Ron said:
I am trying to add a user who has a three letter last name (lah). I can add
it but when I try to log onto a computer with that account it tells me the
domain is not available. I have other three letter accounts and they work.
When I add another letter to this for example lahc, the account logs in
fine.
It's not likely a (user) name issue, but a DNS problem or authenitication
(which is usually DNS too) problem.
DCDiag and NetDiag (on non-DCs) is your friend.
DNS for AD
1) Dynamic for the zone supporting AD
2) All internal DNS clients NIC\IP properties must specify SOLELY
that internal, dynamic DNS server (set.)
3) DCs and even DNS servers are DNS clients too -- see #2
4) If you have more than one Domain, every DNS server must
be able to resolve ALL domains (either directly or indirectly)
netdiag /fix
....or maybe:
dcdiag /fix
(Win2003 can do this from Support tools):
nltest /dsregdns /server
C-ServerNameGoesHere
http://support.microsoft.com/kb/q260371/
Ensure that DNS zones/domains are fully replicated to all DNS
servers for that (internal) zone/domain.
Also useful may be running DCDiag on each DC, sending the
output to a text file, and searching for FAIL, ERROR, WARN.
Single Label domain zone names are a problem Google:
[ "SINGLE LABEL" domain names DNS 2000 | 2003 microsoft: ]
