Event ID 5141 and 4662. DNS entry for DC getting deleted by System

all,

been trying track down why static dns entry in ad integrated dns zone keeps being deleted "system".

the entry 2nd of 2 dc's. not fsmo role holder.

if drill down adsiedit microsoft dns zones (cn=microsoftdns), find record in question , open propertires, see has been marked dnstombstoned true.  

as long stays true, delete entry , that, however, if change attribute false, manually create a new dns entry, attribute gets changed true , record again gets deleted.

below actual security log event viewer (edited bit) logged after dns ad object has been deleted.

my question is, how troubleshoot/figure out why system keeps deleting dns entry???

thanks input.

      -joe

 a directory service object deleted.

subject:

security id: system

account name: system

account domain: nt authority

logon id: 0xb713de

directory service:

name: domain.com

type: active directory domain services

object:

dn: dc=domain-dc1,dc=domain.com,cn=microsoftdns,dc=domaindnszones,dc=domain,dc=com

guid: dc=domain-dc1,dc=domain.com,cn=microsoftdns,dc=domaindnszones,dc=domain,dc=com

class: dnsnode

operation:

tree delete: no

correlation id: {2df081230-546e-4a1b-8efb-fdd547u6fc97}

application correlation id: -

guys,

again, responses.  wanted let know resolved. seems issue dc had record being deleted. when in sites , services, trying replicate other dc, "access denied" message displayed.  ended demoting dc, making sure srv records clean , no other anomolies , rebooted server. promoted server again dc , well. no more issues , everythin works should.

thanks,

joe

Windows Server  >  Directory Services