domain login issues

[Guest]

I am seeing all my users get these errors in thier event log after loging
into the domain.

Application: Userenv:
Windows cannot determine the user or computer name. (The specified domain
either does not exist or could not be contacted. ). Group Policy processing
aborted.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Application: Autoenrollment:
Automatic certificate enrollment for local system failed to contact the
active directory (0x8007054b). The specified domain either does not exist or
could not be contacted.
Enrollment will not be performed.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

System: Netlogin:
No Domain Controller is available for domain DOMAINNAME due to the following:
There are currently no logon servers available to service the logon request.
..
Make sure that the computer is connected to the network and try again. If
the problem persists, please contact your domain administrator.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

1) Printers always say access denied even though they still print.
2) Sometimes the mapped drives say they are already in use.

I have one single server that is a domain controller.
DNS is now installed but it wasn't before.
I think it might be related to the issues above.
Could it be a DNS issue?
Users can login
I can join a domain without issue.

Thanks,

 

[Richard G. Harper]

It's almost surely a DNS issue. Configure all clients to look only at the
domain DNS server for name resolution, and have the DNS server use an
outside source (your ISP, or root hints) to resolve all names not on your
domain.

 

[Richard G. Harper]

First, all your network clients (including the DNS server) should be looking
at only the DNS server's address for name resolution. The DNS server should
either be using a forwarder (your ISP's DNS server) or root hints to resolve
external addresses. The router shouldn't be an issue at this point as we're
trying to fix internal address resolution - it might need tweaking later but
if you can open Web pages like www.yahoo.com then it's probably fine as it
is for now.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Thanks for your help. How does the router fit in here. I have a linksys
router, static ip and isp dns configured. I have tried pointing the
clients
to the server but that didn't resolve it.
Should I configure a forwarder on the server?
Should the router have the server as its dns servers?
Is there a port I need to open on the router?

Thanks again
Ryan M

It's almost surely a DNS issue. Configure all clients to look only at
the
domain DNS server for name resolution, and have the DNS server use an
outside source (your ISP, or root hints) to resolve all names not on your
domain.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

I am seeing all my users get these errors in thier event log after
loging
into the domain.

Application: Userenv:
Windows cannot determine the user or computer name. (The specified
domain
either does not exist or could not be contacted. ). Group Policy
processing
aborted.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Application: Autoenrollment:
Automatic certificate enrollment for local system failed to contact the
active directory (0x8007054b). The specified domain either does not
exist
or
could not be contacted.
Enrollment will not be performed.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

System: Netlogin:
No Domain Controller is available for domain DOMAINNAME due to the
following:
There are currently no logon servers available to service the logon
request.
.
Make sure that the computer is connected to the network and try again.
If
the problem persists, please contact your domain administrator.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

1) Printers always say access denied even though they still print.
2) Sometimes the mapped drives say they are already in use.

I have one single server that is a domain controller.
DNS is now installed but it wasn't before.
I think it might be related to the issues above.
Could it be a DNS issue?
Users can login
I can join a domain without issue.

Thanks,

 

[Richard G. Harper]

The easiest way would be if your router can send DNS information to the
client PCs, or to install Microsoft DHCP on your DNS server and turn off the
router's DHCP server. Microsoft DHCP can send the necessary information to
the client PCs when they pick up an IP address.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Thanks for your help.
Is there a way to list or alter the entries in DNS?
Ryan

First, all your network clients (including the DNS server) should be
looking
at only the DNS server's address for name resolution. The DNS server
should
either be using a forwarder (your ISP's DNS server) or root hints to
resolve
external addresses. The router shouldn't be an issue at this point as
we're
trying to fix internal address resolution - it might need tweaking later
but
if you can open Web pages like www.yahoo.com then it's probably fine as
it
is for now.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Thanks for your help. How does the router fit in here. I have a linksys
router, static ip and isp dns configured. I have tried pointing the
clients
to the server but that didn't resolve it.
Should I configure a forwarder on the server?
Should the router have the server as its dns servers?
Is there a port I need to open on the router?

