Re: Win2003 "cannot access the file gpt.ini"

From: Svein Terje Gaup (stgaup_at_broadpark.no.spam)
Date: 03/13/05

• Next message: Jordan Samulaitis: "Re: Operating System Mirroring"
• Previous message: Tim Net: "Re: Operating System Mirroring"
• In reply to: NIC Student: "Re: Win2003 "cannot access the file gpt.ini""
• Messages sorted by: [ date ] [ thread ]

Date: Sun, 13 Mar 2005 16:23:20 +0100

I discovered that the problem was bigger than I thought. I was not able to
create new user accounts or do any other operation involving AD, so since I
was not able to fix the problem any other way, I reinstalled the server on a
freshly formatted drive. Now everything seems to be working as it should.
Why the server got messed up in the first place I don't know. Maybe it was
the anti-virus (ClamWin) that wasn't compatible with Windows Server.

-- 
mvh
Svein Terje Gaup
"NIC Student" <nospam@nospam.land> wrote in message 
news:eN6r604IFHA.1200@TK2MSFTNGP10.phx.gbl...
> Hi Svein,
>
> Thanks for the update.
>
> On the external adaptor:  Leave DNS blank and turn off netbios.
>
> On the internal adaptor:  Point DNS to 192.168.0.1 and WINS to the same ip 
> if you want WINS, otherwise disable netbios.
>
> On the DNS server KVIKK 192.168.0.1:  set forwarders to the external 
> 217.x.x.x ips.  Do not disable recursion.
>
> Make sure the 192.168.0.1 server has the scope for the A/D domain.
>
> Restart KVIKK to update WINS/DNS.
>
> -- 
> Scott Baldridge
> Windows Server MVP, MCSE
>
> "Svein Terje Gaup"
>> Hi, I don't seem to have the same problem. In my case, the gpt.ini file 
>> is not missing.
>>
>> This article seemed to describe my problem quite well, but unfortunately 
>> the solution didn't work:
>> http://support.microsoft.com/default.aspx?scid=kb;en-us;830676&sd=ee
>>
>> I ran netdiag on the server, and this is the output:
>> .........................................
>>    Computer Name: KVIKK
>>    DNS Host Name: KVIKK.home.local
>>    System info : Windows 2000 Server (Build 3790)
>>    Processor : x86 Family 6 Model 7 Stepping 2, GenuineIntel
>>    List of installed hotfixes :
>>        KB819696
>>        KB823182
>>        KB823353
>>        KB823559
>>        KB824105
>>        KB825119
>>        KB828035
>>        KB828741
>>        KB833987
>>        KB835732
>>        KB837001
>>        KB839643
>>        KB839645
>>        KB840315
>>        KB840374
>>        KB840987
>>        KB841356
>>        KB841533
>>        KB867282
>>        KB871250
>>        KB873333
>>        KB873376
>>        KB885250
>>        KB885834
>>        KB885835
>>        KB885836
>>        KB888113
>>        KB890047
>>        KB890175
>>        KB891711
>>        KB891781
>>        Q147222
>>        Q828026
>>
>> Netcard queries test . . . . . . . : Passed
>>
>> Per interface results:
>>    Adapter : WAN Adapter
>>        Netcard queries test . . . : Passed
>>        Host Name. . . . . . . . . : KVIKK
>>        IP Address . . . . . . . . : 10.0.0.2
>>        Subnet Mask. . . . . . . . : 255.255.255.0
>>        Default Gateway. . . . . . : 10.0.0.1
>>        Dns Servers. . . . . . . . : 217.13.4.21
>>                                     217.13.7.136
>>        AutoConfiguration results. . . . . . : Passed
>>        Default gateway test . . . : Passed
>>        NetBT name test. . . . . . : Passed
>>        [WARNING] At least one of the <00> 'WorkStation Service', <03> 
>> 'Messenger Service', <20> 'WINS' names is missing.
>>            No remote names have been found.
>>        WINS service test. . . . . : Skipped
>>            There are no WINS servers configured for this interface.
>>    Adapter : LAN Adapter
>>        Netcard queries test . . . : Passed
>>        Host Name. . . . . . . . . : KVIKK
>>        IP Address . . . . . . . . : 192.168.0.1
>>        Subnet Mask. . . . . . . . : 255.255.255.0
>>        Default Gateway. . . . . . :
>>        Dns Servers. . . . . . . . : 192.168.0.1
>>        AutoConfiguration results. . . . . . : Passed
>>        Default gateway test . . . : Skipped
