Re: Preparing Network Connections... forever

if you've FW between these domains check
http://support.microsoft.com/kb/179442

--
*************************************************
I hope that the information above helps you
Good Luck

Jorge Silva

MCSA + Exchange + MSCE
*************************************************

"Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx> wrote in message news:%23kdEXQoEHHA.4404@xxxxxxxxxxxxxxxxxxxxxxx
Ok.
- Because you're in different subnets, and ifyou want to browse network, or test any app, make sure that Wins is configured in both ends, and they have eachother has replication partners (Note: this has nothing to do with your problem is just an observation).

- Start by replacing the loopback address by the correspondent server IP (Instead of 127.0.0.1 make 192.168.6.10 on first one and do the same for the secondone Instead of 127.0.0.1 make it 192.168.5.10).

-How is your DNS infrstructure configured, I mean how do domains resolve eachother, are you using secondary, forwarding, ad integrated accross the forest, how?

-What happens when you try to ping the 82d33e8a-faee-41bd-8206-793069703a58._msdcs.vmdev.local (assuming that this is the correct CNAME/GUID under _msdcs.vmdev.local, if not please confirm.)

- also run dcdiag /e /c /v and look for output errors
--
*************************************************
I hope that the information above helps you
Good Luck

Jorge Silva

MCSA + Exchange + MSCE
*************************************************

"Gaetan" <me@xxxxxxxxxxxxx> wrote in message news:lbsmm29ev0gstk0tmpoaveek1m3gqg5d1f@xxxxxxxxxx
From the new domain controller:

C:\Temp>ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : Client-1DC
Primary Dns Suffix . . . . . . . : client-1.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : client-1.local

Ethernet adapter VMnet3:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection
Physical Address. . . . . . . . . : 00-0C-29-0E-AA-2B
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.6.10
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.6.1
DNS Servers . . . . . . . . . . . : 127.0.0.1

C:\Temp>


And from the first DC in the forest:

C:\Temp>ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : DEVDC
Primary Dns Suffix . . . . . . . : vmdev.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : vmdev.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VMware Accelerated AMD PCNet Adapter
Physical Address. . . . . . . . . : 00-0C-29-C8-72-18
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.5.10
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.5.1
DNS Servers . . . . . . . . . . . : 127.0.0.1
NetBIOS over Tcpip. . . . . . . . : Disabled

The differences are:

1- The NIC emulation in VMWare not the same. In the new DC, I told VMware to emulate an Intel E1000
card while the other guest is using the default NIC (AMD)

2- After it had been created (months ago), I turned NetBIOS off (TCP/IP advanced properties) on the
DC for the forest original domain (vmdev.local).

Another tidbit. At the time of the original post, the new domain (client-1.local) DC was not
configured as a Global Catalog in "AD Sites and Services". Since then, I enabled Client-1DC as a GC
and waited an hour to make sure the replication occurred after which, I restarted "Client-1DC".

As usual, I got the same "Preparing network Connections...' screen for 5 minutes and the
"Replication Services" event log contained the same error as originally posted.

I do not know whether it is significant but the System event log also contain these warning events:

=================
The Security System detected an authentication error for the server ldap/Client-1DC.client-1.local.
The failure code from authentication protocol Kerberos was "There are currently no logon servers
available to service the logon request.
(0xc000005e)".
=================
The Security System detected an authentication error for the server LDAP/CLIENT-1DC. The failure
code from authentication protocol Kerberos was "There are currently no logon servers available to
service the logon request.
(0xc000005e)".
=================

I have no other anomalous event in any of the other event logs. The other weird thing is that from
"Client-1DC.client-1.local", I can logon using the Administrator account of the 'vmdev.local"
domain. But from "devdc.vmdev.local", when I try to logon using Administrator of "client-1.local", I
get a message indicating that the local policy do not allow me to logon interactively.

Gaetan.


.

Relevant Pages

  • Re: Preparing Network Connections... forever
    ... Windows IP Configuration ... Connection-specific DNS Suffix. ... "Replication Services" event log contained the same error as originally posted. ... The failure code from authentication protocol Kerberos was "There are currently no logon servers ...
    (microsoft.public.windows.server.active_directory)
  • Re: Event ID 537
    ... Nothing on workstation has changed, although I have recently applied SP1 for the SBS2003 server. ... I have around 2000-3000 errors in my event log. ... An error occurred during logon ...
    (microsoft.public.windows.server.sbs)
  • Re: Server is working but unable to logon by any means
    ... SideBySide errors in event log. ... the server in the same state as it was yesterday. ... Safe Mode is not working - same issue it will not display logon ...
    (microsoft.public.windows.server.general)
  • Re: Strange Logon Behaviour.
    ... RRAS is bad as well in this configuration. ... Multihoming DC's and using it for RRAS is a bad solution which can result in exactly your problem. ... You should avoid this and move the RRAS to another member server so that the DC is only using eon ip address. ... Configuration, Administrative Templates, System, Logon, "Always wait ...
    (microsoft.public.windows.server.active_directory)
  • Re: anonymous logon
    ... would be indicated by a large number of failed logon attempts using non default ... you have file and print sharing enabled on your server make sure it is disabled ... security option in Local Security Policy for additional restrictions for ... Management Console/servername/action/backup & restore configuration since if you ...
    (microsoft.public.win2000.security)