Re: Strange Problem with Authentication Has anyone ever run across

Thank you again Anthony :)

the 4th DC is in the Outreach office it is on the 10.1.1.0 subnet and
connected via VPN over a Cablemodem. only 1 server there and 2 users.

the route for 192 is to connect to another firewall interface for a report
feature. it is not one of the DC and is only used to connect to a RSView
system

The Netbios name of Site2 is indeed an upgrade from nt about 6 years ago.
Went from NT4 to 2000 and now on 03 Never have been able to figure out how to
get rid of that :)

Yes do have a problem with all accounts funny thing is its not consistent.
In the past month I have had 6 different users complain about the problem.
not sure what is going on. when it runs the login net use s:
\\pbcdf-main\share it promps for username and password even though I am an
administrator on the domain.


ipconfig

Windows IP Configuration



Host Name . . . . . . . . . . . . : Lausten

Primary Dns Suffix . . . . . . . : Pbcdf.Com

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : Pbcdf.Com

Pbcdf.com



Ethernet adapter ISCSI-2:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Server
Adapter

Physical Address. . . . . . . . . : 00-07-E9-1F-C5-A9

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 192.168.48.20

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . :



Ethernet adapter Internal:



Connection-specific DNS Suffix . : Pbcdf.com

Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit
Controller

Physical Address. . . . . . . . . : 00-19-B9-3F-B2-A9

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 10.25.240.133

Subnet Mask . . . . . . . . . . . : 255.255.248.0

Default Gateway . . . . . . . . . : 10.25.240.1

DHCP Server . . . . . . . . . . . : 10.25.240.14

DNS Servers . . . . . . . . . . . : 10.25.240.15

10.25.240.6

Primary WINS Server . . . . . . . : 10.25.240.15

Lease Obtained. . . . . . . . . . : Thursday, January 03, 2008
4:07:37 PM

Lease Expires . . . . . . . . . . : Saturday, January 05, 2008
4:07:37 PM



No General client problems. They are Clean machines.. I make a master
install all software. Run Sysprep. Make an image using Altiris. and push to
the machine and rejoin to the domain.

Basicly pretty much this is the total issue.

1. I can log into the domain
2. Some Drives Map the one on the Main DC does not but promps for username
and password

As an Example. i type in \\pbcdf-main\netlogon (DC 1) it promps for username
and password

I type in \\pbcdf-exs01\netlogon (DC 2) it opens up
I type in \\pbcdf-nts032\netlogon (DC 3) It Promps for Username and Password
I type in \\pbcdf-oro\netlogon (DC 4) It opens up

Being that I am an Administrator on the Domain it should open up everything.

Like in the share folder on pbcdf-main

on the Share permissions Administrators Full Control, Read and Change.
Everyone Read and Change

if I look at the security on the folder itself.
Administrators all rights. and Everyone is everything except for full control.

double checking my membership and I am in administrators and my account is
not locked.

I go into effective permissions and type in my username.

I have the following
Full Control
Travers Folder
List Folder
Read Attributs
Read Extended Attr
Creat Files
Creat Folders
Write Attrib
Write Extended Attrib
Delete Sub
Delete

etc.

So there should be absolutly no reason it is promptming me for username and
password. it is almost as if it doesnt know who I am

here is the key factor

when I do do the \\pbcdf-main\netlogon and it promps me for my username and
password and I input my username and password. it comes up. but when I reboot
it happens again. have no idea. Thanks again for the help

"Anthony" wrote:

David,
You have four DC's. What happened to the other one?
You have another subnet 10.1.1.0. Is that on a separate site? How is it
connected?
You have a route to a 192.168.12.0 subnet. Is one of the DC's multihomed?
Your Netbios domain name is SITE2. Is this an upgrade from Windows NT? Do
you have a problem with new accounts as well as with old accounts?
You are using the same domain name for AD as you are for your web service.
Can you show an ipconfig /all from one of the clients where you are having a
problem?
I don't quite follow your description of the problem, though I get the
general idea. Is this a problem from one or two specific clients? Do you
have any general client problems? Do you have any errors in the client event
logs? Is this only a problem when mapping drives, and only from your own
client?
Anthony, http://www.airdesk.com



"David Lausten" <DavidLausten@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:DD12FC89-A114-4D5E-8D1E-35A116EFAFA1@xxxxxxxxxxxxxxxx
When I use \\pbcdf-main\netlogon it requests login... when I use
\\pbcdf-main.pbcdf.com\netlogon it also requests login.

checked DNS and it seems to be functioning correctly.

All DC's are in the same site. Ran Replmon and no errors in replication I
will post the NetDiag and DcDiags in the next post.

Thank you VERY Much Anthony for helping with this !!!! I am at my wits
end.

"Anthony" wrote:

Its hard to tell from what you have said. I would run a replmon and force
a
replication to check for errors. Then double check the DNS. Is everything
resolving correctly when you use the FQDN? Are the DC's all on the same
site?
Anthony, http://www.airdesk.com

"David Lausten" <DavidLausten@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:4AFA0548-4C3C-4744-8B01-213E6A601591@xxxxxxxxxxxxxxxx
Diag's too big :) I can email them by request. Thank you VERY Much in
Advance.






.

Relevant Pages

  • Re: Strange Problem with Authentication Has anyone ever run across
    ... Thank you VERY VERY VERY Much for your Help Anthony. ... workgroup, or from another domain, or with a different account - for example ... You might try rejoining the client to the domain, ... Some Drives Map the one on the Main DC does not but promps for username ...
    (microsoft.public.windows.server.general)
  • Re: Strange Problem with Authentication Has anyone ever run across
    ... workgroup, or from another domain, or with a different account - for example ... You might try rejoining the client to the domain, ... Anthony, http://www.airdesk.com ... Some Drives Map the one on the Main DC does not but promps for username ...
    (microsoft.public.windows.server.general)
  • Re: No username prompt SSHD
    ... it is the client side. ... The client takes the current user and passes that to the server as the ... To override this you must supply a username to the client in one of two ways: ... $ ssh -l login serveur ...
    (SSH)
  • Re: WSE 3.0, usernameOverTransportSecurity, custom Token Manager w/ securityTokenManager,
    ... The usernameOverTransport assertion is not being executed on the client ... An username token was not being added in the proxy. ... Microsoft.Web.Services3.Security.Security security) ...
    (microsoft.public.dotnet.framework.webservices.enhancements)
  • Re: WSE 3.0 + UserNameToken without X.509 Cert/Kerberos + Signing + Encryption How?
    ... signed messages using UserName stuff. ... do response encryption, but I added that and it's working to great effect. ... I'm at a loss on how to add an "authorization assertion" to ... between client and server using a UserNameToken that passes the UserName ...
    (microsoft.public.dotnet.framework.webservices.enhancements)