AD Domain member server not showing SAM names

G

Guest

The local groups display local members properly, but display domain accounts
as SDDL Sids (as if it was a non-domain/non-trusted computer). I can add
users and groups from the domain (same domain that server is member of), but
when I close the gui and go back in, the SAM name is replaced by the SID.
People using computers in same domain can map drive to it, but people in
other domains can not: "An attempt was made.... but the network logon service
was not started." The netlogon service is started. Been scouring Microsoft
and the internet for 2 hours now with now luck. I am considering removing and
re-adding server to the domain. Ideas?
 
R

Roger Abell [MVP]

Are all ports open to all DCs of any account domains in the forest ?
That is, are you using IPsec or firewall ?
Although this next can account for the lack of display names (even
for name from the same domain) I do not believe it accounts for
the login failure you also mention : is the Tcp/Ip NetBios Helper
service started/running?
 
G

Guest

Thx for reply. I was unable to add back to domain after I removed. I got
"Interface is invalid". So I restored system object using Tivoli. Working now!
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Unable to authenticate to untrusted domain NTLM v2 related issue 16
Backup and restore Win2k Member server Local groups 7
Child/Parent Domain sanity Check 3
"enterprise admins" member of local domain administrators ?! 2
Domain Member PC Cannot Resolve Names 1
NetUserGetLocalGroups in multi-domain AD environment 2
Changing Windows 2000 member computer's name... 1
External trust and a member server 9

Top