Re: Strange AD and DNS Error
- From: "Herb Martin" <news@xxxxxxxxxxxxxx>
- Date: Thu, 2 Mar 2006 16:36:17 -0600
"Chris-n-Jordan" <chrismcbr@xxxxxxxxx> wrote in message
news:1141337229.906848.260110@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Thanks for the reply....
First, the DHCP has the DNS listed which should give the PDC IP address
in response to the request for Default Domain- AMP
Huh? Ok, but in neither this explanation or you original is it
giving the "DC" but rather it appears the default DOMAIN.
That should NOT be an IP but rather the machines domain name.
Every machine should ALSO have the correct name set in the SYSTEM
control panel.
As to the IP, the DHCP should provide the IP of the DNS server
which may also be the DC but that portion is irrelevant to making
it work -- just an accident of the way we run our systems with
multiple service roles.
As for DHCP- I don't really suspect DHCP...I was just noting that it
was one player in the game... It really passes off the issue to DNS
immediately. The problem is that when the login goes through so
quickly, the DNS resolution is not happening and the DC is not
contacted and the GP is not applied.
Well we know that DHCP completes BEFORE the computer
logs (itself) on, before it obtains its GPOs (if any), before it
logs on any user (even autologon).
All of these must happen after DHCP and DNS are working
since they are required for any network IP access.
This is a regulary user profile on the domain, but I have put it in its
own OU and set up a special set of policies that apply to it.
Profiles are not assigned through or by OUs unless you have
figured out something that I don't know....
Do you mean GPO or do you mean Profile? Group Policies
are something entirely different from profiles....
Not only
is it heavily locked down in terms of NTFS permissions, it can't do
much of anything...see my computer, execute an exe, no command
prompt...etc.
I will run the NetDiag and DCDiag tests tomorrow. I will also
experiment with some kind of script to increase the logon timout time.
If that works, then the answer is a (semi)bug and this solution (of
mine) is pretty cheesy. But hey, it if works it works.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
.
- References:
- Strange AD and DNS Error
- From: Chris-n-Jordan
- Re: Strange AD and DNS Error
- From: Herb Martin
- Re: Strange AD and DNS Error
- From: Chris-n-Jordan
- Strange AD and DNS Error
- Prev by Date: Re: Strange AD and DNS Error
- Next by Date: Re: Rename / Reorganise Domain
- Previous by thread: Re: Strange AD and DNS Error
- Next by thread: Time Zones and Account Expiration
- Index(es):
Relevant Pages
|
