Group Policy issue and Solution?
From: Arby (XXroger_at_Blacktech-inc.XXcom)
Date: 01/24/05
- Next message: Kilroy: "Re: Hide folders in shared drive"
- Previous message: Steven L Umbach: "Re: Scheduling a reboot via GPO"
- Next in thread: Steven L Umbach: "Re: Group Policy issue and Solution?"
- Reply: Steven L Umbach: "Re: Group Policy issue and Solution?"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 24 Jan 2005 15:15:38 -0500
Hello,
I recently had an issue with win2000 group policy. I have a customer who
has 2 DCs, one of which is a domain controller, and both are DNS servers,
and server1 is also a terminal server ( I know that they should not have
this config, but they have no choice). Everything was working, but I
noticed that server1 had a wrong DNS entry, so it was changed to point to
server 2 (they are both AD integrated DNS). The customer made the change,
but didn't reboot the server. Shortly thereafter, terminal server users
started getting Eventid 1000 errors (their group policy was not getting
applied). It seems the GP could not be found. I also could not edit the
GP. I rebooted server2, and then everything came back. The GP was applied,
and I could edit it. The confusing issue is that this setup was working
until we correctly changed the DNS. What in DNS could have caused the GP to
become inaccessible on ALL domain controllers?
The second part of my question is this...is there a setting that I can
change to NOT allow logons if group policies are not applied? This
situation caused quite a security issue, and I would like to take the
necessary precautions. Thanks in advance.
Roger
- Next message: Kilroy: "Re: Hide folders in shared drive"
- Previous message: Steven L Umbach: "Re: Scheduling a reboot via GPO"
- Next in thread: Steven L Umbach: "Re: Group Policy issue and Solution?"
- Reply: Steven L Umbach: "Re: Group Policy issue and Solution?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
