NT->AD2003 upgrade

Tech-Archive recommends: Fix windows errors by optimizing your registry

Hi,

We're running an upgrade in test lab.

Account domain:
--------------------
ACCDC1 (NT 4-PDC)
ACCDC2 (NT4-BDC)

Resource domain:
---------------------
RESDC1 (NT4-PDC)
RESDC2 (NT4-BDC)
SRV1 (Windows 2003 Member)
SRV2 (Windows 2000 Member-DNS server with 3 different domains. One of the
domain is the name that I would like to use in AD and it's not secondary dns
in this site)
CLN1 (Windows XP client)

There is a one way trust between the domains.

I have some problems:

When running the AD wizard, I installed also DNS and let the wizard
configure the dns. Actually I have some hosts on the old DNS server that I
will copy them to the new server. All the clients and servers (except the
ACCDC1) have SRV2 dns server ip on their dns client. I put the ip of the new
dns server as a forwarder to the old dns in order for clients/servers to
find the active directory.

1. After upgrading ACCDC1 to Windows 2003 and got AD up and running, the
login script is not running when loging on SRV1 (Win 2003 server). I don't
have problems running the login scripts from SRV2 or CLN1.

2. Is it correct to put a forward ip to old dns for the new dns server? All
clients get ip from dhcp and they renew every 3 days.
Do i have to force them to renew or is there a better way to do this?

3. I get the following message in the event viewer after loging on from SRV1
(windows 2003 machine)

Error 1055
Windows cannot determine computer name. (The specified domain either does
not exist or could not be contacted). Group policy processing aborted.

Error 1109
CN=User1,CN=Users,DC=mydomain,DC=com from a different forest logged onto
this machine. Cross forest group policy processing is disabled and loopback
processing has been enforced in this forest for this user account.

4. I have also Radius server running on ACCDC1 NT machine (before upgrade)
which authenticates Cisco vpn remote users to Cisco PIX. Will Radius work
after the upgrade. The problem is that I cannot test it in real.


What do they mean?


Thanks,

Haim Beyhan


.

Relevant Pages

  • Re: GPO problems
    ... It was the ISA 2004 firewall client. ... DNS settings and network properties on the server and client computers. ... > Service of SBS is configured to be the DNS server on the problematic ...
    (microsoft.public.windows.server.sbs)
  • RE: Dynamic Update of A&PTR Records - Best Practice?
    ... The DNS server does not support the DNS dynamic update protocol; ... For Windows Server 2003-based computers, the primary full computer name is ... When one of these events triggers a DNS update, the DHCP Client service, ...
    (microsoft.public.windows.server.dns)
  • Re: Migration from NT4 to W2K
    ... 272594 Problems logging on to a Windows 2000-based server or a Windows ... | Full DNS domain name is now ABC1.cz, ... | before in-place upgrade of NT4 is able to logon to this W98 client. ...
    (microsoft.public.windows.server.migration)
  • Re: Connect Computer - Not successful after Numerous Attempts
    ... Since that temporary account is used in the migration ... Client LAN connection is now configured to ONLY show ... the SBS server IP as the DNS server. ... Looks like all DNS records are in place as you ...
    (microsoft.public.windows.server.sbs)
  • Re: DHCP on router or server
    ... There are plenty of real instances of problems that many have seen, and have even been posted here, that have been caused by having non-AD DNS servers on a windows client. ... There is a difference between getting an answer of "record not found" and not getting an answer at all (a DNS server being down, timeout exceeded, etc.) If a server replies that a record does not exist, the DNS client will *not* query other servers. ... However I'm wondering if the router should be the one handing out DHCP ...
    (microsoft.public.windows.server.sbs)