D
Dave Harris
Windows 2K Server SP4 as Domain Controller (only DC on the Network),
Windows 2000 and Windows XP clients. Approx 60 Laptops and Desktops
on our network. Only using GPOs for running a startup .bat file for
mapped drives.
I have done the following :
a) Nslookup tests successful.
b) Checked Permissions on netlogon share - successful
c) Stopped IPSec Service on Domain Controller.
d) Taken machines off the domain and put them back on - this seems to
sort it out for a bit but then problem returns.
e) netdiag and dcdiag all ok apart from an unsuccessful SPN
registration on the FQDN of the domain controller.
dcdiag /v result :
Starting test: MachineAccount
* SPN found :LDAP/bhdc.big-hand.co.uk/big-hand.co.uk
* SPN found :LDAP/bhdc.big-hand.co.uk
* SPN found :LDAP/BHDC
* SPN found :LDAP/bhdc.big-hand.co.uk/BIGHAND
* SPN found
:LDAP/24a91a51-7e64-4514-8a91-18eae7fbd615._msdcs.big-hand.co.uk
* SPN found
:E3514235-4B06-11D1-AB04-00C04FC2DCD2/24a91a51-7e64-4514-8a91-18eae7fbd615/big-hand.co.uk
* SPN found :HOST/bhdc.big-hand.co.uk/big-hand.co.uk
* SPN found :HOST/bhdc.big-hand.co.uk
* SPN found :HOST/BHDC
* SPN found :HOST/bhdc.big-hand.co.uk/BIGHAND
* SPN found :GC/bhdc.big-hand.co.uk/big-hand.co.uk
......................... BHDC passed test MachineAccount
f) Licensing Service telling me I am out of licences.
g) No firewalls on client machines
h) WINS and DNS look fine.
i) Occasionally, it looks as though our Exchange Server loses its
connection to our DC as well. During this time, obviously, all
Outlook clients go offline.
j) Users always get the drive that is specified in their AD profile
but not mapped drives in very simple .bat files
h) Seems that all GPOs across all the OUs seem to fail at some point
and not linked to any particular GPO or OU.
Does anyone think that installing a 2nd DC would alleviate problem?
(The current DC is also a File Server) If so, what would I expect to
see in Performance Monitor if the server was "too busy" to handle
login requests?
Should I replace the NIC?
Any help would be VERY appreciated!
Dave
Windows 2000 and Windows XP clients. Approx 60 Laptops and Desktops
on our network. Only using GPOs for running a startup .bat file for
mapped drives.
I have done the following :
a) Nslookup tests successful.
b) Checked Permissions on netlogon share - successful
c) Stopped IPSec Service on Domain Controller.
d) Taken machines off the domain and put them back on - this seems to
sort it out for a bit but then problem returns.
e) netdiag and dcdiag all ok apart from an unsuccessful SPN
registration on the FQDN of the domain controller.
dcdiag /v result :
Starting test: MachineAccount
* SPN found :LDAP/bhdc.big-hand.co.uk/big-hand.co.uk
* SPN found :LDAP/bhdc.big-hand.co.uk
* SPN found :LDAP/BHDC
* SPN found :LDAP/bhdc.big-hand.co.uk/BIGHAND
* SPN found
:LDAP/24a91a51-7e64-4514-8a91-18eae7fbd615._msdcs.big-hand.co.uk
* SPN found
:E3514235-4B06-11D1-AB04-00C04FC2DCD2/24a91a51-7e64-4514-8a91-18eae7fbd615/big-hand.co.uk
* SPN found :HOST/bhdc.big-hand.co.uk/big-hand.co.uk
* SPN found :HOST/bhdc.big-hand.co.uk
* SPN found :HOST/BHDC
* SPN found :HOST/bhdc.big-hand.co.uk/BIGHAND
* SPN found :GC/bhdc.big-hand.co.uk/big-hand.co.uk
......................... BHDC passed test MachineAccount
f) Licensing Service telling me I am out of licences.
g) No firewalls on client machines
h) WINS and DNS look fine.
i) Occasionally, it looks as though our Exchange Server loses its
connection to our DC as well. During this time, obviously, all
Outlook clients go offline.
j) Users always get the drive that is specified in their AD profile
but not mapped drives in very simple .bat files
h) Seems that all GPOs across all the OUs seem to fail at some point
and not linked to any particular GPO or OU.
Does anyone think that installing a 2nd DC would alleviate problem?
(The current DC is also a File Server) If so, what would I expect to
see in Performance Monitor if the server was "too busy" to handle
login requests?
Should I replace the NIC?
Any help would be VERY appreciated!
Dave