RE: Server 2003 license and connection issue

If this box is the forest root (installed first) then you will need to
transfer the master roles to the other domain controller. Keep in mind that
when you do this all of your clients will have to authenticate to the DC at
the remote site. This will definately flood your slow link with traffic. As
always make sure you have a good backup of AD before you begin.

BTW. was this a clean install or was it an upgrade?

Good Luck
--
David Davis, MCSE, CCNA, Security +
Network Engineer


"Big AL @Salyersville" wrote:

>
>
> "Big AL @Salyersville" wrote:
>
> >
> >
> > "David Davis" wrote:
> >
> > > This may sound oversimplistic, but are you trying to browse to a share on
> > > this server. If so, check the share setting to make sure that they are not
> > > set to restrict the number of connections.
> > >
> > > This has my curiosity peaked. It is becoming personal. Keep me posted.
> > > --
> > > David Davis, MCSE, CCNA, Security +
> > > Network Engineer
> > >
> > >
> > > "Big AL @Salyersville" wrote:
> > >
> > > >
> > > >
> > > > "Big AL @Salyersville" wrote:
> > > >
> > > > >
> > > > >
> > > > > "David Davis" wrote:
> > > > >
> > > > > > Are the same errors appearing in your log? If so, is your other DC also a DNS
> > > > > > server and is it also running 2003? If you have more than one DNS server that
> > > > > > are both AD integrated, then you will need to re-install DNS on both of them.
> > > > > > Please post any new errors.
> > > > > >
> > > > > > I still think this issue revolves around DNS. As stated in the previous
> > > > > > error: DNS records assoiciated with DNS domain 'ForestDnsZones.SNB1.domain.'
> > > > > > failed
> > > > > > > > > These records are used by other computers to locate this computer as a domain
> > > > > > > > > controller
> > > > > >
> > > > > > If you have corrupted zones and multiple AD integrated DNS servers then you
> > > > > > must completely rebuild DNS on all machines else the corruption will
> > > > > > replicate back.
> > > > > >
> > > > > >
> > > > > > --
> > > > > > David Davis, MCSE, CCNA, Security +
> > > > > > Network Engineer
> > > > > >
> > > > > >
> > > > > > "Big AL @Salyersville" wrote:
> > > > > >
> > > > > > >
> > > > > > >
> > > > > > > "Big AL @Salyersville" wrote:
> > > > > > >
> > > > > > > >
> > > > > > > >
> > > > > > > > "David Davis" wrote:
> > > > > > > >
> > > > > > > > > Ok, I think that you may have a DNS issue. Looks like your DNS may not be AD
> > > > > > > > > integrated or the zone may be corrupted with entries from the NT days. Try
> > > > > > > > > removing and reinstalling DNS again as active directory integrated. When you
> > > > > > > > > do this make sure that you delete or move the existing zone db files. you
> > > > > > > > > will want the setup to generate new files. Also, ensure that your clients
> > > > > > > > > are using this DNS server as their primary server and that they have been
> > > > > > > > > joined to the new domain. It sounds like the users are not authenticating to
> > > > > > > > > the new domain. If this is the case, then these clients are connecting to
> > > > > > > > > this server as if it were a peer, thus the 10 connection limitation.
> > > > > > > > >
> > > > > > > > > Keep me posted.
> > > > > > > > > --
> > > > > > > > > David Davis, MCSE, CCNA, Security +
> > > > > > > > > Network Engineer
> > > > > > > > >
> > > > >
> > > > > > > > >
> > > > > > > > > "Big AL @Salyersville" wrote:
> > > > > > > > >
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > "David Davis" wrote:
> > > > > > > > > >
> > > > > > > > > > > Do you have any entries in your logs? If so please post them. This is the
> > > > > > > > > > > first time that I have heard of this. Were there any errors displayed during
> > > > > > > > > > > the DCPROMO process?
> > > > > > > > > > >
> > > > > > > > > > > If you have more than one DC then you may want to transfer your master roles
> > > > > > > > > > > to it and condsider demoting and re-promoting the box that is displaying the
> > > > > > > > > > > problem.
> > > > > > > > > > >
> > > > > > > > > > > Please let us know what you find.
> > > > > > > > > > > --
> > > > > > > > > > > David Davis, MCSE, CCNA, Security +
> > > > > > > > > > > Network Engineer
> > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > > > "Big AL @Salyersville" wrote:
> > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > > > "David Davis" wrote:
> > > > > > > > > > > >
> > > > > > > > > > > > > Go to Start-Admin Tools-Licensing choose your domain. You may have to turn on
> > > > > > > > > > > > > the license logging service. Once you are able to bring up your domain info,
> > > > > > > > > > > > > click on the products view tab. Next click on Windows Server then click the
> > > > > > > > > > > > > license-properties option in the file menu at the top of the screen.. this
