J
jared
We have AD with 2 DCs, namely G1 and G2. G1 is a global
catalog and has all 5 FSMO roles
(RID,PDC,Infrastructure,Domain Naming and Schema
Master).
We have some user profiles which are stored on G1 (it was
looking into these that brought me to where I am now). I
wanted to put in some resilience by replicating the
profiles to G2, so that if one DC went down the other
could handle authentication and profiles. However, I
have a problem.
G2 is currently processing all client authentication
requests, i.e. all users (when logging on) are getting G2
as %logonserver%. If I switch off G2, no users can log
in, I get the following error:
"No Windows NT or Windows 2000 Domain Controller is
available for domain BLAH. The following error occurred:
There are currently no logon servers available to service
the logon request."
I thought that G1 would handle these as it does, after
all, have more roles than G2. I need to be able to turn
off G2 and get G1 to handle log-ins. I do not
understand why it is not processing these requests and
what can I look into to sort it out??
I thought it may be a DNS issue (maybe..) but after some
work I cannot find anything wrong with our dns setup.
All clients can resolve, ping G1 with no issues.
I'm not an expert so may have overlooked something
simple, but I really do need to look into why its not
servicing logon requests. Most clients are DHCP. DCs
are defined in DHCP.
Any help appreciated, even if its just some good docs on
domain controllers...thx
catalog and has all 5 FSMO roles
(RID,PDC,Infrastructure,Domain Naming and Schema
Master).
We have some user profiles which are stored on G1 (it was
looking into these that brought me to where I am now). I
wanted to put in some resilience by replicating the
profiles to G2, so that if one DC went down the other
could handle authentication and profiles. However, I
have a problem.
G2 is currently processing all client authentication
requests, i.e. all users (when logging on) are getting G2
as %logonserver%. If I switch off G2, no users can log
in, I get the following error:
"No Windows NT or Windows 2000 Domain Controller is
available for domain BLAH. The following error occurred:
There are currently no logon servers available to service
the logon request."
I thought that G1 would handle these as it does, after
all, have more roles than G2. I need to be able to turn
off G2 and get G1 to handle log-ins. I do not
understand why it is not processing these requests and
what can I look into to sort it out??
I thought it may be a DNS issue (maybe..) but after some
work I cannot find anything wrong with our dns setup.
All clients can resolve, ping G1 with no issues.
I'm not an expert so may have overlooked something
simple, but I really do need to look into why its not
servicing logon requests. Most clients are DHCP. DCs
are defined in DHCP.
Any help appreciated, even if its just some good docs on
domain controllers...thx