Re: Not Creating Computer Accounts - Strange Issue

Hello Chris,

If you have connect them via routers, why are the ipconfig's you posted here pointing to the same gateway? 10.6.11.x and 10.6.8.x are different sites or not?

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm

Hi Guys,

Our domain is actually 11 sites. Each has it's own ip/subnet. All
sites are in different geographical locations and connected via
routers.

What we do is delete the AD computer object from the relevant OU and
when we re-add the pc it should recreate in the computer container.
But it doesn't.

We have reverse lookup zones for each subnet

"Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
news:ff16fb66a53e18cac1de5bcb987e@xxxxxxxxxxxxxxxxxxxxxxx

Hello Chris,

Well, i still have a problem with your site setup. Based on the ip's
you talk about 3 different site, how are they physical connected? In
one switched LAN ora re there routers between the sites?

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and
confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
Hi,

10.6.x.x is the HQ subnet, when i join the domain i have tried both,
global
and global.local.
other sites are 10.11.x.x, 10.31.x.x
I really am struggling to find the reason why i cannot rejoin any pc
or server as a name which has just been deleted. It seems as though
it
has to wait for the deletion to be replicated to everysite before it
can be recreated.
Any ideas?

Thanks again for your help on this guys

"Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
news:ff16fb66a52498cac12f5d75f7dc@xxxxxxxxxxxxxxxxxxxxxxx

Hello Chris,

Both DC's are in the same site, when i see the ip/sm configuration.
10.6.8.x and 10.6.11.x with the /16 bit mask.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties,
and
confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
Hi Guys,

Single Domain, Multi Site.
Forest and domain both 2003 functional level
Host Name . . . . . . . . . . . . : BST438
Primary Dns Suffix . . . . . . . : global.local
Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : global.local

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : global.local

Description . . . . . . . . . . . : Intel(R) 82566MC Gigabit
Network Connection

Physical Address. . . . . . . . . : 00-15-B7-3A-3C-F1

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 10.6.8.43

Subnet Mask . . . . . . . . . . . : 255.255.0.0

Default Gateway . . . . . . . . . : 10.6.0.254

DHCP Server . . . . . . . . . . . : 10.6.11.2

DNS Servers . . . . . . . . . . . : 10.6.11.1

10.6.11.2

Primary WINS Server . . . . . . . : 10.6.11.1

Secondary WINS Server . . . . . . : 10.6.11.2

Lease Obtained. . . . . . . . . . : 25 July 2008 08:45:28

Lease Expires . . . . . . . . . . : 30 July 2008 08:45:28

Host Name . . . . . . . . . . . . : panodc1

Primary Dns Suffix . . . . . . . : global.local

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : global.local

Ethernet adapter LAN Team:

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : HP Network Team #1

Physical Address. . . . . . . . . : 00-15-60-AC-56-D6

DHCP Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 10.6.11.1

Subnet Mask . . . . . . . . . . . : 255.255.0.0

Default Gateway . . . . . . . . . : 10.6.0.254

DNS Servers . . . . . . . . . . . : 10.6.11.1

10.6.11.2

Primary WINS Server . . . . . . . : 10.6.11.1

Secondary WINS Server . . . . . . : 10.6.11.2

"Ace Fekay [MVP]" <PleaseAskMe@xxxxxxxxxxxxxx> wrote in message
news:ehONRWI6IHA.1592@xxxxxxxxxxxxxxxxxxxxxxx

In news:u6bc0lE6IHA.5052@xxxxxxxxxxxxxxxxxxxx,
Chris <chris@xxxxxx> typed:
Hi Guys,

I deleted a computer object from AD and tried to rejoin the
newly installed pc back to the domain today. I received an OK on
the client that it had successfully added to the domain. The
Computer object was not created.

In the client event viewer after the rebbot i received lsasrv
40961

The Security System could not establish a secured connection
with the server cifs/nottsdc1.domain.local. No authentication
protocol was available.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

on the DC i received Netlogon 3210

This computer could not authenticate with \\indc1.domain. local,
a Windows domain controller for domain DOMAIN, and therefore
this computer might deny logon requests. This inability to
authenticate might be caused by another computer on the same
network using the same name or the password for this computer
account is not recognized. If this message appears again,
contact your system administrator.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

which makes sense as the computer object is not part of any of
our sites so was strying to authenticate to our indonesia server

I am really struggling to understand why the accounts are not
created. Intrasite replicvation should be pretty much immediate
so there is no reason for AD to not recreate the object within
the same site..

This is starting to cause me big headaches

Any help would be greatly appreciated..

Chris,

How many DCs are in this site?
Is this a single domain environment or are there multiple
domains?
If multiple domains, how is DNS configured? Delegation or
centralized?
Are there NT4 BDCs present? If not, what Functional Level is the
domain
and forest set to?
Also, the ipconfigs and other info Meinolf requested will be
extremely
helpful.
Ace


.

Relevant Pages

  • Re: Not Creating Computer Accounts - Strange Issue
    ... Ethernet adapter Local Area Connection: ... Connection-specific DNS Suffix. ... I deleted a computer object from AD and tried to rejoin the newly ... This computer could not authenticate with \\indc1.domain. ...
    (microsoft.public.windows.server.active_directory)
  • Re: Not Creating Computer Accounts - Strange Issue
    ... in different geographical locations and connected via routers. ... What we do is delete the AD computer object from the relevant OU and when we ... Ethernet adapter Local Area Connection: ... This computer could not authenticate with \\indc1.domain. ...
    (microsoft.public.windows.server.active_directory)
  • Re: Number of WL clients with WRT54GS
    ... 54Mbits/sec is the connection speed. ... For an equal speed wireless connection, ... bandwidth by equalizing the number of packets. ... Wireless routers have three sections: ...
    (alt.internet.wireless)
  • Re: Could I have your suggestions?
    ... the IP config of the public side of the routers is ... > the VPN tunnel to the main office. ... This will create a connection from ... > the DHCP server at the main office and IP configuration will be ...
    (microsoft.public.windows.server.networking)
  • Re: FreeBSD router two DSL connections
    ... i have a pfsense router that has two connections to the same ISP ... and one connection to a linux squid. ... openbsd packet filter in freebsd for load balancing. ... >>>Routers route based on dest ...
    (freebsd-questions)