I have a 20+ Windows XP SP3 workstations all joined to a Windows 2000 domain. 10 at site A, 10 at site B, joined together via an IPSec VPN tunnel with Cisco routers. Site A is where the domain controllers reside, and all machines on that side of the network work fine and do not exhibit any issues.
The problem is at site B, there is no DC on that side of the network so all machines just VPN back to site A.
This is what happens at site B...
I power up the computers, they do not apply group policy, slow log on (DNS issue?), but it joined the domain just fine, my guess is with NetBios. The log on screen comes up like normal, I enter in my username and password and log on into the domain. The log on box disappears but then things just sit at a standstill, at a blank blue screen and it will never load the user's profile unless I unplug the computer's network cable or power down the DCs back at site A.
Machines back at Site A work fine. They log on, apply GPOs, run scripts, and map shares all under and the user has a good desktop within 10 seconds.
This boggles me... I tried removing the roaming profile of the user on the machines at site B (all machines exhibit the same issue) thinking that the issue was a profile/NTUSER.DAT corruption.
But the issue still persists once I log in again. Then I went into Active Directory and created a new user called 'test' with default user groups. I log in with that account and the profile loads fine, still slow, but it does not hang indefinitely at a blue background and not load explorer. I can't even use CTRL ALT DEL. But the issue soon comes up again with that account on the next restart. I then deleted my own AD account and created a new one. I logged in to a computer at site B, it logged me in fine, but like the test account, the relief did not last long and on the next reboot it did the same thing.
Please note that I am using roaming profiles on all computers, and I am not using any OUs. The issue is only at Site B which is IPSec VPN endpoint. The issue starts immediately after login (the normal loading user profile, loading computer settings, etc. splash screen does not come up).
Could it be that GPOs are trying to apply over to site B but the internet download speed is too slow and it's just hanging? is it a DNS issue? I really don't know. I've tried pointing the workstations DNS to the IP address of the Primary DC via hosts file, tcpip settings, and from the routers dhcp server and have no luck.
Any suggestions on where to go from here would be really appreciated. I have not checked the event log on the workstations or server. But everything works fine at Site A, this is what boggles me.
I'm new to PC Review, I apologize if this may be more of a networking/ISP issue. I'll re post if necessary.
The problem is at site B, there is no DC on that side of the network so all machines just VPN back to site A.
This is what happens at site B...
I power up the computers, they do not apply group policy, slow log on (DNS issue?), but it joined the domain just fine, my guess is with NetBios. The log on screen comes up like normal, I enter in my username and password and log on into the domain. The log on box disappears but then things just sit at a standstill, at a blank blue screen and it will never load the user's profile unless I unplug the computer's network cable or power down the DCs back at site A.
Machines back at Site A work fine. They log on, apply GPOs, run scripts, and map shares all under and the user has a good desktop within 10 seconds.
This boggles me... I tried removing the roaming profile of the user on the machines at site B (all machines exhibit the same issue) thinking that the issue was a profile/NTUSER.DAT corruption.
But the issue still persists once I log in again. Then I went into Active Directory and created a new user called 'test' with default user groups. I log in with that account and the profile loads fine, still slow, but it does not hang indefinitely at a blue background and not load explorer. I can't even use CTRL ALT DEL. But the issue soon comes up again with that account on the next restart. I then deleted my own AD account and created a new one. I logged in to a computer at site B, it logged me in fine, but like the test account, the relief did not last long and on the next reboot it did the same thing.
Please note that I am using roaming profiles on all computers, and I am not using any OUs. The issue is only at Site B which is IPSec VPN endpoint. The issue starts immediately after login (the normal loading user profile, loading computer settings, etc. splash screen does not come up).
Could it be that GPOs are trying to apply over to site B but the internet download speed is too slow and it's just hanging? is it a DNS issue? I really don't know. I've tried pointing the workstations DNS to the IP address of the Primary DC via hosts file, tcpip settings, and from the routers dhcp server and have no luck.
Any suggestions on where to go from here would be really appreciated. I have not checked the event log on the workstations or server. But everything works fine at Site A, this is what boggles me.
I'm new to PC Review, I apologize if this may be more of a networking/ISP issue. I'll re post if necessary.