No, spoke too soon. Still many Netlogon and Autoenrollment errors in the event log of the workstations. The funny thing is that I'm getting them periodically on the DC, too! What a nightmare.
I get the errors on most of the clients, but not all at the same time. Usually it is when the...
Okay, I took ISP's address out of the TCP/IP settings. I checked and I DON'T have the suffix entered for TCP/IP, so I put that in the server and workstations.
I verified that I DO have SRV records under the Forward zone in DNS. I did a dns flush and re-register just in case with IPCONFIG...
Here is the dcdiag results. Doesn't look too good! :)
-------
Domain Controller Diagnosis
Performing initial setup:
* Verifying that the local machine server, is a DC.
* Connecting to directory service on server server.
* Collecting site info.
* Identifying all servers.
*...
The first time I ran NETDIAG it showed an error finding my default gateway.
Then, I realized that my firewall was not allowing pings, so I turned that on.
The second time, everything showed "passed".
The results below looked like they could be a problem: (###.###.#.# is one of my ISP's DNS...
Okay, I could not get DCDIAG to run. It said it couldn't find DsIsMangledDnw. But, I ran NETDIAG. Everything looked okay...can I post those results here? There were a few funny things that I was unsure about. I will keep working on DCDIAG.
In DNS, there are cached lookup entries in both...
OH NO!! No more USRENV errors, but now I am getting Netlogon and Auto enrollment errors. Specifically, 5719, 15, and 1053...can't find domain controller, can't find RPC server, enrollment will not be performed. These are not every login, but a few throughout the day.
I am so grateful to you...
TECHNOME! This fixed it!!! I did the things you said above, and nslookup shows my DNS server now!!! Thank you, thank you, thank you! Thank you karmic, beerhunter2 and zigcoors, also, for all your suggestions. I did them all, and things are looking much better. I will see now if tomorrow the...
Sorry, one more thing...I tried to add the group "Domain User" to the Administrator user on a local workstation, and it is not there. "Domain User" is not listed as one of the groups on the local machine. Should it be?
I created the reverse zone. Do I want to enable DNS forwarding? Also, the Allow Dynamic Update check box is set to "Only Secure Updates" on the forward, and "No" on the reverse. Is this correct, or should they both be "yes"?
Here is what I've done to try to resolve the roaming profile issue:
-reinstalled SP4 & SP4 rollup 1 on server (will do v2 tonight)
-installed all updates to XP-SP2 on the desktops
-configured clients with "Add Administrator group" policy
-configured clients with "Do no check for security"...
Thank you so much for your replies! Can anyone tell me how to set up the reverse zone and PTR record? I set up the forward but I do not remember how I did it. Sorry to be so clueless, I'm kind of learning as I go.
Well, I changed the preferred server to our DC, but it still is not reflected in nslookup. Still shows the ISP server. Why could this be? something still configured wrong in DNS?
This is frustrating! Everything was working fine on this server for 3 years, and suddenly everything is a mess.
Wow...I just checked and I DON'T have my domain server as the preferred DNS server. I have my ISP. Why? I don't know. I seem to remember some problem occurring where we changed this to resolve some problem. I will change it back and see what happens.
I did try disabling the firewall...
In DHCP,do you mean scope options? I actually have 2 scopes defined, one is inactive. For the 2nd scope, which is the one we are using, I have:
Router: points to IP of my firewall
DNS Server: point first to IP of server, then IP's of ISP
DNS Domain name: says name of server-"schoolname.local"...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.