVIRT2K3004
Description:
The evaluation period for Microsoft Office Live Communication Server 2005 has expired. Obtain the released version of this product and upgrade to the non-evaluation version by running setup.exe

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.


The error is because of patch KB974571, the only current resolution is to remove it.
For those not aware of how to uninstall patches. it’s now hidden in add/remove programs there is a tick box at the top that says “show updates”.
Once ticked, search for the update, uninstall and then reboot and the problem should be resolved.

This issue has been addressed on technet:
http://blogs.technet.com/dodeitte/archive/2009/10/13/do-not-apply-kb974571-to-lcs-ocs-servers.aspx


Posted by admin in • Windows 2003 Server
Permalink
Thursday, October 08, 2009

EVENT ID 36881 Schannel Error

I received this error on a box that holds a database that polls LDAP once a day on LDAPS to get our user directory for its contact info etc.
This error started after certificates rotated on some of the boxes and it must have rotated on the box this server polls to get the AD info from.


Thanks to Microsoft the solution was simple but annoying, a scheduled reboot of the machine.
http://support.microsoft.com/kb/839514


EventID:

Event Type: Error
Event Source: Schannel
Event Category: None
Event ID: 36881
Date: 7/10/2009
Time: 6:38:56 PM
User: N/A
Computer:

Description:
The certificate received from the remote server has expired. The SSL connection request has failed. The attached data contains the server certificate.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:


Tuesday, October 06, 2009

Unable to initialize the protocol stack error code is

MY LCS 2005 server decided to stop communications to my OCS 2007 server, any user on the ‘07 server saw the ‘05 users presence as “unknown”.
Upon further investigation i found the issue was the certificate had expired and so TLS had stopped working.


Process of resolution was to install a new cert and define that cert in the Mutual TLS connection in the properties of the ‘05 server.

Step-by-step guide is as follows:
Start->run->mmc

in console(mmc)
file-> Add/Remove snap-in
Add->Certificates->computer account (certificates) -> finish -> close -> OK
Breaking out the tree and into personal then certificates, you should see the cert that is listed with the expiry date that means its no longer valid.
This is preference but i chose right click-> All tasks -> Request Certificate with same key
This is pretty much a click next setup, don’t worry about advanced options.

Once this is done, go into the LCS mmc console to administer your LCS server:
Forest->domains->

->live communications servers and pools ->

-> [right click] properties ->
Under connections you will have at least two (tcp and mutual TLS) and highlighting the Mutual TLS and choosing edit you can choose the select certificate option and install the new certificate, mine whinged about the cert not being valid yet but i selected it anyway and with a server restart and a disconnect and reconnect manually on the client, i had full connectivity again.


EventID:

A number of event ID errors were coming up for me such as the following across both LCS and OCS servers:
event ID: 14397
A configured certificate could not be loaded from store. The serial number is attached for reference.

Extended Error Code: 0x800B0101.
Cause: This could happen if the certificate is not found. This could also happen if the server has insufficient privileges to read the certificate or to access the store containing the certificate.

event ID: 16417

Unable to initialize the protocol stack. The service has to stop.

event ID: 12299

The service is shutting down due to an internal error.

Error Code: 0x800B0101.
Resolution:
Check the previous event log entries and resolve them. Restart the server. If the problem persists contact product support.

event ID: 14502

A significant number of connection failures have occurred with remote server

IP

. There have been 60 failures in the last 0 minutes. There have been a total of 60 failures.
The specific failure types and their counts are identified below.
Instance count   - Failure Type
60           8007274D
           
         
This can be due to credential issues , DNS , firewalls or proxies. The specific failure types above should identify the problem.

event ID: 14428

TLS outgoing connection failures.

