Re: Server/Client help - User Profiles
- From: Sanjay Raval <SanjayRaval@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 25 Dec 2006 21:47:01 -0800
Hi Julie,
First correct your DNS server. configure Forward and reverse lookup.
Correct IP settings entering your DNS servre IP as perffered DNS server at
clieint M/c. Check using nslookup at client M/C.
Userenv Error 1053 is releted to gp. as client is unable to find DC, GP
process aborted.
second error "Autoenrolemnt", please follow the steps to correct...
1. Click Start, click Run, type gpedit.msc, and then press ENTER.
2. In the left pane, expand Computer Configuration, expand Windows Settings,
expand Security Settings, and then expand Public Key Policies.
3. Double-click Autoenrollment Settings.
4. Click Do not enroll certificates automatically.
5. Click OK.
6. Repeat steps 2 through 5, but in step 2, expand User Configuration,
expand Windows Settings, expand Security Settings, and then expand Public Key
Policies.
7. Close the Group Policy window.
For a computer that is a client of a Active Directory domain,
correct the DNS address in the IP properties of the workstation. To do this,
follow these steps:
1. Start the Network Connections tool in Control Panel.
2. Right-click Local Area Connection, and then click Properties.
3. Click Internet Protocol (TCP/IP), and then click Properties.
4. Type the correct DNS address in the Preferred DNS server box.
5. Click OK.
Check user folder redirection....
I hope this will help.
Sanjay Raval
"Julie" wrote:
To be more specific, the Userenv error is ID 1053. I did an nslookup in cmd.
and it said my default server is unknown (ip 127.0.0.1). Have I not setup
something on the server so that the clients see it as the primary DNS?
Hope you can help,
Julie.
"Julie" <julie-anne87@xxxxxxxxxxx> wrote in message
news:4050EE62-BD28-461D-9902-EC2681FCF855@xxxxxxxxxxxxxxxx
No, I have not altered the ipconfig output at all (I double checked the
output). I found two errors in the Event Viewer of Application events on
the client:
- Userenv: Windows cannot obtain the domain controller name for your
computer network. (The specified domain either does not exist or could not
be contacted. ). Group Policy processing aborted.
- AutoEnrollment: Automatic certificate enrollment for local system
failed to contact the active directory (0x8007054b). The specified domain
either does not exist or could not be contacted. Enrollment will not be
performed.
No errors found on the server.
Also, I tried pinging the FQDN as you asked and received this message:
"Ping request could not find host server.testserver.test. Please check the
name and try again."
Further notes:
- Yes, I installed the DNS Server on the machine as I went through the AD
install wizard.
- The "Manage Your Server" window shows the DNS Server as installed.
- I have not touched any settings in the DNS Server MMC (dnsmgmt).
Again, thank you for helping.
"Ace Fekay [MVP]" <PleaseAskMe@xxxxxxxxxxxxxx> wrote in message
news:OlQZQYEKHHA.4244@xxxxxxxxxxxxxxxxxxxxxxx
In news:D2211766-D775-4E72-8653-01252D1FF32F@xxxxxxxxxxxxx,
Julie <julie-anne87@xxxxxxxxxxx> stated, which I commented on below:
Firstly, thank you for responding and helping.
The \\server\userfiles share already appended \%username% to the
location of the redirected folders, that's why I omitted that little
detail.
I setup an OU called New Users with a linked GPO "New Users GPO" in
GPMC (I also blocked its inheritance so that the Default Domain
Policy would not affect it). I then created a new user, "user2" in
the New Users directory under the Active Directory Users and
Computers MMC. user2 is a member of the Domain Users group. I tried
to run a GP Result Wizard on user2, however, two problems occurred:
1. I could not choose the client PC as the Computer Selection, it
returned an error with details: "The requested name is valid, but no
data of the requested type was found". So instead, I used "This
Computer" (the server). 2. The user2 user did not show up (Administrator
was listed). So I
added the user2 user to the Administrators group (so I could log onto
the server machine since the domain users group did not give the
correct permissions to log on). Logged back into Administrator after
I had logged on as user2 (creating its profile).
I ran the wizard using "This Computer" and user2. The settings tab
showed my changes to the GPO (folder redirection). The summary tab
showed 3 Computer Configuration Applied GPOs: Local Group, Default
Domain, Default Domain Controllers Policies. The User Configuration
Applied GPOs were: New Users GPO (the GPO I created).
After logging onto the server, as I had thought, the redirected
folders had appeared. So I continued to log onto the client machine
using user2. The folders were again, NOT, redirected.
I ran gpresult as you suggested on the client, and received the one
lined message "INFO: The policy object does not exist."
I then ran gpupdate /force on the client, like MyWeb suggested, no
effect.
As asked, I have provided ipconifg results for the server and client
below. Thank you again for your help.
Client:
Windows IP Configuration
Host Name . . . . . . . . . . . . : client
Primary Dns Suffix . . . . . . . : testserver.test
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VMware Accelerated AMD
PCNet Adapter
Physical Address. . . . . . . . . : 00-0C-29-4E-3B-43
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 10.1.1.2
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Default Gateway . . . . . . . . . :
DHCP Server . . . . . . . . . . . : 10.0.0.1
Lease Obtained. . . . . . . . . . : Monday, 25 December 2006
8:50:51 PM
Lease Expires . . . . . . . . . . : Tuesday, 2 January 2007
8:50:51 PM
Server:
Windows IP Configuration
Host Name . . . . . . . . . . . . : server
Primary Dns Suffix . . . . . . . : testserver.test
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : testserver.test
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VMware Accelerated AMD PCNet
Adapter Physical Address. . . . . . . . . : 00-0C-29-F9-F9-6C
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.0.0.1
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Default Gateway . . . . . . . . . :
Julie,
Please keep in mind with one basic thing about the Default Domain POlicy:
NEVER Never block the default domain policy. Period.
Ok, why do the ipconfig /all of both machines do not show a DNS address??
Did you edited them out? Was anything else edited out?
I assume no default gateway since you are testing this internally in a
virtual machine (using VMware) environment without internet access. Do
the VMs have communication betweeen the server and the client? Can you
ping the server by FQDN (server.testserver.test) ?
What errors are in the client and DC's event logs?
Ace
- References:
- Server/Client help - User Profiles
- From: Julie
- Re: Server/Client help - User Profiles
- From: Ace Fekay [MVP]
- Re: Server/Client help - User Profiles
- From: Julie
- Re: Server/Client help - User Profiles
- From: Ace Fekay [MVP]
- Re: Server/Client help - User Profiles
- From: Julie
- Re: Server/Client help - User Profiles
- From: Julie
- Server/Client help - User Profiles
- Prev by Date: Re: Server/Client help - User Profiles
- Next by Date: Re: Server/Client help - User Profiles
- Previous by thread: Re: Server/Client help - User Profiles
- Next by thread: Re: Restrict access based on OU
- Index(es):
Relevant Pages
|