>>            [WARNING] No gateways defined for this adapter.
>>        NetBT name test. . . . . . : Passed
>>        [WARNING] At least one of the <00> 'WorkStation Service', <03> 
>> 'Messenger Service', <20> 'WINS' names is missing.
>>            No remote names have been found.
>>        WINS service test. . . . . : Skipped
>>            There are no WINS servers configured for this interface.
>>
>> Global results:
>> Domain membership test . . . . . . : Passed
>> NetBT transports test. . . . . . . : Passed
>>    List of NetBt transports currently configured:
>>        NetBT_Tcpip_{2B00F974-B9AA-414D-A530-7AE54809BC52}
>>        NetBT_Tcpip_{AF6FE6E7-0508-45C9-939B-CEB918C384A3}
>>    2 NetBt transports currently configured.
>>
>> Autonet address test . . . . . . . : Passed
>> IP loopback ping test. . . . . . . : Passed
>> Default gateway test . . . . . . . : Passed
>> NetBT name test. . . . . . . . . . : Passed
>>    [WARNING] You don't have a single interface with the <00> 'WorkStation 
>> Service', <03> 'Messenger Service', <20> 'WINS' names defined.
>> Winsock test . . . . . . . . . . . : Passed
>> DNS test . . . . . . . . . . . . . : Passed
>>          [WARNING] Cannot find a primary authoritative DNS server for the 
>> name
>>            'KVIKK.home.local.'. [RCODE_SERVER_FAILURE]
>>            The name 'KVIKK.home.local.' may not be registered in DNS.
>>    [WARNING] The DNS entries for this DC are not registered correctly on 
>> DNS server '217.13.4.21'. Please wait for 30 minutes for DNS server 
>> replication.
>>    [WARNING] The DNS entries for this DC are not registered correctly on 
>> DNS server '217.13.7.136'. Please wait for 30 minutes for DNS server 
>> replication.
>>    PASS - All the DNS entries for DC are registered on DNS server 
>> '192.168.0.1' and other DCs also have some of the names registered.
>> Redir and Browser test . . . . . . : Passed
>>    List of NetBt transports currently bound to the Redir
>>        NetBT_Tcpip_{2B00F974-B9AA-414D-A530-7AE54809BC52}
>>        NetBT_Tcpip_{AF6FE6E7-0508-45C9-939B-CEB918C384A3}
>>    The redir is bound to 2 NetBt transports.
>>
>>    List of NetBt transports currently bound to the browser
>>        NetBT_Tcpip_{AF6FE6E7-0508-45C9-939B-CEB918C384A3}
>>        NetBT_Tcpip_{2B00F974-B9AA-414D-A530-7AE54809BC52}
>>    The browser is bound to 2 NetBt transports.
>> DC discovery test. . . . . . . . . : Passed
>> DC list test . . . . . . . . . . . : Passed
>> Trust relationship test. . . . . . : Skipped
>> Kerberos test. . . . . . . . . . . : Passed
>> LDAP test. . . . . . . . . . . . . : Passed
>> Bindings test. . . . . . . . . . . : Passed
>>
>> WAN configuration test . . . . . . : Skipped
>>    No active remote access connections.
>> Modem diagnostics test . . . . . . : Passed
>> IP Security test . . . . . . . . . : Skipped
>>    Note: run "netsh ipsec dynamic show /?" for more detailed information
>>
>> I see some warnings. For instance this:
>>          [WARNING] Cannot find a primary authoritative DNS server for the 
>> name
>>            'KVIKK.home.local.'. [RCODE_SERVER_FAILURE]
>>            The name 'KVIKK.home.local.' may not be registered in DNS.
>>
>> KVIKK is the DNS server, so this seems strange to me. Do I need to create 
>> a host record for the Domain Controller in DNS?
>>
>> It says it is not registered on the dns server that is used as default 
>> forwarder for queries not resolved locally.
>>
>> Hope someone can help me...
>>
>> Sincerely
>> Svein Terje Gaup
>>
>> "NIC Student" <nospam@nospam.land> wrote in message 
>> news:uFgyvYrIFHA.3628@TK2MSFTNGP15.phx.gbl...
>>> Hi Svein ,
>>>
>>> I've seen this once before when the GPOs in a domain became corrupted or 
>>> damaged and could't be replicated, edited or used by clients.  Group 
>>> Policy may fail because the workstations cannot read all the GPOs and 
>>> then will stick with existing policy rather than accept changes when one 
>>> of the GPOs cannot be read.  I still don't know why this happened 