Over the past 0 minutes Office Communications Server has experienced TLS outgoing connection failures 1 time(s). The error code of the last failure is 0x80090328 (The received certificate has expired.) while trying to connect to the host “INTGVIRT2K3004.integ.net.au”.
Cause: Wrong principal error could happen if the peer presents a certificate whose subject name does not match the peer name. Certificate root not trusted error could happen if the peer certificate was issued by remote CA that is not trusted by the local machine.
Resolution:
For untrusted root errors, ensure that the remote CA certificate chain is installed locally. If you have already installed the remote CA certificate chain, then try rebooting the computer.

event ID: 14359

Unable to use the default outgoing certificate.

Error 0x800B0101 (A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
).
Cause: The certificate may have been deleted. It could also happen if the certificate has become invalid or due to insufficient permissions.
Resolution:
Ensure that the certificate is present and valid in the local computer certificate store. Also ensure that the server has sufficient privileges to access the store.

event ID: 14397

A configured certificate could not be loaded from store. The serial number is attached for reference.

Extended Error Code: 0x800B0101.
Cause: This could happen if the certificate is not found. This could also happen if the server has insufficient privileges to read the certificate or to access the store containing the certificate.


Platform(s) Affected: Windows Server 2003 32-bit, Windows Server 2003 64-bit

Posted by admin in • Windows 2003 Server
Permalink
Monday, April 14, 2008

MSDTC Could Not Correctly Process a DC Promotion/Demotion event. EVENT ID 53258

Installing a fresh windows 2003 R2 install onto a new esx server and then creating a new forest from scratch yielded this error.
I created a brand new domain from scratch and got this error off the bat so i thought it was worth fixing before it got any worse.


Error Message:

EVENTID 53258
Source MSDTC
MS DTC could not correctly process a DC Promotion/Demotion event. MS DTC will continue to function and will use the existing security settings.


One of the Many eventid.net responses helped me out here.
EVENTID Article

1. Click Start -> Administrative Tools -> Component Services.
2. Click the “+” next to Component services to expand it.
3. Right click “My Computer” in the right window pane and select Properties.
4. Click the MS DTC Tab.
5. Click the “Security Configuration” button, a dialog box appears. Click “OK”.
6. Click “OK” on the “My Computer Properties” box; this will take you back to the console.
7. Right click “My Computer” and select “Stop MS DTC” (this stops the MSDTC service.
8. Again, right click “My Computer” and select “Start MS DTC”.
By following the above steps, it appears that this sets the MS DTC defaults resolving the error messages. Check the event log to verify that the problem is gone. You might also want to restart the server to verify this. 


Monday, April 07, 2008

IIS Service Stuck Stopping

A friend of mine shared a solution to an issue they were having when they tried to update Trends Spam filter and it crashed an IIS service.
When they did the update the IISADMIN Service got stuck in a Stopping state, using the following command restarted all IIS services and fixed the issue.


iireset

/stop
iireset

/start

The Microsoft Article detailing this and other switches is below.
http://support.microsoft.com/default.aspx?scid=kb;en-us;202013


Posted by admin in • Windows 2003 Server
Permalink
Thursday, March 27, 2008

Gpresult On 2003 Native Domain Shows 2000

This did come as a shock to me but due to the age of the application it still only identifies Native 2003 domains as 2000 Domains, so no need to panic like I did and wonder what massive part of your network just broke.


Example gpresult on a native 2003 domain:
—————————————————————————————————
C:\>gpresult

Microsoft (R) Windows (R) XP Operating System Group Policy Result tool v2.0
Copyright (C) Microsoft Corp. 1981-2001

Created On 27/03/2008 at 11:16:03 AM


RSOP results for domain\user.name on computername : Logging Mode
———————————————————————————————————

OS Type:              Microsoft Windows XP Professional
OS Configuration:        Member Workstation
OS Version:            5.1.2600
Domain Name:            domainname
Domain Type:            Windows 2000
Site Name:            sitename
Roaming Profile:
Local Profile:          C:\Documents and Settings\user.name
Connected over a slow link?: No


Tuesday, March 11, 2008

Australian 2008 Timezone Changes / Updates

Australian timezones call back delta and spring forward delta will be extended this year (2008), I’ve listed a whole bunch of links and article links below to help you in getting things patched in time for this change.

