Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Rhinorhino on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Most users can't log on

Status
Not open for further replies.
tbalazs

tbalazs

IS-IT--Management
Joined
Dec 18, 2000
Messages
158
Location
GB
I am testing my new 2000 server using a 2000 Pro client on a crossover cable. A bunch of users have been set up on the server but...
only users tony and teresa can log on to the domain, as can administrator. This is true from 2 different client machines. All other users get a message that "the system cannot log you on now because the domain DOMAINNAME is not available".
I have a feeling that something needs refreshing on the server but I don't know what.
Any help much appreciated.
Tony.
 
Sort by date Sort by votes
If you have Active Directory installed on your server try logging in using username@fullyqualifieddomain instead of specifying the user and domain seperately, eg bob@domain.com in the user field. This uses DNS to find the domain instead of NETBIOS broadcast.

I'm presuming you have joined the workstation itself to the domain (if you have a domain)?
 
Upvote 0 Downvote
Interesting reponse, Dan, thank you, which has produced the following:
Whereas logging on as teresa or tony does work, using their FQDN does not: I get the "the system cannot log you on now because the domain DOMAINNAME is not available" message.
2 questions: does each workstation need the IP address of the server in the DNS field in the LAN dialog box? By joining the workstation to the domain, do you mean simply listing it as a computer in the Computers container? I have done that, yes.
Tony.
 
Upvote 0 Downvote
You will need to have the IP address of a DNS server that is aware of your domain in the workstation's LAN settings for the FQDN login to work. And yes, that's what I mean by joining the workstation to the domain.

I'm scratching my head a bit here - did you log tony and teresa on during a previous incarnation of this machine (eg when either was an NT4 machine, or before you made a configuration change that has affected connectivity)?

The reason I ask is that tony/teresa might be logging onto the domain using cached credentials on the workstation, meaning that there is no connection at all to the DC even though it appears that way. Hence other users can't log on.
 
Upvote 0 Downvote
I think you are on to something here. For example, logging tony or teresa on the the workstation locally still gives apparent domain access, I have discovered.
How about running dcpromo again and demoting the server? Or will I lose the domain entirely? (There's only the one domain). Tony and Teresa have both been previous users of the workstations, but have only been set up the once on the server.
 
Upvote 0 Downvote
The server has had SP2 applied; the workstations are SP1 (or no SP). Could the problem be to do with differring encryption levels?
 
Upvote 0 Downvote
just a quick confirmation, how did you add your workstations to the domain? were you able to confirm the procedure as successful?

if you don't mind, can you please give a more detailed information about your setup.

:) Jeffrey Rebong
Computer Engineer/Network Administrator
jrdebug@yahoo.com
 
Upvote 0 Downvote
Thanks Jeffrey.
So as not to compromise the office Win2K Pro workgroup, I have been testing things out using the following:

A 2 CPU RAID 5 Server running Windows 2000 Server SP-2(which was installed at the factory) connected via a CAT 5 crossover cable to either of 2 old PCs running AMD K6-2 500MHz CPUs and Win2K Pro SP-1.

Could you please explain what you mean by confirming as sucessful the addition of the PCs to the domain?

Thanks.
Tony.
 
Upvote 0 Downvote
Can you ping the server from the machines that can't log on. I've also found that while not needed, hosts and lmhosts sometimes help with just general communications. Also, go to a dos prompt on the users that can't logon, and just type ipconfig /all for the fun of it and see what you can see.
 
Upvote 0 Downvote
You could also try going back to workgroup, and then rejoin the domain. I have run across this once or twice that although I joined the domain, nothing worked properly. Going back to workgroup and then hoining the domain again solved the problem.
Before I went back to the workgroup, some things worked properly and some did not. I spent two days trying stuff, and finally went back to the workgroup, and when I rejoined the domain everything was good.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

DrB0b
  • Locked
  • Question Question
Hybrid on prem AD with Azure AD
Replies
2
Views
609
DrB0b
DrB0b
James281
  • Locked
  • Question Question
Enrolment agent (enrol on behalf of) stopped working
Replies
1
Views
490
mikehook
mikehook
MattM1975
  • Locked
  • Question Question
Domain Admin Logon
Replies
2
Views
560
ADB100
ADB100
lacked
  • Locked
  • Question Question
problem with windows update on windows server 2016
Replies
1
Views
456
maybeimaleo
maybeimaleo
tviman
  • Locked
  • Question Question
How to restrict RDP users to the desktop
Replies
13
Views
1K
strongm
strongm

Part and Inventory Search

Sponsor

Back
Top