The DHCP service is not servicing clients because it has determined that it is not authorized to run.

The_DHCP_service_is_not_servicing_clients_because_it_has_determined_that_it_is_not_authorized_to_run._1_Rule (Rule)

Knowledge Base article:

Management Pack

Summary
The DHCP 2000 Server service failed registration and authorization. Therefore, the DHCP 2000 Server is unavailable and cannot serve client requests. This condition does not repair itself until the error is fixed.

Causes
The DHCP service has determined that it is not authorized to run and therefore cannot service any clients. Possible causes include: The DHCP 2000 Server is a member of an Active Directory domain, but it is not authorized in Active Directory. The DHCP 2000 Server is a member of a workgroup in an Active Directory domain environment (and it is thus potentially a ‘rogue’ DHCP 2000 Server). The DHCP 2000 Server is configured to be authorized in Active Directory but cannot contact a domain controller to confirm authorization.

Resolutions
If applicable, use one or more of the following resolutions. Resolution 1: Authorize the server. Log on to the DHCP 2000 Server as a member of the Enterprise Administrators group, and then open DHCP. In the console tree, click DHCP, and then, on the Action menu, click Manage Authorized Servers. In the Manage Authorized Servers dialog box, click Authorize, type the name or IP address of the server that you want to authorize, and then click OK. When prompted, click Yes to verify that this is the server name and IP address that you want to add to the authorized list. If necessary, in the Managed Authorized Servers dialog box, click Refresh to display the newly authorized server, and then click Close. Close DHCP, and then restart (reboot) the DHCP 2000 Server. Resolution 2: If the server is a member of a Workgroup in an Active Directory environment, do one of the following: If you do not want to use this computer as a DHCP 2000 Server, remove it from the network to avoid having it act as a rogue DHCP 2000 Server. Join it to the domain, and authorize it (see Resolution 1). Resolution 3: Investigate whether a network problem prevents the DHCP 2000 Server from contacting Active Directory to confirm authorization: Check the networking configuration of the DHCP 2000 Server by running ipconfig /all at a command prompt. Review the output to confirm that an IP address appears for both DNS servers and Primary WINS Server, and that these IP addresses are correct. Use the Nltest.exe tool to confirm that the DHCP 2000 Server can contact a domain controller for the domain, and at the same time (if the DHCP 2000 Server cannot connect to the domain controller) to reset the secure channel, which might resolve the problem. At a command prompt on the DHCP 2000 Server, type: nltest /sc_reset:YourDomainName View the results to check whether the server successfully establishes a secure channel with a valid domain controller. The Nltest.exe tool is available as part of the Windows Server 2003 Resource Kit Tools at http://go.microsoft.com/fwlink/?LinkId=4544 or the Windows 2000 Resource Kit Tools at http://go.microsoft.com/fwlink/?LinkId=1849. Use the Ping.exe tool with a larger than normal packet size to check whether the network connection between the DHCP 2000 Server and its domain controller (which was discovered by using Nltest.exe in the preceding step) is stable. This command can reveal network latency between the two computers. At a command prompt on the DHCP 2000 Server, type the following command (note that -l is an “el” character, not a one): ping -l 1000 YourDomainController –n 30 If latency does exist, the Time to Live (TTL) values in the resulting output are very low or packets are dropped from the ping entirely. If high latency is experienced or packets are dropped, use the Tracert.exe tool to trace the route from the DHCP 2000 Server to the domain controller to see where latency occurs. At a command prompt on the DHCP 2000 Server, type: tracert YourDomainController Investigate whether a network problem prevents the DHCP 2000 Server from contacting a domain controller by performing one or more of the following steps: Reconnect and check network cabling. If necessary, replace cables. Confirm that the duplex settings on the network adapters within the DHCP 2000 Server match the duplex settings for the switch port or ports. Check other networking hardware, including hardware error logs, that might indicate network adapter problems. If necessary, replace the network adapter. Check that network devices downstream from the DHCP 2000 Server are functioning correctly, including switches and routers. Restart the DHCP 2000 Server service. Restart (reboot) the DHCP 2000 Server.

External Knowledge Sources
Microsoft Knowledge Base Search for additional information on this event.

Sample Event
The DHCP service is not servicing any clients on the network because it has determined that it is not authorized to run.

