Microsoft KB Archive/306925

= After a new DHCP server is authorized, the original DHCP server becomes unauthorized and cannot be authorized again in Windows 2000 Server =

Article ID: 306925

Article Last Modified on 10/30/2006

-

APPLIES TO


 * Microsoft Windows 2000 Server
 * Microsoft Windows 2000 Advanced Server

-



This article was previously published under Q306925



SYMPTOMS
When you try to authorize a new Dynamic Host Configuration Protocol (DHCP) server, the new DHCP server may not be authorized. This behavior occurs on a network that has existing DHCP servers that are authorized in Active Directory.

Later, the new DHCP server may be authorized, but the existing DHCP servers may be unauthorized.

When you try to authorize the original DHCP servers again, you may receive one of the following error messages:

Error message 1

The specified servers are already present in the Directory Service

Error message 2

DHCP Server not authorized:

Error:

Event ID: 1051

Source: DHCPServer

The DHCP/BINL service has determined that it is not authorized to service clients on this network for the Windows domain:.



CAUSE
This behavior may occur if the IP address of the original DHCP server has changed.



RESOLUTION
To resolve this behavior, turn on the Unauthorize option for the original DHCP server in Active Directory, and then authorize the DHCP server again. This action will assign the new IP address to the DHCP server. It will also permit DHCP to distribute leases.

To turn on the Unauthorize option for the original DHCP server in Active Directory and then to authorize the DHCP server again, follow these steps:
 * 1) Click Start, point to Programs, point to Administrative Tools, and then click DHCP.
 * 2) Click the name of the original DHCP server.
 * 3) On the Action menu, click Unauthorize.
 * 4) When the Are you sure you want to do this? message appears, click Yes.
 * 5) On the Action menu, click Authorize.

Alternatively, you can use the Active Directory Service Interfaces (ADSI) Edit snap-in (Adsiedit.msc) to authorize the DHCP servers. ADSI Edit is available in Microsoft Windows 2000 Support Tools. For more information about how to install Windows 2000 Support Tools, click the following article number to view the article in the Microsoft Knowledge Base:

301423 How to install the Windows 2000 Support Tools to a Windows 2000 Server-based computer

Warning If you use the ADSI Edit snap-in, and you incorrectly modify the attributes of Active Directory objects, you can cause serious problems. These problems may require you to reinstall Microsoft Windows 2000 Server, Microsoft Exchange 2000 Server, or both. Microsoft cannot guarantee that problems that occur if you incorrectly modify attributes of Active Directory objects can be solved. Modify these attributes at your own risk. To use ADSI Edit to authorize the DHCP servers, follow these steps:  Click Start, point to Programs, point to Administrative Tools, and then click Active Directory Sites and Services. Click Services, and then click Net Services. If you cannot see Services, click to select Show Services Node on the View menu. In the right pane, right-click the name of the DHCP servers that you cannot add to Active Directory, and then click Delete. When the Are you sure you want to delete this object? message appears, click Yes. Force replication of Active Directory to the other sites, or wait for the replication cycle to be completed. Click Start, click Run, type Adsiedit.msc in the Open box, and then click OK.</li> Expand Configuration, expand CN=Configuration, expand CN=Services, and then click CN=NetServices.</li> Right-click CN= , and then click Properties.</li> In the Select a property to view list, click DHCPServers.</li> In the Values list, click the name of the new DHCP server, click Remove, and then click OK.</li> Click CN=NetServices, right-click the entry for the new DHCP server, and then click Delete.</li> Verify that all Domain Name System (DNS) information is correct. To do this, follow these steps: <ol style="list-style-type: lower-alpha;"> Verify that the Microsoft Management Console (MMC) for the DHCP server has the correct fully qualified domain name (FQDN).</li> At a command prompt, type netdiag /fix, and then press ENTER.</li></ol> </li> Force replication of Active Directory to the other sites, or wait for the replication cycle to be completed.</li> Restart the computer.</li> Authorize the DHCP servers again.</li></ol>

Keywords: kbfasttrack kbtshoot kberrmsg kbnetwork kbnofix kbpolicy kbprb KB306925

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.