Server 2003 Package (x86)
http://www.microsoft.com/downloads/details.aspx?FamilyId=308D599A-164A-40F6-B2A2-5DD5728FE5B4

Server 2003 Package (x64)
http://www.microsoft.com/downloads/details.aspx?FamilyId=940AD40D-3088-4CD0-B0DC-F517594C904D&displaylang=en

Vista Package (sp1 doesnt need the update)
http://www.microsoft.com/downloads/details.aspx?FamilyId=F75E30D4-3036-4970-BC16-48A96E1CEDC7

XP Package
http://www.microsoft.com/downloads/details.aspx?FamilyId=FBC1661D-E017-4A7F-9CDE-F44CAE1F8DC9

Outlook 2003
Requires sp2 or sp3 installed
http://support.microsoft.com/kb/947674
requires a request to MS for the patch

Outlook 2007
http://www.microsoft.com/downloads/details.aspx?familyid=2714320d-c997-4de1-986f-24f081725d36&displaylang=en
odd name for the patch but this is the one to use.


Windows Mobile Update (cab file to be installed on phone)
http://www.microsoft.com/downloads/details.aspx?FamilyId=0D6FC192-3142-4473-B435-B514E4B360A5&displaylang=en

Windows Mobile Update (run on desktop with phone connected)
http://www.microsoft.com/downloads/details.aspx?FamilyId=3BD7C55C-8AC1-4821-81FE-3F4ADA831FE0&displaylang=en

Microsoft Exchange 2003
Exchange is a little tougher, you have to request the patch which makes it a slower process and will catch people out who only patch after the daylight savings changes happen and realise they haven’t patched their mail server(s).
You need to be at, at least Service Pack 1 in exchange 2003 and I would suggest using the excuse to go to SP2. To check your service pack there are two methods, I find the method that is actually listed on a Cisco page of all places as one of the easiest ways.
http://www.cisco.com/en/US/products/sw/voicesw/ps2237/products_tech_note09186a00801675b8.shtml
you basically find the store.exe in your exchsrvr\bin directory and go to the properties and in the version comments it displays your service pack level.
Microsoft do offer the SPCheck tool for those who wish to check on that as well as a large number of other components.
http://support.microsoft.com/kb/279631

Exchange 2003 SP2 page with request link
http://support.microsoft.com/kb/943068

Full Technet Article with all the appropriate links (alot of which used here)
http://technet.microsoft.com/en-au/bb887637.aspx

2008 daylight savings planning pdf
http://download.microsoft.com/documents/australia/timezone/Australia2008DaylightSavingPlanningGuide.pdf

 


Posted by admin in • Windows 2003 Server
Permalink
Friday, March 07, 2008

Set NTP Time on Windows Server 2003

When you have multiple servers it is best to only have one going out to the internet for NTP and the rest of your servers feeding off that box (as long as its reliable) to reduce network traffic and NTP traffic. Below i list all the commands i found handy in doing this, please note that server.ip is the ip address of the box that is getting time from the internet.
These commands can be as useful when trying to change the ntp server that your windows servers use or to check what server they use.

———————————————————————————————-
Short List of Commands
net time /setsntp:server.ip
net stop w32time
net start w32time
net time /querysntp
net time \\server.ip


Example commands in Action
net time /setsntp:server.ip
The command completed successfully.


net stop w32time
The Windows Time service is stopping.
The Windows Time service was stopped successfully.


net start w32time
The Windows Time service is starting.
The Windows Time service was started successfully.


net time /querysntp
The current SNTP value is: server.ip

The command completed successfully.

net time \\server.ip
Current time at \\server.ip is 24/07/2007 5:18 PM

The command completed successfully.


Posted by admin in • Windows 2003 Server
Permalink
Page 1 of 1 pages