After new years I walked into my server room and the room was 100+ degrees and all servers were down. After I kewled the room I was able to boot all the servers up without issues....EXCEPT the primary DC.
I was able to get it to work after changing the DNS settings to point to the seconday DC and then changed them back.
Here is the issue...
All of my GPO have access denied on every computer in the domain. When I run a "gpresult" on any workstation I get all GPO denied for security because computer has "Null SID". I was able to remove the comptuer and add it back to AD, but I don't want to do that on 250 workstations.
There is nothing in the event view on the workstations on servers that would indicate a problem. Except that none of the GPO's are appling.
I have a good backup of everything from the Friday before and was thinking about performing an Authoritative Restore on the entire AD partition.
Any other recommendations before I perform this MAJOR change.
They are all 2003 R2 servers. I was going to perform this,
I was able to get it to work after changing the DNS settings to point to the seconday DC and then changed them back.
Here is the issue...
All of my GPO have access denied on every computer in the domain. When I run a "gpresult" on any workstation I get all GPO denied for security because computer has "Null SID". I was able to remove the comptuer and add it back to AD, but I don't want to do that on 250 workstations.
There is nothing in the event view on the workstations on servers that would indicate a problem. Except that none of the GPO's are appling.
I have a good backup of everything from the Friday before and was thinking about performing an Authoritative Restore on the entire AD partition.
Any other recommendations before I perform this MAJOR change.
They are all 2003 R2 servers. I was going to perform this,
