AD on 2003

0
May 11, 2003

We have created an AD Domain on Windows 2000 Server with no problems.

We just created an AD Domain on Windows 2003 and we're getting some weird problems.

Both of these domains are behind firewalls so they're completely separate from everything.

On the 2003 domain we have two DC's, and two other Windows 2003 servers.  These 4 machines seem to be working flawlessly.

Now I took a fresh install of XP on a desktop, added him to the domain and I'm getting nothing but problems with him.

1) Computer added to the domain

2) We move the computer into the proper OU

3) You can login with your domain account and get to network resources

Now the problem is as follows.  If you look in the event log, even though you could log in using your AD Domain account, the following messages appear in the event log:

Application Event Log: Event ID 1054

Windows cannot obtain the domain controller name for your computer network. (The specified domain either does not exist or could not be contacted. ). Group Policy processing aborted.

System Event Log: Event ID 5719

No Domain Controller is available for domain SPTPDN due to the following:

There are currently no logon servers available to service the logon request. .

Make sure that the computer is connected to the network and try again. If the problem persists, please contact your domain administrator.

System Event Log: Event ID 29

The time provider NtpClient is configured to acquire time from one or more time sources, however none of the sources are currently accessible.  No attempt to contact a source will be made for 14 minutes. NtpClient has no source of accurate time.

So even though it logs me on, it says it can't find the domain controller.  SPTPDN is the name of the AD tree (SPTPDN.local)  It is definately logging me on though, I can change my domain account AD password, I can get to server resources etc.   I have tried setting "Net Time" to point to the specific domain and domain DC's, but I still get the NTP error.  The network account I'm logging in with is a domain administrator, and has full permissions to everything so it is most assuredly not a perms problem.

so after googling around I saw some messages saying that it could be NIC card related, I updated the NIC drivers to the latest version from dell (for our dell desktop), checked all the network settings, etc... with no luck.  The client machine can SEE all the machines fine.  I can get to shares, I can ping, everything.  

So I'm stuck.  Everything seems fine, there is nothing special about this domain, the 4 servers seem to be fine (the two DC's and the two resource servers) but the XP client I'm testing with just doesn't appear to be communicating to the domain correctly.

Help would be greatly appreciate, I'm out of ideas.

15

answers

Comments See all(0)

Add comment
0
April 05, 2004

PAQed, with points refunded (500)

modulo

Community Support Moderator

0
May 11, 2003

Check here to start with

http://www.chicagotech.net /wineventi d.htm#Even t%20ID%201 054

:

Sunray

0
May 11, 2003

Check for discussion here

http://www.eventid.net/

Event id : 5179 --

http://support.microsoft.c om/default .aspx?scid =kb%3Ben- u s%3B310339

Sunray

0
May 11, 2003

If you do IPCONFIG /ALL from the client does it show the correct info?

Also, on your DNS server is the client in the DNS snap-in under forward lookup zones under the domain.com?  Try IPCONFIG /FLUSHDNS and IPCONFIG /REGISTERDNS.

Ensure Enable NetBIOS over TCP/IP is selected as well in the TCPIP properties of the client.

0
May 11, 2003

I had previously added in the registry value you linked to there, and that didn't help.

And before anyone asks, yes I gave it a reboot after making that change.

Sorry I forgot to mention that I had already made that change.

Thanks!

=Timberbt

0
May 11, 2003

Hey Stoner79,

IPConfig /all from the XP machine shows all the correct info  

Looking at the DNS server now, There is no entry for the client under Forward Lookup Zones -> sptpdn.local

There is an entry in the machine under Reverse Lookup Zones -> #.#.57.x Subnet  (57 subnet is all mine to work with)

When adding a machine to the domain do I need to manually added a Forward Lookup Zone entry for the machine?  That seems kind of weird.

The FlushDNS command should be done on the DC's?  

And on the client, NetBios over TCP/IP is enabled.

Thanks!

=Timberbt

0
May 11, 2003

We just added the entry into the Forward Lookup Zone, gave the client a restart and are still getting all three errors in the event log.

As additional info we are doing static DNS for this tree.  We must have just missed the Forward Lookup Zone entry.

Thanks again all,

=Timberbt

0
May 11, 2003

Enable Dynamic DNS so you don't have to manually add hosts to forward lookup zones, then if you flush and register dns from the client it should appear in the DNS snap-in after a few minutes.

Try taking the machine off the domain and then adding it again.  It may be worth editing the HOSTS file and LMHOSTS file if you have WINS on the client as well pointing to the DNS/WINS server respectivaly.