Thanks again
Ryan M


:

It's almost surely a DNS issue. Configure all clients to look only at
the
domain DNS server for name resolution, and have the DNS server use an
outside source (your ISP, or root hints) to resolve all names not on
your
domain.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm



I am seeing all my users get these errors in thier event log after
loging
into the domain.

Application: Userenv:
Windows cannot determine the user or computer name. (The specified
domain
either does not exist or could not be contacted. ). Group Policy
processing
aborted.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Application: Autoenrollment:
Automatic certificate enrollment for local system failed to contact
the
active directory (0x8007054b). The specified domain either does not
exist
or
could not be contacted.
Enrollment will not be performed.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

System: Netlogin:
No Domain Controller is available for domain DOMAINNAME due to the
following:
There are currently no logon servers available to service the logon
request.
.
Make sure that the computer is connected to the network and try
again.
If
the problem persists, please contact your domain administrator.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

1) Printers always say access denied even though they still print.
2) Sometimes the mapped drives say they are already in use.

I have one single server that is a domain controller.
DNS is now installed but it wasn't before.
I think it might be related to the issues above.
Could it be a DNS issue?
Users can login
I can join a domain without issue.

Thanks,

 

[Guest]

One thing I am worried about is. When I set up the domain I set up the same
name as they use for thier web site. domainname.net

So far its not an issue. Is there anything to worry about.
I will try moving the DHCP server to the server.

Thanks,
Ryan

The easiest way would be if your router can send DNS information to the
client PCs, or to install Microsoft DHCP on your DNS server and turn off the
router's DHCP server. Microsoft DHCP can send the necessary information to
the client PCs when they pick up an IP address.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Thanks for your help.
Is there a way to list or alter the entries in DNS?
Ryan

First, all your network clients (including the DNS server) should be
looking
at only the DNS server's address for name resolution. The DNS server
should
either be using a forwarder (your ISP's DNS server) or root hints to
resolve
external addresses. The router shouldn't be an issue at this point as
we're
trying to fix internal address resolution - it might need tweaking later
but
if you can open Web pages like www.yahoo.com then it's probably fine as
it
is for now.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm



Thanks for your help. How does the router fit in here. I have a linksys
router, static ip and isp dns configured. I have tried pointing the
clients
to the server but that didn't resolve it.
Should I configure a forwarder on the server?
Should the router have the server as its dns servers?
Is there a port I need to open on the router?

Thanks again
Ryan M


:

It's almost surely a DNS issue. Configure all clients to look only at
the
domain DNS server for name resolution, and have the DNS server use an
outside source (your ISP, or root hints) to resolve all names not on
your
domain.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm



I am seeing all my users get these errors in thier event log after
loging
into the domain.

Application: Userenv:
Windows cannot determine the user or computer name. (The specified
domain
either does not exist or could not be contacted. ). Group Policy
processing
aborted.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


Application: Autoenrollment:
Automatic certificate enrollment for local system failed to contact
the
active directory (0x8007054b). The specified domain either does not
exist
or
could not be contacted.
Enrollment will not be performed.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

System: Netlogin:
No Domain Controller is available for domain DOMAINNAME due to the
following:
There are currently no logon servers available to service the logon
request.
.
Make sure that the computer is connected to the network and try
again.
If
the problem persists, please contact your domain administrator.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

1) Printers always say access denied even though they still print.
2) Sometimes the mapped drives say they are already in use.

I have one single server that is a domain controller.
DNS is now installed but it wasn't before.
I think it might be related to the issues above.
Could it be a DNS issue?
Users can login
I can join a domain without issue.

Thanks,

 

[Richard G. Harper]

Ah ... yeah, that can cause problems all right. At the moment I don't think
it will since you have a router between you and the rest of the world and
DNS will try to resolve names internally first before reaching out to the
world for resolution. But you may want to consider changing the internal
network name to one that cannot resolve outside the network - that would
involve removing all PCs from the domain, destroying the domain, then
re-creating it with a different name (domainname.LOCAL would be a good
choice) that doesn't resolve in the real world.

