域环境0x800706BA - RPC Server Unavailable的原因是很多的,如果报这个错,那么wbemtest是通不过的
现象:当客户端计算机与远程 COM 对象发出请求,则可能会生成错误代码 0x800706BA
错误代码 0x800706BA 表示远程过程调用 (RPC) 服务器不可用。
Error code 0x800706BA may be generated when a client computer makes a request to a remote COM object
Symptoms
When a client computer makes a request to a remote Microsoft COM object, the request may fail. Additionally, error code 0x800706BA may be generated.
Note Error code 0x800706BA indicates that the remote procedure call (RPC) server is unavailable.
原理:
当客户机释放远程 COM 对象时,将发生此问题。 大约 20 秒到 30 秒后在客户端计算机释放该远程 COM 对象,在服务器使用 dcom RPC 端口已关闭。如果在客户端计算机释放远程 COM 对象后立即断开网络,在服务器使用 dcom RPC 端口保持打开状态的几个小时。这可能会导致端口耗尽。未来请求从客户端计算机与远程 COM 对象失败。
Cause
This problem occurs when the client computer releases the remote COM object. Approximately 20 seconds to 30 seconds after the client computer releases the remote COM object, the RPC ports that were used by DCOM on the server are closed. If the network is disconnected immediately after the client computer releases the remote COM object, the RPC ports that were used by DCOM on the server remain open for several hours. This can lead to port exhaustion. Future requests from the client computer to the remote COM object fail.
wbemtest是cmd命令,有图形界面工具比如WMI Explorer、SimpleWMIView挺好测试的,或者就直接用上面的wmic命令测试也可以,
客户端上以管理员身份打开cmd,执行
wmic /node:"对端内网IP或主机名" /USER:"域administrator" /password:密码 process call create "fsutil file createnew C:empty.txt 0"
看看是否报错,对端磁盘根目录有没有产生一个empt.txt的空文件
wmic测试通不过的话,其他的wmi工具大概率也通不过
wbemtest图形工具出处:
https://www.ip-tools.biz/index.htm 或 https://www.ks-soft.net/hostmon.eng/index.htm
http://launcher.nirsoft.net/utilities_list.html
可能有
1、网络不通
2、DNS问题影响hostname解析
3、交互的双方在各自的防火墙、安全组没放行对方或安全软件拦截,或被访问一方没有开启远程管理和远程协助
关闭防火墙可以分2步,第一步运行firewall.cpl,左侧开启或关闭那里关闭后,再在服务列表找到运行中的windows firewall服务停止
运行fireawll.cpl手动在左侧开启或关闭那里关闭的操作也可以参考https://www.dell.com/support/kbdoc/zh-cn/000135271/windows-server-如何-在-windows-server-2008-及-更高-版本-中-正确-关闭-windows-防火-墙
执行命令来完成
2008R2:
netsh advfirewall set allprofiles state off
≥2012:
Set-NetFirewallProfile -Profile Domain,Public,Private -Enabled False
4、双方时间不同步
公共镜像组策略配云平台的ntp信息了,域成员机使用公共镜像应该修改组策略ntp客户端配置
参考
https://www.cnblogs.com/lyhabc/p/6270448.html
https://blog.51cto.com/itwish/2064570
5、相关服务异常(有个第三方软件检查挺全的)
http://linyangrj.com/filedown/ScanRpcOpen 9.3.rar
不限于图上的这些服务,比如时间服务、Windows Remote Management (WS-Management)服务【winrm】就没在图上
6、网络安全: LAN 管理器身份验证级别 不合理或 凭据不对(用户名、密码不对或参考https://cloud.tencent.com/developer/article/1835481)
https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/jj852207(v=ws.11)?redirectedfrom=MSDN
7、rpc相关服务的注册表有异常
参考https://cloud.tencent.com/developer/article/1927582
8、没有配置好winrm服务
以管理员身份打开powershell执行下这3句代码即可
winrm quickconfig -force
Set-Item WSMan:localhostclienttrustedhosts -value * -Force
Get-Item WSMan:localhostclienttrustedhosts
参考:
https://wiki.splunk.com/Community:TroubleshootingWMIIssues
https://www.ibm.com/support/pages/windows-discovery-fails-wmi-error-0x800706ba-rpc-server-unavailable
https://www.dell.com/support/kbdoc/zh-cn/000179474/故障排除-rpc-server-不可用-错误#5
https://support.quest.com/zh-cn/kb/55268/the-rpc-server-is-unavailable-exception-from-hresult-0x800706ba
https://www.abackup.com/easybackup-tutorials/rpc-server-unavailable.html
https://www.cnblogs.com/Nikola/archive/2011/04/11/2012057.html
https://www.cnblogs.com/feiquan/p/10422517.html
https://jingyan.baidu.com/article/48b558e34d41d47f38c09af7.html
http://www.xitonghe.com/jiaocheng/diannao-156.html
https://www.chongzhuangxitong.com/20181010/1017.html
