Users cant login to windows...

G

Guest

I have a domain controller that I cannot log into locally or get
authenticated from a workstation. I wanted to format the machine and
reinstall windows and run dcpromo on it agian, but I cant remove it from the
domain because I cant login. I had another DC I wanted to demote so I put the
good DC and the bad DC on a switch in our lab to try and force replication of
the sam database (the bad DC was accros a WAN link). Once I put the good DC
on the switch I found out it couldn't log into the domain either. Once I
moved it back to the network it can login and authintcate users again. So now
I am thinking it is not a server problem but a Domain replication issue. Has
anyone had this problem or know an article about this? I don't see any errors
in the event logs that jump out. In the security log it doesn't even show the
bad username password entries.
 
T

Tomasz Onyszko [MVP]

Ben said:
I have a domain controller that I cannot log into locally or get
authenticated from a workstation. I wanted to format the machine and
reinstall windows and run dcpromo on it agian, but I cant remove it from the
domain because I cant login. I had another DC I wanted to demote so I put the
good DC and the bad DC on a switch in our lab to try and force replication of
the sam database (the bad DC was accros a WAN link). Once I put the good DC
on the switch I found out it couldn't log into the domain either. Once I
moved it back to the network it can login and authintcate users again. So now
I am thinking it is not a server problem but a Domain replication issue. Has
anyone had this problem or know an article about this? I don't see any errors
in the event logs that jump out. In the security log it doesn't even show the
bad username password entries.
Click to expand...

I think this can be a DNS issue - are any of this DCs holding a DNS
server for a domain
 
G

Guest

Tomasz Onyszko said:
I think this can be a DNS issue - are any of this DCs holding a DNS
server for a domain
Click to expand...
The two servers in question are not running DNS. Why would it prevent me
from logging in locally? should all domain controllers run DNS? thanks

Ben
 
T

Tomasz Onyszko [MVP]

Ben said:
The two servers in question are not running DNS. Why would it prevent me
from logging in locally? should all domain controllers run DNS? thanks
Click to expand...
DNS lays under whole AD infrastrucure - without DNS AD can't find any
server which are playing as LDAP , KDC, GC etc. So if any of this server
is not an DNS server, and only his two servers are on the network, even
they are DCs they can not locate domain.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

error raise domain function from win2000 to win2003 0
Slow Logons and Can't open files 0
windows login to local domain controller 2
DC Fails - does not default to next DC - Users cannot login 1
demote a domain controller 3
How to check bad password login in Windows 2003 domain controller? 1
New domain controller not replicating 5
Isolated member server won't authenicate with Isolated DC 3

Top