 

[Guest]

Whats the easiest way to recreate a domain. I don't mind doing it but do I
have to recreate all my users?

Ah ... yeah, that can cause problems all right. At the moment I don't think
it will since you have a router between you and the rest of the world and
DNS will try to resolve names internally first before reaching out to the
world for resolution. But you may want to consider changing the internal
network name to one that cannot resolve outside the network - that would
involve removing all PCs from the domain, destroying the domain, then
re-creating it with a different name (domainname.LOCAL would be a good
choice) that doesn't resolve in the real world.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

One thing I am worried about is. When I set up the domain I set up the
same
name as they use for thier web site. domainname.net

So far its not an issue. Is there anything to worry about.
I will try moving the DHCP server to the server.

 

[Richard G. Harper]

Yep, you'll have to re-create everything from scratch. There is no easiest
way to do it unless you are running Windows Server 2003 where you can rename
domains.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Whats the easiest way to recreate a domain. I don't mind doing it but do I
have to recreate all my users?

Ah ... yeah, that can cause problems all right. At the moment I don't
think
it will since you have a router between you and the rest of the world and
DNS will try to resolve names internally first before reaching out to the
world for resolution. But you may want to consider changing the internal
network name to one that cannot resolve outside the network - that would
involve removing all PCs from the domain, destroying the domain, then
re-creating it with a different name (domainname.LOCAL would be a good
choice) that doesn't resolve in the real world.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

One thing I am worried about is. When I set up the domain I set up the
same
name as they use for thier web site. domainname.net

So far its not an issue. Is there anything to worry about.
I will try moving the DHCP server to the server.

 

[Guest]

Thats a bummer. I think I will try and keep it until I upgrade to 2003.
One more thing. I am thinking of moving our backup to an external USB drive
rather than a tape which is becoming unreliable. What do you think?

Yep, you'll have to re-create everything from scratch. There is no easiest
way to do it unless you are running Windows Server 2003 where you can rename
domains.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Whats the easiest way to recreate a domain. I don't mind doing it but do I
have to recreate all my users?

Ah ... yeah, that can cause problems all right. At the moment I don't
think
it will since you have a router between you and the rest of the world and
DNS will try to resolve names internally first before reaching out to the
world for resolution. But you may want to consider changing the internal
network name to one that cannot resolve outside the network - that would
involve removing all PCs from the domain, destroying the domain, then
re-creating it with a different name (domainname.LOCAL would be a good
choice) that doesn't resolve in the real world.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm



One thing I am worried about is. When I set up the domain I set up the
same
name as they use for thier web site. domainname.net

So far its not an issue. Is there anything to worry about.
I will try moving the DHCP server to the server.

 

[Richard G. Harper]

Personally, I use both. Tape is difficult to beat for price and portability
offsite but you lose speed and flexibility. An external USB drive is fast
and can be re-connected anywhere but is relatively expensive and not as
portable as a DAT tape is. So I use tape for the bulk of my data but USB
for frequently-changing data that might be needed elsewhere.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Thats a bummer. I think I will try and keep it until I upgrade to 2003.
One more thing. I am thinking of moving our backup to an external USB
drive
rather than a tape which is becoming unreliable. What do you think?

Yep, you'll have to re-create everything from scratch. There is no
easiest
way to do it unless you are running Windows Server 2003 where you can
rename
domains.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Whats the easiest way to recreate a domain. I don't mind doing it but
do I
have to recreate all my users?

:

Ah ... yeah, that can cause problems all right. At the moment I don't
think
it will since you have a router between you and the rest of the world
and
DNS will try to resolve names internally first before reaching out to
the
world for resolution. But you may want to consider changing the
internal
network name to one that cannot resolve outside the network - that
would
involve removing all PCs from the domain, destroying the domain, then
re-creating it with a different name (domainname.LOCAL would be a good
choice) that doesn't resolve in the real world.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm



One thing I am worried about is. When I set up the domain I set up
the
same
name as they use for thier web site. domainname.net

So far its not an issue. Is there anything to worry about.
I will try moving the DHCP server to the server.