0
May 11, 2003

Logon issues with W2k/XP clients in a W2k AD are mostly DNS problems.

The most important stuff in short (check the FAQ for a verbose version): On your DC, the DNS entry should point *only* to itself. On your clients, the DNS entry should point *only* to your DC. This makes sure your internal name resoultion works properly. For external resolution to function, delete the "." forward lookup zone if present (and configure forwarders).

Thos should help:

Frequently Asked Questions About Windows 2000 DNS and Windows Server 2003 DNS

http://support.microsoft.c om/?kbid=2 91382

Event ID 1054 Is Logged in the Application Event Log

http://support.microsoft.c om/?kbid=2 98656

How Domain Controllers Are Located in Windows XP

http://support.microsoft.c om/?kbid=3 14861

HOW TO: Troubleshoot DNS Name Resolution on the Internet in Windows 2000

http://support.microsoft.c om/?kbid=3 16341

HOW TO: Configure DNS for Internet Access in Windows 2000

http://support.microsoft.c om/?kbid=3 00202

Troubleshooting Common Active Directory Setup Issues in Windows 2000

http://support.microsoft.c om/?kbid=2 60371

How to Verify the Creation of SRV Records for a Domain Controller

http://support.microsoft.c om/?kbid=2 41515

HOW TO: Use the Network Diagnostics Tool (Netdiag.exe) in Windows 2000

http://support.microsoft.c om/?kbid=3 21708

0
May 11, 2003

I'll enable it and give it another good whack.  

WIll

1) Remove client from domain

2) enable dynamic DNS

3) flush client's DNS

4) restart client

5) add client to domain

Then see if #1 errors go away  #2 DNS entries get created in both forward and reverse lookup zones.

Will get back with results shortly.  Thanks.

0
January 12, 2003

On all DCs I use this startup order ALWAYS.  Verify that DDNS is working, if so verify the DHCP account used for updating DNS has appropriate permissions.  As previously stated 99% of these problems are name resolution issues.

<service name>    "->" means dependant upon...  <service name>

DNScache

->DNS

WINS

->DNS

lanmanworkstation

->DNS

lanmanserver

->DNS

browser

->netlogon

netlogon

->lanmansever (or lanmanworkstation; basically all name resolution services need to be running befor netlogon, cept browser)

Providing DDNS is correctly configured and enabled, netlogon should update its netlogon.dns file and dynamically update DNS, again DDNS needs to be configured right.

Just to be sure, clear the cache, ipconfig /flushdns, restart DNS (all above services will restart in order)

ipconfig /registerdns

nbtstat -RR

netdiag /f

dcdiag /f

you may need to fix group policy as incorrect GP design can make a whole lot of nothing happen when things are supposed to

dcgpofix /both

Make sure in networking ID that te connections DNS suffix is the domain name.  I have seen where dcpromo doesn't update that (I now hard set ip befoer hand) and cause a mess that is hard to isolate.  

-Eric

Security and Virus forum moderator:

<edited by YensidMod>

0
January 12, 2003

This answer was found by one of our Network guys here....  Turned out that it was a setting on the switch.

The switches used on this network were looking for a loop (Spanning tree algorithm).

The newer machines we had running XP booted so fast that they were coming online BEFORE the spanning tree algorithm had completed, thus they were not allowed full access to the port yet.

The network folks had to switch the spanning tree algorithm check to do a POST check instead of a PRE check for loops.

After they did this, the error messages mentioned in the original question disappeared and everything has since worked fine.

Thanks for all the help and suggestions!

=timberbt

0
January 12, 2003

Glad you could solve it (interesting problem, though ...); don't forget to go to Community Support to have the question PAQed and your points refunded.

0
January 12, 2003

Will do, it definately wasn't something I would have thought of either.   Apparently one of our network guys knew of the problem with Cisco switches and thought he'd give it a try.  Definately one to remember for the next time around though.  :)  

Thanks again all.

=timberbt

0
April 05, 2004

Thanks, sorry I left it hanging.

Related Questions

This is the very first question

Hello guys! This is the first post in this site Read More

Views

2k

Votes

4

Answers

2

January 08, 2016

report values not showing up.