Related Events
For more information about other event IDs that are related to DHCP 2000 Server service registration and authorization failure, see DHCP 2000 Server system event IDs 1045, 1046, 1049, 1050, 1051, and 20037.

Element properties:

Target

Microsoft.Windows.Server.DHCP.Microsoft_Windows_2000_DHCP_Servers_Installation

Category

EventCollection

Enabled

True

Event_ID

20039

Event Source

DHCPServer

Alert Generate

True

Alert Severity

Error

Alert Priority

Low

Remotable

True

Alert Message

The DHCP service is not servicing clients because it has determined that it is not authorized to run.

$Data/EventDescription$

Event Log

System

Comment

Mom2005ID='{2C596EE0-006E-4B2D-A12B-744838E893DE}';MOM2005ComputerGroupID={37B5AB26-6DE0-11D3-945C-0090275A5879}

Member Modules:

ID	Module Type	TypeId	RunAs
_907D4578_146C_11D3_AB21_00A0C98620CE_	DataSource	Microsoft.Windows.EventProvider	Default
CollectEventData	WriteAction	Microsoft.SystemCenter.CollectEvent	Default
CollectEventDataWarehouse	WriteAction	Microsoft.SystemCenter.DataWarehouse.PublishEventData	Default
GenerateAlert	WriteAction	System.Mom.BackwardCompatibility.AlertResponse	Default

Source Code:

<Rule ID="The_DHCP_service_is_not_servicing_clients_because_it_has_determined_that_it_is_not_authorized_to_run._1_Rule" Target="Microsoft.Windows.Server.DHCP.Microsoft_Windows_2000_DHCP_Servers_Installation" Enabled="true" ConfirmDelivery="true" Comment="Mom2005ID='{2C596EE0-006E-4B2D-A12B-744838E893DE}';MOM2005ComputerGroupID={37B5AB26-6DE0-11D3-945C-0090275A5879}">

  <Category>EventCollection</Category>

  <DataSources>

    <DataSource ID="_907D4578_146C_11D3_AB21_00A0C98620CE_" Comment="{907D4578-146C-11D3-AB21-00A0C98620CE}" TypeID="WindowsLibrary!Microsoft.Windows.EventProvider">

      <ComputerName>$Target/Host/Property[Type="WindowsLibrary!Microsoft.Windows.Computer"]/NetworkName$</ComputerName>

      <LogName>System</LogName>

      <Expression>

        <And>

          <Expression>

            <SimpleExpression>

              <ValueExpression>

                <XPathQuery Type="Integer">EventDisplayNumber</XPathQuery>

              </ValueExpression>

              <Operator>Equal</Operator>

              <ValueExpression>

                <Value>20039</Value>

              </ValueExpression>

            </SimpleExpression>

          </Expression>

          <Expression>

            <SimpleExpression>

              <ValueExpression>

                <XPathQuery Type="String">PublisherName</XPathQuery>

              </ValueExpression>

              <Operator>Equal</Operator>

              <ValueExpression>

                <Value>DHCPServer</Value>

              </ValueExpression>

            </SimpleExpression>

          </Expression>

        </And>

      </Expression>

    </DataSource>

  </DataSources>

  <WriteActions>

    <WriteAction ID="GenerateAlert" TypeID="MomBackwardCompatibility!System.Mom.BackwardCompatibility.AlertResponse">

      <AlertGeneration>

        <GenerateAlert>true</GenerateAlert>

        <Owner/>

        <Description>

                $Data/EventDescription$

              </Description>

        <AlertLevel>70</AlertLevel>

        <ResolutionState/>

        <Source>

                $Data/PublisherName$

              </Source>

        <Name>The DHCP service is not servicing clients because it has determined that it is not authorized to run.</Name>

      </AlertGeneration>

      <InvokerType>0</InvokerType>

    </WriteAction>

    <WriteAction ID="CollectEventData" TypeID="SystemCenterLibrary!Microsoft.SystemCenter.CollectEvent"/>

    <WriteAction ID="CollectEventDataWarehouse" TypeID="DataWarehouseLibrary!Microsoft.SystemCenter.DataWarehouse.PublishEventData"/>

  </WriteActions>

</Rule>