G
Guest
Hi,
This is a complicated problem that I've searched and tried many things to
help solve to no avail. I would be very happy if someone could give me a
hand.
We have one domain controller. The C partition is 3.99 GB and has 31 MB
free. I am trying to apply a group policy which will cause computers to
automatically patch themselves using a SUS server that I just set up. The
policy does not take effect on the clients. Here are the error messages from
event logs:
1. On the domain controller:
This error message shows up every 5 minutes in the application log:
Source: SceCli
Event ID: 1202
Security Policies are propogated with warning. 0x534: No mapping between
account names and security IDs was done.
In the File Replication Service log I get the following warnings:
Source: NtFrs
Event ID: 13564
The file replication service has detected that the volume holding the FRS
debug logs is running out of disk space. This will not affect replication
unless this volume hosts database, staging, or replica root paths as well.
Source: NtFrs
Event ID: 13516
The file replication service is no longer preventing the computer FOODC from
becoming a domain controller. The system volume has been notified that the
system volume is now ready to be shared as SYSVOL...
2. On a Windows 2003 member server and on XP Professional clients:
Source: Userenv
EventID: 1030
Windows cannot query for the list of Group Policy objects...
Source: Userenv
EventID: 1101
Windows cannot access the the object
OU=TestEnvironment,DC=Foo,DC=local in Active Directory. The access to the
object may be denied. Group Policy processing aborted.
3. On Windows 2000 professional clients:
the policy is not applied correctly and there appear to be no corresponding
error messages in the event viewer.
Things I've tried already:
I followed the instructions of Q324383: Troubleshooting SCECLI 1202 events.
Under the troubleshooting steps, it says to determine the account that is
causing the failure. When I type in "find /i "cannot find"
%SYSTEMROOT%\security\logs\winlogon.log" I get:
--------------- C:\WINNT\SECURITY\LOGS\WINLOGON.LOG
Cannot find Power Users.
<this message is repeated about 54 times>
Then when I try the next step of "find /i "Power Users"
%SYSTEMROOT%\security\templates\policies\gpt*.*" I get:
File not found - C:\WINNT\security\templates\policies\gpt*.*
*********
I would like to apply the group policy to all the computers in the domain.
All help is greatly appreciated.
Thanks,
Steve
This is a complicated problem that I've searched and tried many things to
help solve to no avail. I would be very happy if someone could give me a
hand.
We have one domain controller. The C partition is 3.99 GB and has 31 MB
free. I am trying to apply a group policy which will cause computers to
automatically patch themselves using a SUS server that I just set up. The
policy does not take effect on the clients. Here are the error messages from
event logs:
1. On the domain controller:
This error message shows up every 5 minutes in the application log:
Source: SceCli
Event ID: 1202
Security Policies are propogated with warning. 0x534: No mapping between
account names and security IDs was done.
In the File Replication Service log I get the following warnings:
Source: NtFrs
Event ID: 13564
The file replication service has detected that the volume holding the FRS
debug logs is running out of disk space. This will not affect replication
unless this volume hosts database, staging, or replica root paths as well.
Source: NtFrs
Event ID: 13516
The file replication service is no longer preventing the computer FOODC from
becoming a domain controller. The system volume has been notified that the
system volume is now ready to be shared as SYSVOL...
2. On a Windows 2003 member server and on XP Professional clients:
Source: Userenv
EventID: 1030
Windows cannot query for the list of Group Policy objects...
Source: Userenv
EventID: 1101
Windows cannot access the the object
OU=TestEnvironment,DC=Foo,DC=local in Active Directory. The access to the
object may be denied. Group Policy processing aborted.
3. On Windows 2000 professional clients:
the policy is not applied correctly and there appear to be no corresponding
error messages in the event viewer.
Things I've tried already:
I followed the instructions of Q324383: Troubleshooting SCECLI 1202 events.
Under the troubleshooting steps, it says to determine the account that is
causing the failure. When I type in "find /i "cannot find"
%SYSTEMROOT%\security\logs\winlogon.log" I get:
--------------- C:\WINNT\SECURITY\LOGS\WINLOGON.LOG
Cannot find Power Users.
<this message is repeated about 54 times>
Then when I try the next step of "find /i "Power Users"
%SYSTEMROOT%\security\templates\policies\gpt*.*" I get:
File not found - C:\WINNT\security\templates\policies\gpt*.*
*********
I would like to apply the group policy to all the computers in the domain.
All help is greatly appreciated.
Thanks,
Steve