> > > > > > > > > > > > > will bring up another window with a purchase history tab. Click on this tab
> > > > > > > > > > > > > then choose the New button. Add the number of licenses that you have.
> > > > > > > > > > > > >
> > > > > > > > > > > > > Hope this helps.
> > > > > > > > > > > > > --
> > > > > > > > > > > > > David Davis, MCSE, CCNA, Security +
> > > > > > > > > > > > > Network Engineer
> > > > > > > > > > > > >
> > > > > > > > > > > > >
> > > > > > > > > > > > > "Big AL @Salyersville" wrote:
> > > > > > > > > > > > >
> > > > > > > > > > > > > > I recently setup a new domain using a 2003 server that was part of an old nt
> > > > > > > > > > > > > > domain as a stand alone server. The server is now the domain controller for
> > > > > > > > > > > > > > the new domain using active directory,and has dns set up on it . I have 40
> > > > > > > > > > > > > > client licenses and they are installed properly. The server is running in per
> > > > > > > > > > > > > > user/ per device mode. It appears that after 10 or so people log on to the
> > > > > > > > > > > > > > network the server then begins to limit our connection. When i go to network
> > > > > > > > > > > > > > places and try to browse the network i get the following message: "No more
> > > > > > > > > > > > > > connections can be made to this remote computer at this time because there
> > > > > > > > > > > > > > are already as many connections as this computer can accept at this time." I
> > > > > > > > > > > > > > get this same message when I try to browse the enteprise under the license
> > > > > > > > > > > > > > manager. PLEASE HELP!!!! Could a registry setting be causing this? Does
> > > > > > > > > > > > > > the server think its in per server mode?
> > > > > > > > > > > >
> > > > > > > > > > > > I already have done all of that but nothing seems to work. I have even
> > > > > > > > > > > > deleted the llsuser.lls and the Cpl.cfg and reinstalled the license.
> > > > > > > > > > > > Help!!!!!!!!!!!!
> > > > > > > > > >
> > > > > > > > > > No there were no errors and yes I do have another domain controller in my
> > > > > > > > > > network. There is one error message that keep showing up in log which refers
> > > > > > > > > > to my old domain: NET LOGON "Dynamic registration or deletion of one or more
> > > > > > > > > > DNS records assoiciated with DNS domain 'ForestDnsZones.SNB1.domain.' failed
> > > > > > > > > > These records are used by other computers to locate this computer as a domain
> > > > > > > > > > controller (if the specified domain is an active directory domain) or as an
> > > > > > > > > > LDAP server ( if the specified domain is an application partition).
> > > > > > > > > >
> > > > > > > > > > And here is another one: The DNS server was unable to open zone
> > > > > > > > > > _msdcs.snb1.domain in the Active Directory from the application directory
> > > > > > > > > > partition ForestDnsZones.snb1.domain. This DNS server is configured to obtain
> > > > > > > > > > and use information from the directory for this zone and is unable to load
> > > > > > > > > > the zone without it. Check that the Active Directory is functioning properly
> > > > > > > > > > and reload the zone. The event data is the error code.
> > > > > > > > > >
> > > > > > > > > > And another: 6/14/2005 6:49:06 AM DNS Warning None 4515 N/A KIRCHMAIN "The
> > > > > > > > > > zone salyersnb.domain was previously loaded from the directory partition
> > > > > > > > > > MicrosoftDNS but another copy of the zone has been found in directory
> > > > > > > > > > partition DomainDnsZones.salyersnb.domain. The DNS Server will ignore this
> > > > > > > > > > new copy of the zone. Please resolve this conflict as soon as possible.
> > > > > > > >
> > > > > > > > Ok but I wont be able to do this until tomorrow morn, but I will let you
> > > > > > > > know what happens.
> > > > > > >
> > > > > > > IT DIDNT WORK!!!! This is so weird I can do a search for the computer and I
> > > > > > > can browse it but if I try to browse the domain thru network places I get the
> > > > > > > same error.
> > > > >
> > > > > I disabled terminal services as part of my trouble shooting. Does terminal
> > > > > services have to be running? Yes they are both running 2003 and dns and active directory integrated. I have gotten rid of the error message but still no luck browsing the domain. I forgot to mention my other server is at our branch and uses ip adresses 10.0.2.blah and the network segment im on uses ip adresses 10.0.1.blah. We are connected by a T1 as one domain. The weird part is I can remote out to that network and browse that segment from any machine, but in the segment im on our connections seem to be limited although browsing the same domain. The 2 servers are communicating with each other and the dns records are being updated.WHATS GOING ON!?!!??!
> >
> > No im just trying to browse the domain.!
>
> Is there anything that I should keep in mind before I reinstall?
.

Loading