Re: Long time taking for Single user to logon

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance


"Jaywant" <Jaywant@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:8F343ED2-F665-4FDE-B0FD-6A62D78F1875@xxxxxxxxxxxxxxxx
Hi,


Actually connectivity is established through the Hardware firewall. The
users login to the DC in the main office. There are 30 users in this sites
which login normally through this firewall (Checkpoint). Even I have tried
with a test account and it work fine. There is no GC configured at this
site,
IP config for the users points to the DNS in main office.


--
Jaywant Kamble.


Thank you for providing the additional information.

So you are saying that you've never configured Active Directory Sites in AD
Sites and Services? In AD Sites and Services, if you create a subnet for
each location, and then a Site name for each location, associate the subnet
object to the respective sites, it will controll all machines to use their
own local DC/GC to login. Otherwise, the logon attempt will be traversing
the WAN link.

Also, if you only have one domain, ALL domain controllers should be a GC.

And logins do not ":go through a firewall." So I am not sure what you mean
by that. Login requests initiate a DNS query for a GC, which then connects
to a GC, whcih works with the Local Security Authority on a workstation,
which then contacts a DC. The firewall has nothing to do with that part. I
am not sure what you mean by that sentence.

Ace



.

Relevant Pages

  • Re: some kind of attack. i need some help here!
    ... i do have a firewall in place; and since they exploited the sshd, ... > Here is why you need a clean install ... > Get all the vendor updates to your distro. ... > Always login from the console, no su, telnet, ssh,.. ...
    (comp.os.linux.security)
  • Re: [Fedora] Seeing input on Securing the Linux system from intrusions and attacks.
    ... during initial setup phase, this firewall remains until updates are all ... That's true on XP Professional and on Server 2003... ... Server allows two concurrent logins; presumably one can login as a mere mortal and use RDP to connect as an administrator; I simply connect as an administrator from my Linux box. ...
    (Fedora)
  • [fw-wiz] pulling configs from pixes over ssh script
    ... I see that a lot of people out there still manage their firewall ... Cisco PIX has one, ... # This script pulls config from Cisco PIX device over SSH1. ... # pix prints login prompt twice, ...
    (Firewall-Wizards)
  • Re: FTP Login flood
    ... I believe some smart router or firewall will have this kind of feature. ... They are still attempting to login, ... > they did succeed in doing until I allowed the Event Log to overwrite, ... > this is followed by the flood of login attepts from a different ...
    (microsoft.public.inetserver.iis.security)
  • Member Server Login Slow DMZ-Internal Subnet
    ... I had a requirement to place a member server on my DMZ and have it login to ... AD across the firewall. ... - 123 tcp ... - 137 udp ...
    (microsoft.public.win2000.security)