Re: Please help refresh my memory on AD DC

Hello Jorge,

Yes I did thanks. I succeccfully added all servers to the domain.
I just had one question left over after soing so.
When I logged in locally on one of the 2003 boxes I wanted to make a
permissions change on a folder an I was asked to enter the domain credentials
again.

I did so with the domain admin credentials and I saw red arrows next to the
groups and accounts icons

What is that and why was I asked to login again to make this change?

Thanks
Joe


"Jorge Silva" wrote:

Sounds that your problem is solved, great :)

--
I hope that the information above helps you.
Have a Nice day.

Jorge Silva
MCSE, MVP Directory Services

Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.


"Joe" <Joe@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:9E332231-20B4-43C5-8803-50BEBAA17F17@xxxxxxxxxxxxxxxx
Hi Jorge!

Thanks for jumping in. No this is a Standard Box not a SBS.
Never saw a DC promo go like this one. That is why I posted and of corse
my
short time with using one.

Thanks so much!!
Joe

"Jorge Silva" wrote:

Hi Joe,
Sounds that your new DC is an SBS DC, correct?

--
I hope that the information above helps you.
Have a Nice day.

Jorge Silva
MCSE, MVP Directory Services

Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no
rights.


"Joe" <Joe@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:0D84A7F8-8760-4CF8-9771-1168396CFBC3@xxxxxxxxxxxxxxxx
Hello,

I am currently using a workgroup infrastructure with 9 servers and I am
in
need of changinf it to a AD DC Domain infrastrucrture. However I am a
little
rusty in some areas. I have 4 Server 2003 Enterprise machines and 4
Server
2008 Standard machines. One Linux but that doesn't matter.

1. When I created the domain I used the same name as the server and
this
caused the installation wizard to change the NetBIOS name from WEB308
to
WEB3080 The Original name for this server was web308.mydomainname.com
and
when I was asked for the FQDN I entered the same thing. This is what
prompted
the NetBIOS change as it told me to avoid conflict with the DC.
2. Ok so when I rebooted the server and it rebooted as a DC I could no
longer access the server by the old administrator password as it was as
so

Administratator
password1

I now had to change the password but not for WEB308 it now was WEB3080.
What I am struggling with is there are so many names that I am unsure
which
is the DC and which is just the NetBIOS.

I kinda figured that out as I tried to access old shares that still had
WEB308 as the label . But when prompted I had to use the new WEB3080
and
the
new password for access.

Part two:

Now I have always been confused about what SHOULD you use as a DC FQDN?
I
looked in the DNS of the DC ans now thefull computer name is
web308.web308.mdomainname.com

The domain is specified as web308.mydomainname.com. So when joining
the
other servers and boxes the name that I should enter is this one
correct?


Now that the AD DC was created successfully I wanted to test the
"joinng
ablility"
with my XP Pro Laptop

I used the network ID method on the myComputer Properties Computer Name
Tab.

Here is where I get lost.

I joined the domain successfully however I joined the domain using the
administrator and password of the AD DC Server (which I understand is
correct
for the correct rights to add) and it successfully joined but it asked
to
add
this user which was me on this XP Pro Laptop. My username and password
for
this Laptop.
It failed when I said yes.

I rebooted the XP Laptop and then when I went to join the domain is
paused
and looked for a list of domain controllers. It found WEB3080. That
confused
me as I thought that the DC was now web308.mydomainname.com

However I logged on as the administrator of the domain controller and
that
was it.
OK fine.

So the real questions lie in the user part of this. thanks for you
patience.

When I go to add the other servers what do I add them as? Do I join the
domain for the other servers with just the administrator of the DC?

Or do I create a user for each server and then log them on?

Thanks very much for this wordy question.

Joseph




.

Relevant Pages

  • RE: Cant set Local Security policies. They fail to save
    ... I followed your instructions on applying the predefined security templates. ... I still can’t set any of the local security policies on the server box. ... > using local Administrator account to test, ... >>> member of either the Remote Operators group or the Domain Power Users ...
    (microsoft.public.windows.server.sbs)
  • Re: Help - administrator locked out!
    ... Second - thanks for your extremely helpful response. ... with 1 Novell server. ... I don't pretend that I'm some sort of super administrator or anything. ... I agree it's my practices that have got me into trouble in the first ...
    (microsoft.public.windows.server.general)
  • Re: FIRED IT ADMIN HAS LOCKED US OUT OF SBS
    ... you have risen to an Administrator this would be a given. ... server and run all LOB apps on these. ... If there are no encrypted files, just reset the DSRM account ...
    (microsoft.public.windows.server.sbs)
  • Re: FOR A SKILLED IT EXPERT - WIN2K SERVER - DOMAIN CONTROLLER
    ... After installing a parallel copy of WIN2K SERVER, ... Administrator access in Directory Services Restore Safe Mode. ... > Thanks Roger - OK - just finished a second windows server installation> to ... > Will try this and see if she boots up in the first installation.... ...
    (microsoft.public.win2000.security)
  • Re: Shared Fax device not available anymore after reboot server!?!
    ... the error message one by one to the Newsgroup for accurate research. ... You can send fax by using Administrator account. ... after the reboot of the server no account is able to fax anaymore. ...
    (microsoft.public.windows.server.sbs)
Loading