Home »
Active Directory issues and fixes

DNS configuration Issues

These quick fixes will help you track down misconfigurations, restore order, and get users logging in smoothly.

  • DNS configuration Issues
  • Verify SRV records exist in DNS
  • Flush and register DNS records

1. DNS configuration Issues

Error Message: KRB_AP_ERR_KDC_UNKNOWN – "Cannot locate Key Distribution Center."

Issue

Kerberos relies on DNS to find domain controllers. Misconfigured DNS settings can cause authentication failures.

Fix 1:

Check the client’s DNS settings

How to do it

  • Open Command Prompt and run this command: ipconfig /all
  • Ensure the Primary DNS Server is pointing to the correct domain controller.

2. Verify SRV records exist in DNS

Fix:

How to do it

  • Open DNS Manager.
  • Navigate to Forward Lookup Zones
  • Ensure _kerberos._tcp.<domain> and _ldap._tcp.<domain> SRV records exist.
Verify SRV records exist in DNS

3. Flush and register DNS records

Open the Command Prompt as an administrator and type the following commands:

  • ipconfig /flushdns
  • ipconfig /registerdns

Awards & recognition

ManageEngine named in 2024 Gartner MQ for SIEM Gartner Peer Insights Customers' choice for SIEM

  Editor's choice  
  7th time in the MQ in 2024  
  Major player in 2024  
  Integrated cloud security Innovator  
  Technical excellence in SIEM  
  Market leader most innovative  

Gartner® Magic Quadrant™ for SIEM 2024

Features

Support

Secure your IT infrastructure with a cloud SIEM solution

Solutions by industry

Related solutions

One-stop solution to all Log Management and Active Directory Auditing

Free Trial Get Quote
Email Download Link