restart solved all
From: martin (martin_at_discussions.microsoft.com)
Date: 02/16/05
- Next message: Joe Kaplan \(MVP - ADSI\): "Re: Search filter syntax for DNWithString"
- Previous message: Valeriy Pikulskyy: "Search filter syntax for DNWithString"
- In reply to: ptwilliams: "Re: cannot log in to a DC -stuck with " Loading your personal sett"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 16 Feb 2005 12:47:11 -0800
Hey :) , I unplugged the the network cable , managed to log-in , restarted
and now i can log-in even while server is online (with cable plugged ). I
don't know how that helped. I ran some Support Tool Utilities ( dcdiag ,
nltest , netdiag , netdom ) and no errors are reported except for these
below. However i remember reading somewhere that these erros are normal
since they are ran on a PDC DC.
====
C:\nltest /server:ProblemDC.DcHomeDomain.com /sc_verify:DcHomeDomain.com
I_NetLogonControl failed: Status = 1355 0x54b ERROR_NO_SUCH_DOMAIN
======
and
=====
C:\netdom verify ProblemDC.DcHomeDomain.com /domain:DCHomeDomain.com
The specified domain either does not exist or could not be contacted.
The command failed to complete successfully.
======
THANK You Very Much for your Input.
"ptwilliams" wrote:
> > This DC is also a GC and has its Primary DNS set to point to itself. It is
> > a Forest Root DC for a multi-domain environment )
>
> What domain are you logging onto?
>
> How is your DNS Suffix search list setup, and how are you resolving names in
> the child domains?
>
> Are you having any replication problems?
>
> Does this command pass or fail?
>
> nltest /sc_verify:domain-name.com
>
>
> Are you *sure* DNS is fine <g> ?
>
>
> --
>
> Paul Williams
>
> http://www.msresource.net/
> http://forums.msresource.net/
>
> "martin" <martin@discussions.microsoft.com> wrote in message
> news:DA4E6349-4E14-4FCB-B96A-781362F313B5@microsoft.com...
>
>
> Ohhh !! Thanks ptwilliams for your suggestions , i tried everything you
> advised and I am positive that DNS is fine. I believe the problem is either
> with Group Policy or User Profiles.
>
> This DC has only default GPOs Linked . ( Domain Securitry Policy and Domain
> Controllers security policy ) . Domain Security Policy's "Display Name" LDAP
> Atrribute has been modified but this should not be the problem.
>
> I am able to use Event Viewer from a remote machine to examine the DC's
> Event Logs.
>
> After I enter my credentials the DC :
> - logs Kerberos events that show I am successfully issued TGT and Service
> tickets.
>
> - No other events are being loged at the log-on time. ( Looks like just
> after getting Kerberos Tickets it stops responding - staying at " Loading
> your personnal settings" )
>
> Next , I used GPOtool to check GPOs consitency and all GPOs are reported OK.
> I also double-checked NTFS permissions on Documents And Settings (
> Aministrators and SYSTEM - Full Control , Everyone - READ .. )
>
> ( I did not try to log-in using cached credentials - by unplugging the
> network cable - because I work remotely. - )
>
> This DC is also a GC and has its Primary DNS set to point to itself. It is a
> Forest Root DC for a multi-domain environment )
>
>
>
>
>
> "ptwilliams" wrote:
>
> > Unplug the network cable, and then logon. Windows will detect there's no
> > physical connectivity and log you on using cached credentials. You can
> > then
> > run DNS tests, etc.
> >
> > You can also, for good measure, check the permissions on the Default User
> > profile folder. Administrators and SYSTEM should have full control; user
> > should have read and execute; as should Everyone.
> >
> > When on the box, try running the following command-line tests:
> >
> > nltest /dsgetdc:domain-name.com
> > dcdiag /v
> > netdiag /test:dns
> >
> > netdiag /fix will reregister the appropriate SRV records in DNS, but is a
> > one-off fix. You should ensure that the DHCP client service is set to
> > automatic and is running on this DC and that this DC is pointing to a an
> > internal DNS server that is authorative for the namespace you use for AD
> > and
> > that supports dynamic updates.
> >
> > After this, we'll have to look at GPO processing if this doesn't work.
> >
> > And don't forget to check the event logs.
> >
> >
> > --
> >
> > Paul Williams
> >
> > http://www.msresource.net/
> > http://forums.msresource.net/
> >
> > "martin" <martin@discussions.microsoft.com> wrote in message
> > news:5EE23E37-C65E-4DAE-9FC9-4E3AEB0D15C5@microsoft.com...
> > I have a windows 2000 DC that I am not able to log on to. After I enter my
> > credentials at the console I am stuck with " Loading your personal
> > settings"
> > ...
> >
> > I have other DCs in the domain that i can successfully log on to. Also
> > This
> > problematic DC appears to be completely alive over the network - it
> > provides
> > all services ( file , dns , dc, etc. ). Looks llike something prevents
> > the
> > DC to successfully load the user profile. I created a new user in the
> > domain
> > , and if i try to log-in using that user , the DC gets stuck with "
> > Loading
> > your personal settings" again and newuser's profile is not created in
> > Documents and Settings. I Checked NTFS Permissions on this Directory and
> > they
> > are ok .
> >
> >
> >
> > What is that ??
> >
> >
> >
>
>
>
- Next message: Joe Kaplan \(MVP - ADSI\): "Re: Search filter syntax for DNWithString"
- Previous message: Valeriy Pikulskyy: "Search filter syntax for DNWithString"
- In reply to: ptwilliams: "Re: cannot log in to a DC -stuck with " Loading your personal sett"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