I have a crystal report which I pass a DataSet to using VB.NET. The report was working fine, but then I make some changes to the import query and now nothing shows up in the crystal report. Crystal do Read More

Views

1k

Votes

0

Answers

12

September 06, 2005

Event log doesn't overwrite as needed in SP4

Hello All, After upgrading from SP3 to SP4 on several Windows 2000 PRO machines everything looked fine, but from time to time applications can&#39;t write to the event log. When I try to view the appl Read More

Views

1k

Votes

0

Answers

9

May 11, 2003

"Failed to self-register XYZ.dll"

Hi there, I wrote a OLE-automation-server DLL in VB4.0. I use Installshield Express to install it as part of my program on the target computers. Now on some computers I get the message &quot;Failed to Read More

Views

2k

Votes

0

Answers

2

November 08, 1998

Please help understand these notes on image processing

Can someone please help me understand these lecture notes... On the right of the page; What does &quot;normalised by one notion of the area of a pixel&quot; mean? On the first formula for A, Is that a Read More

Views

1k

Votes

0

Answers

3

February 05, 2009

Can someone please explain this paragram on the chain rule in image processing

Please see the screenshot, How is 3133030 got from 10103322? Read More

Views

1k

Votes

0

Answers

1

January 05, 2009

ADDT ASP Upload Error " Type mismatch: 'tNG_isFileInsideBaseFolder' "

I am trying to create a simple insert record and upload image function on an ASP page built using Adobe Dreamweaver Developer Toolkit. I have done this many times before with no problem, however, i ha Read More

Views

1k

Votes

0

Answers

0

November 02, 2008

MYSQL Select query with custom ORDER BY

Hi, is it possible to customize the order of the returned rows in mysql? Example: I have a Table with a column &quot;name&quot;, now I want to have all entries ordered by name, but I want the entries Read More

Views

1k

Votes

0

Answers

5

July 02, 2010

Folder Redirection in Server 2003

We have a Windows Server 2003 Standard Ed. Is there a way to redirect the users my documents to a folder that has already been created on the server? Read More

Views

1k

Votes

0

Answers

2

July 05, 2007

Partiton magic  version 8.0 having error 1523 while executing batch

I followed the partition magic 8.0 wizard to partition my hard disk while rebooting &#160;I came across this problem &#160;&quot;error 1523 while executing batch&quot; What can I do to solve this prob Read More

Views

995

Votes

0

Answers

2

May 11, 2003

Please explain this paragraph in image processing (screenshot attached)

Two questions; How is the equation (10.1-15) formed? &quot;are isotropic for rotation increments of 90 degrees and 45 degrees respectively&quot; What does this mean Read More

Views

762

Votes

0

Answers

7

January 05, 2009

xp_cmdshell with net use

Hi, when I use &#39;net use \192.168.0.1\c$ password /user:username&#39; at the command prompt, it works fine. &#160;But if i try to use it in sql with &quot; exec master..xp_cmdshell &#39;net use \19 Read More

Views

708

Votes

0

Answers

5

April 11, 2003

hp ux11

i have a hp ux11 server. and i edited the /etc/resolv.conf to use my win2003 server dns server. That went fine, however, I would like to go the other way and add an entry on my win2003 dns to resolve Read More

Views

400

Votes

0

Answers

3

October 12, 2009

Using an application over a LAN

I have written an application that needs to be used on a LAN. &#160;The application setup wizard takes care of registering everything on a single PC, but how do you go about writing a setup program th Read More

Views

349

Votes

0

Answers

9

August 07, 1998

Need subnet of 12 IPs.

Please, Can someone help me to create a subnet consisting of 12 IP&#39;s. Thanks.. Read More

Views

361

Votes

0

Answers

5

April 11, 2003

Drill down in a cross-tabl report

Hello, Would some experts to show me if it is possible to do drill-up or drill-down (or both) in a cross-tab report? I would also like to know if it is possible to control what fields to be displayed/ Read More

Views

290

Votes

0

Answers

0

September 06, 2005

Using RDO, Enterprise V Professional

We would like to use RDO on our project made up of 4 developers. Do we need to have a copy of Enterprise for each developer or is it possible to use Professional for those developers not writing the R Read More

Views

338

Votes

0

Answers

6

January 07, 1998

Can't Edit IIS Metabase.xml

We do this on every windows 2003 server and never had an issue. We cannot edit the IIS Metabase.xml We have stopped IIS and made change click save, no problem but it does not take the new information. Read More

Views

342

Votes

0

Answers

0

July 05, 2007

copy directorires - HP UNIX

Let&#39;s say my source file is /A/B/C/D/file1, and mytarget directory is /E/F/G, I want the result should look like this. /E/F/G/A/B/C/D/file1 I am using rsync to copy the files older than x no of da Read More

Views

353

Votes

0

Answers

14

September 12, 2009

unable to shutdown

My windows shutdown will restart itself automatically everytime I shut down the PC. Another query is, how can I have 2 network settings in windows 2000. This is because I&#39;m travelling to 2 diferen Read More

Views

196

Votes

0

Answers

6

April 11, 2003