Home
  •  

Microsoft Windows Server DNS ADI DNSAdmins Error

Microsoft.Windows.Server.DNS.ADI.DNSAdminsError (Rule)

Alert generating rule for Active Directory Integration.

Knowledge Base article:

Summary

You can configure the DNS Server service to use Active Directory Domain Services (AD DS) to store zone data. This makes it possible for the DNS server to rely on directory replication, which enhances security, reliability, and ease of administration.

Causes

The DNS server was unable to load or create the DnsAdmins group. The most likely cause is that the Group Name has been changed.

Resolutions

Correct the group name

The DNS Server service depends on the DnsAdmins group being named DnsAdmins. It is likely that the name of this group has changed, which prevents the DNS Server service from accessing the group. Determine the new name that was given the group, and then give it the correct name.

To perform this procedure, you must have membership in Domain admins, or you must have been delegated the appropriate authority.

To rename a group:

1.On a domain controller, start Active Directory Users and Computers. To start Active Directory Users and Computers, click Start, click Administrative Tools, and then click Active Directory Users and Computers.

2.In the console tree, expand the domain, and then click Users.

3.In the right pane, right-click the DNS administrators group, click Rename, and then type DnsAdmins.

4.Press ENTER, and then, in the Rename Group dialog box, click OK.

External

http://technet.microsoft.com/en-us/library/dd365069(v=ws.10).aspx

Element properties:

TargetMicrosoft.Windows.Server.DNS.Server
CategoryAlert
EnabledTrue
Alert GenerateTrue
Alert SeverityError
Alert PriorityNormal
RemotableTrue
Alert Message
Windows DNS - DNSAdmins Creation Error

Event ID: {0}
Event Source: {1}
Event Log: {2}

Event Description: {3}
Event LogDNS Server

Member Modules:

ID Module Type TypeId RunAs 
DS DataSource Microsoft.Windows.EventProvider Default
Alert WriteAction System.Health.GenerateAlert Default

Source Code:

<Rule ID="Microsoft.Windows.Server.DNS.ADI.DNSAdminsError" Enabled="true" Target="Microsoft.Windows.Server.DNS.Server" ConfirmDelivery="true" Remotable="true" Priority="Normal" DiscardLevel="100">

  <Category>Alert</Category>

  <DataSources>

    <DataSource ID="DS" TypeID="Windows!Microsoft.Windows.EventProvider">

      <ComputerName>$Target/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/NetworkName$</ComputerName>

      <LogName>DNS Server</LogName>

      <Expression>

        <SimpleExpression>

          <ValueExpression>

            <XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>

          </ValueExpression>

          <Operator>Equal</Operator>

          <ValueExpression>

            <Value Type="UnsignedInteger">4017</Value>

          </ValueExpression>

        </SimpleExpression>

      </Expression>

    </DataSource>

  </DataSources>

  <WriteActions>

    <WriteAction ID="Alert" TypeID="Health!System.Health.GenerateAlert">

      <Priority>1</Priority>

      <Severity>2</Severity>

      <AlertOwner/>

      <AlertMessageId>$MPElement[Name="Microsoft.Windows.Server.DNS.ADI.DNSAdminsError.AlertMessage"]$</AlertMessageId>

      <AlertParameters>

        <AlertParameter1>$Data/EventDisplayNumber$</AlertParameter1>

        <AlertParameter2>$Data/EventSourceName$</AlertParameter2>

        <AlertParameter3>$Data/Channel$</AlertParameter3>

        <AlertParameter4>$Data/EventDescription$</AlertParameter4>

      </AlertParameters>

      <Suppression>

        <SuppressionValue>$Data/LoggingComputer$</SuppressionValue>

      </Suppression>

      <Custom1/>

      <Custom2/>

      <Custom3/>

      <Custom4/>

      <Custom5/>

      <Custom6/>

      <Custom7/>

      <Custom8/>

      <Custom9/>

      <Custom10/>

    </WriteAction>

  </WriteActions>

</Rule>