Re: Lost domain...Rebuilt PDC, and sticky problem on workstation
- From: "Jim Walsh" <DrJim@xxxxxxxxxxxxxxxxx>
- Date: Sun, 17 Apr 2005 20:05:15 -0400
Kevin,
Thanks for responding to my posting.
I'm not sure what you mean by deleting and recreating these local profiles.
There is only one local account on the problem workstation. Since that logs
in locally, that is really not the problem.
The other member of the local Administrators group is "Domain Admins".
The problem account is one of the two members of the Domain Admins group, on
the PDC.
The Domain Admins group on the PDC contains two members: the default
Administrator, and my own account. If I log into the workstation as
Administrator, authenticating against the domain, there is no problem. If I
log into my own account, authenticating against the domain, I see the
problem, i.e. when I log out from that session, the domain is no longer
available to authenticate any logon account.
I have created a 2nd account for myself on the PDC and added it to the
Domain Admins group, and this account has no problem on the workstation.
So, there is something about my main domain account when I log onto the
workstation.
Getting back to your suggestion:
1. I have not deleted the profile folder on the workstation for the problem
account. When the PDC crashed, it apparently invalidated profiles on the
workstation. So, When I first logged onto my domain account after rebuilding
the PDC, a new profile had been created. I then copied the contents of the
previous profile folder into this folder. I did that because I needed to
restore my e-mail, etc.
2. I am aware that not all profile-like information is stored in that
profile folder in Documents and Settings. I know that some profile-like info
is also stored in the registry. Perhaps there are other places.
Do you, or does anyone know, what is it about that account that breaks the
computer to computer connection between my PDC and the workstation?
Thanks again,
Jim
"Kevin Longley" <kwlongley@xxxxxxxxxxxxxx> wrote in message
news:OGYpet4QFHA.2972@xxxxxxxxxxxxxxxxxxxxxxx
> Have you tried deleting/recreating these local profiles?
> "Jim Walsh" <jwalsh-n_o_s_pam@xxxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:O2IN$0fQFHA.2932@xxxxxxxxxxxxxxxxxxxxxxx
> > This is related to a posting of mine from 4/13/2005, but the problem
seems
> > to be more serious than I originally noticed.
> >
> > I have a WinNT 4.0 domain. The primary domain controller's hard disk
> > crashed, and the backup domain controller did not do its job. As a
result,
> > I
> > need to rebuild the network.
> >
> > I have installed a new hard drive in the PDC, and reinstalled WINNT 4.0
> > server and all service packs, etc.
> >
> > I am in the process of putting the domain back together. I have run into
a
> > strange problem.
> >
> > Before deploying to the entire group, I have been working on getting my
> > own
> > workstation to work with the rebuilt PDC.
> >
> > Understanding that the loss of all domain information on the PDC would
> > likely invalidate the domain information on the local workstations, e.g.
> > secure channel passwords, I removed the workstation from the domain, and
> > then added it back in again, with the same computer name.
> >
> > 1. To start, I have setup two Administrator accounts on the PDC, the
> > built-in Administrator account, and my own personal account. Both of
them
> > belong to the Domain Admins group.
> > 2. On my workstation, I have removed all accounts from the
Administrators
> > group except the local Administrator, and Domain Admins.
> >
> > Prior to the crash of the PDC I never logged into this workstation using
> > the
> > <Domain>\Administrator acct. Rather, I always logged in as
> > <Domain>\<myacct>. So, prior to today, there was no SID or profile for
> > <Domain>\Administrator, but there was <Domain>\<myacct>. When I log in
as
> > <Domain>\Administrator, I can see that the system is using the profile
> > folder Administrator.<Domain>. When I log in as <Domain>\<MyAcct>, I can
> > see
> > that the system is using the profile folder <MyAcct>.<Domain>.000, since
> > there already was a <MyAcct>.<Domain> profile folder.
> >
> > Here is the problem: if I log on as <Domain>\Administrator, I can log
off
> > and then back on again as either <Domain>\Administrator, or
> > <Domain>\<myacct>. However, if I log on as <Domain>\<myacct> and log
off,
> > I
> > am unable to log on again using either account. I get an error message
> > saying that my domain is unavailable.
> >
> > I have used the WinNT Resource Kit took NetDom to look at the secure
> > channel
> > connection to my workstation. When I am free to log on to the
workstation,
> > NetDom confirms that the secure channel connection is good. However,
when
> > I
> > am not able to log into the workstation, NetDom tells me "The RPC server
> > is
> > unavailable."
> >
> > There is something about the <Domain>\<MyAcct> acct on my workstation
that
> > breaks the connection to my PDC.
> >
> > I will appreciate any help that can get be past this problem
> >
> > Thanks,
> > Jim
> >
> >
> >
> >
> >
> >
>
>
.
- References:
- Lost domain...Rebuilt PDC, and sticky problem on workstation
- From: Jim Walsh
- Re: Lost domain...Rebuilt PDC, and sticky problem on workstation
- From: Kevin Longley
- Lost domain...Rebuilt PDC, and sticky problem on workstation
- Prev by Date: W2003 Ntbackup
- Next by Date: Re: Cookies
- Previous by thread: Re: Lost domain...Rebuilt PDC, and sticky problem on workstation
- Next by thread: Per Device CAL, How to add to server?
- Index(es):
Relevant Pages
|