 

[Guest]

Thanks for all your help Richard
In making some of these changes (which I havent completed yet). I have some
users saying they start up thier application they use alot and it freezes.

What happens is there is a mapped drive that the program accesses. At that
point if I try to open the mapped drive it says its already in use.

They have to reboot once or twice to get it working. Is that related to the
DNS issues I am having?

Thanks,
Ryan

Personally, I use both. Tape is difficult to beat for price and portability
offsite but you lose speed and flexibility. An external USB drive is fast
and can be re-connected anywhere but is relatively expensive and not as
portable as a DAT tape is. So I use tape for the bulk of my data but USB
for frequently-changing data that might be needed elsewhere.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Thats a bummer. I think I will try and keep it until I upgrade to 2003.
One more thing. I am thinking of moving our backup to an external USB
drive
rather than a tape which is becoming unreliable. What do you think?

Yep, you'll have to re-create everything from scratch. There is no
easiest
way to do it unless you are running Windows Server 2003 where you can
rename
domains.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm



Whats the easiest way to recreate a domain. I don't mind doing it but
do I
have to recreate all my users?

:

Ah ... yeah, that can cause problems all right. At the moment I don't
think
it will since you have a router between you and the rest of the world
and
DNS will try to resolve names internally first before reaching out to
the
world for resolution. But you may want to consider changing the
internal
network name to one that cannot resolve outside the network - that
would
involve removing all PCs from the domain, destroying the domain, then
re-creating it with a different name (domainname.LOCAL would be a good
choice) that doesn't resolve in the real world.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm



One thing I am worried about is. When I set up the domain I set up
the
same
name as they use for thier web site. domainname.net

So far its not an issue. Is there anything to worry about.
I will try moving the DHCP server to the server.

 

[Richard G. Harper]

What I would try at this point would be to create a batch file that un-maps
and then re-maps the drive the user needs and have them try this instead of
rebooting the computer:

@echo off
net use v: /d
net use v: \\servername\sharename

Of course, substitute the proper values for v: and \\servername\sharename
above.

If that resolves their problem then you need to work on figuring out why
you're getting the "drive is already in use" error. It can be caused by a
number of problems including loss of network connectivity on the part of the
server or the client, forced disconnection of a network resource while in
use, and so on.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Thanks for all your help Richard
In making some of these changes (which I havent completed yet). I have
some
users saying they start up thier application they use alot and it freezes.

What happens is there is a mapped drive that the program accesses. At that
point if I try to open the mapped drive it says its already in use.

They have to reboot once or twice to get it working. Is that related to
the
DNS issues I am having?

Thanks,
Ryan

Personally, I use both. Tape is difficult to beat for price and
portability
offsite but you lose speed and flexibility. An external USB drive is
fast
and can be re-connected anywhere but is relatively expensive and not as
portable as a DAT tape is. So I use tape for the bulk of my data but USB
for frequently-changing data that might be needed elsewhere.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm

Thats a bummer. I think I will try and keep it until I upgrade to 2003.
One more thing. I am thinking of moving our backup to an external USB
drive
rather than a tape which is becoming unreliable. What do you think?

:

Yep, you'll have to re-create everything from scratch. There is no
easiest
way to do it unless you are running Windows Server 2003 where you can
rename
domains.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm



Whats the easiest way to recreate a domain. I don't mind doing it
but
do I
have to recreate all my users?

:

Ah ... yeah, that can cause problems all right. At the moment I
don't
think
it will since you have a router between you and the rest of the
world
and
DNS will try to resolve names internally first before reaching out
to
the
world for resolution. But you may want to consider changing the
internal
network name to one that cannot resolve outside the network - that
would
involve removing all PCs from the domain, destroying the domain,
then
re-creating it with a different name (domainname.LOCAL would be a
good
choice) that doesn't resolve in the real world.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* In fond memory ... Alex, you shall be sorely missed
* http://www.aumha.org/alex.htm



One thing I am worried about is. When I set up the domain I set
up
the
same
name as they use for thier web site. domainname.net

So far its not an issue. Is there anything to worry about.
I will try moving the DHCP server to the server.