J
jwgoerlich
I have two domains in a single forest. The domain controllers are all
Win2000 SP4 computers. I have two DCs per domain. The domain and
forest is running at the Win2000 Native level. All four DCs are on the
same LAN.
One DC is having LDAP/Intersite Messaging problems. Though Win2003 is
not part of the mix, this error appears to be covered under Microsoft
Article 834317, "You receive LDAP bind errors after you run Dcpromo to
install the first Windows Server 2003 computer in a domain"
http://support.microsoft.com/?kbid=834317
I am attempting to set MaxRecieveBuffer back to the default value,
10485760. This is the prescribed workaround. Strangely, I cannot reset
the value on the affected DC (or the other DC in that domain). I can,
however, set the value in the two domain controllers that are working.
The working domain is the root domain and the broken one is a child.
In both cases, I am using the domain Administrator account.
The error I am getting is as follows:
ldap policy: set maxreceivebuffer to 10485760
ldap policy: commit changes
*** Error: ldap_modify of attribute ldapAdminLimits failed with
0x32(50 (Insufficient Rights).
Ldap extended error message is 00002098: SecErr: DSID-03150646,
problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
Win32 error returned is 0x2098(Insufficient access rights to perform
the operation.))
Any suggestions on what is wrong, or what rights are needed? The
rights appear to be neither file nor registry related, as I have tried
this while monitoring with Sysinternal's tools.
Any and all tips appreciated,
J Wolfgang Goerlich
Win2000 SP4 computers. I have two DCs per domain. The domain and
forest is running at the Win2000 Native level. All four DCs are on the
same LAN.
One DC is having LDAP/Intersite Messaging problems. Though Win2003 is
not part of the mix, this error appears to be covered under Microsoft
Article 834317, "You receive LDAP bind errors after you run Dcpromo to
install the first Windows Server 2003 computer in a domain"
http://support.microsoft.com/?kbid=834317
I am attempting to set MaxRecieveBuffer back to the default value,
10485760. This is the prescribed workaround. Strangely, I cannot reset
the value on the affected DC (or the other DC in that domain). I can,
however, set the value in the two domain controllers that are working.
The working domain is the root domain and the broken one is a child.
In both cases, I am using the domain Administrator account.
The error I am getting is as follows:
ldap policy: set maxreceivebuffer to 10485760
ldap policy: commit changes
*** Error: ldap_modify of attribute ldapAdminLimits failed with
0x32(50 (Insufficient Rights).
Ldap extended error message is 00002098: SecErr: DSID-03150646,
problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
Win32 error returned is 0x2098(Insufficient access rights to perform
the operation.))
Any suggestions on what is wrong, or what rights are needed? The
rights appear to be neither file nor registry related, as I have tried
this while monitoring with Sysinternal's tools.
Any and all tips appreciated,
J Wolfgang Goerlich