>>> although I tend to think a certain antivirus program messed the 
>>> permissions up.
>>>
>>> The sysvol share is present on your domain controllers.  Look for the 
>>> share on your dcs and if they don't have one then there is indeed a big 
>>> problem. You can access sysvol by Start>Run>"\\dcname\sysvol">OK.  Or 
>>> you can get there by \\domain name\sysvol.  Default permissions can be 
>>> found in this article:
>>>
>>> SYSVOL junction inherits NTFS permissions from the drive root
>>> http://support.microsoft.com/default.aspx?scid=kb;en-us;319808
>>>
>>> In the case I mentioned above, I tried looking at permissions and such, 
>>> but the gpt.ini file was actually missing from the GPO and permissions 
>>> were fine, so we created a new blank GPO, then copied its gpt.ini back 
>>> to the broken GPO, deleted the blank GPO and all was well.
>>>
>>> -- 
>>> Scott Baldridge
>>> Windows Server MVP, MCSE
>>>
>>> "Svein Terje Gaup"
>>>> Hi alle, and thanks in advance for any help provided...
>>>>
>>>> I have installed Windows Server 2003 as a "first server on the 
>>>> network". Now I keep getting two separate errors every minute in the 
>>>> application log:
>>>>
>>>> Event ID: 1030
>>>> Windows cannot query for the list of Group Policy objects. Check the 
>>>> event log for possible messages previously logged by the policy engine 
>>>> that describes the reason for this.
>>>>
>>>> EventID: 1058
>>>> Windows cannot access the file gpt.ini for GPO 
>>>> CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=home,DC=local. 
>>>> The file must be present at the location 
>>>> <\\home.local\sysvol\home.local\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}\gpt.ini>. 
>>>> (Configuration information could not be read from the domain 
>>>> controller, either because the machine is unavailable, or access has 
>>>> been denied. ). Group Policy processing aborted.
>>>>
>>>> The server is set up with the following roles:
>>>> - Domain Controller
>>>> - DNS Server - forward lookup to internal Router for unresolved queries
>>>> - RRAS with NAT and Basic Firewall
>>>> - DHCP Server
>>>>
>>>> The server is set up as a multihomed machine with two nics. One nic 
>>>> named "LAN" connects to the internal LAN (the 192.168.0.0/24 subnet). 
>>>> The other is named "WAN" and connects to a subnet (10.0.0.0/24) with 
>>>> only one router connected in addition to the server. The WAN nic is 
>>>> setup to automatically receive its IP adress from the (Cisco) router.
>>>>
>>>> I've read this KB article: 
>>>> http://support.microsoft.com/default.aspx?scid=kb;en-us;842804&sd=ee
>>>>
>>>> It suggests that I should ensure these four things:
>>>>     - Netlogon and DFS services are started. => Check!
>>>>     - Domain controllers have the read and apply rights to the Domain 
>>>> Controllers Policy. => I cannot access the Group Policy snapin, I get 
>>>> this message when trying to open the Domain Security Policy: Failed to 
>>>> open the Group Policy Object. You may not have appropriate rights.
>>>>     - NTFS file system permissions and share permissions are set 
>>>> correctly on the Sysvol share. => How do I find and access this share? 
>>>> It does not seem to be an ordinar file share.
>>>>     - DNS entries are correct for the domain controllers. => Check!
>>>>
>>>>
>>>> This article intended for Small Business Server describes the problem 
>>>> quite accurately: 
>>>> http://support.microsoft.com/default.aspx?scid=kb;en-us;888943&sd=ee, 
>>>> but the solution is to correct an incorrect domain name. My domain name 
>>>> is correct, and I'm not running SBS.
>>>>
>>>> Does anybody have an idea what might be wrong? Anything I should try?
>>>>
>>>> -- 
>>>> mvh
>>>> Svein Terje Gaup
>>>>
>>>>
>>>
>>>
>>
>>
>
> 

• Next message: Jordan Samulaitis: "Re: Operating System Mirroring"
• Previous message: Tim Net: "Re: Operating System Mirroring"
• In reply to: NIC Student: "Re: Win2003 "cannot access the file gpt.ini""
• Messages sorted by: [ date ] [ thread ]

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint