Article ID: 2751452 - View products that this article applies to.
You may encounter a situation where one of the DNS server's in the environment starts showing an issue where the zones are not loaded on the DNS console and you see Event id 4000 and 4007 logged in the DNS event logs:
Event ID 4000:
Event id 4007:
Also when you try to open the DNS console you get a pop up giving "Access Denied".
You notice that the DNS Server service is up and running.
This happens when that particular DC/DNS server has lost its Secure channel with itself or PDC.
This can also happen in a single DC environment where that DC/DNS server holds all the FSMO roles and is pointing to itself as Primary DNS server.
> In case you have other Domain Controller/ DNS server present in the environment then configure the server experiencing the issue to point to other active DNS server in TCP/IP properties.
If this is the only DC in the environment and there are no other DNS Servers available then perform the same steps but replate the "PDC.Domain.com" with the server's own IP address (since it itself is the PDC)
If you are facing the issue on a Windows 2008 server (Non R2) then make sure the patch related to KB 2615570 is installed on the server
(http://go.microsoft.com/fwlink/?LinkId=151500)for other considerations.