+ Post New Thread
Results 1 to 5 of 5
Windows Server 2000/2003 Thread, Problem with clients login in the Domain in Technical; I have a problem when i try to log on from my pc to AD in the domain. When i ...
  1. #1

    Join Date
    Dec 2010
    Posts
    4
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Problem with clients login in the Domain

    I have a problem when i try to log on from my pc to AD in the domain.
    When i boot the pc, and enter username, password and domain to which i want to log on, i need to wait 3-4 minutes, at Applying your personal settings... pop
    up. After that i can log on, but when i check logs on my pc, at Application logs i fount thise two logs:

    -----> LOG1
    Event Type: Error
    Event Source: Userenv
    Event Category: None
    Event ID: 1030
    Date: 1/27/2011
    Time: 10:05:29 AM
    User: DOMAIN\user1
    Computer: user1pc
    Description:
    Windows cannot query for the list of Group Policy objects.
    A message that describes the reason for this was previously logged by the policy engine.


    For more information, see Help and Support Center at Events and Errors Message Center: Basic Search.

    ----> LOG2
    Event Type: Error
    Event Source: Userenv
    Event Category: None
    Event ID: 1006
    Date: 1/27/2011
    Time: 10:05:29 AM
    User: DOMAIN\user1
    Computer: user1pc
    Description:
    Windows cannot bind to domain.com domain. (Local Error).
    Group Policy processing aborted.

    For more information,
    see Help and Support Center at Events and Errors Message Center: Basic Search.

    I log off and log on back several times, and its the same situation, 3-4 minutes waiting at log on, and always this two logs.


    The DFS service is started at DC.
    -------------
    About sysvol:
    -------------
    I have the following path: c:\Windows\sysvol\sysvol\domain.com\

    For the File permisions:
    ********************
    C:\Windows\sysvol\

    Folder is not shared.

    Authenticated users and Server Operators have Read&Execute
    Administrators, Creator Owners and System have Full Control

    In the column Inherited From: they all have <not inherited>

    In the column Apply To:
    Creator Owner: Subfolders and Files only
    Others: This foler, subfolders and files

    Check box: Allow inheritable permissions from the parrent to propagate... is Unchecked
    Check box: Replace permmision enttries on all child objects... is unchecked

    ************************
    C:\Windows\sysvol\sysvol\

    Folder is shared.

    Administrators: Full control
    Authenticated users: Read & Execute, List Folder Contents, Read
    Creator Owner: Full control
    SYSTEM: Full control
    Server Operators: Read and Execute
    Everyone: Read & Execute
    Domain users: Read & Execute



    In the column Inherited from for Domain users and Everyone is <not inherited>
    For the rest is "inherited from C:\\Windows\sysvol\"

    In the column Apply to
    For Creator Owner: Subfolders and files only
    For Everyone: This folder only
    For all the rest: This folder, subfolders and files

    Check box: Allow inheritable permissions from the parrent to propagate... is Unchecked for all
    Check box: Replace permmision enttries on all child objects... is unchecked
    *********************************


    Any ideas, solutions?

  2. #2

    Join Date
    Nov 2009
    Posts
    54
    Thank Post
    3
    Thanked 12 Times in 12 Posts
    Rep Power
    12
    How many computers have this issue? Do any logon with out any problems?
    You could try a gpupdate /force from the command line see if gives any new errors.
    You could also try resetting the computer account on the domain. From a server you can type:
    netdom reset [computername /domain domain.net /UserO [local user account on PC] /PasswordO *
    If that doesn't work, check the event log on both the local PC and on the server
    If it still doesn't work after that, I might taking it off the domain and readding it just as a test to see if that has any affect on it.

  3. #3

    Join Date
    Dec 2010
    Posts
    4
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    When i tried gpupdate/force, it generates the same two logs.

    I reset computer account throught Active Directory users and computers, then add the computer name to my user, and again the same problem.

    ???

  4. #4

    Join Date
    Dec 2009
    Posts
    592
    Thank Post
    8
    Thanked 36 Times in 34 Posts
    Rep Power
    16
    login locally check IP addressing , DNS etc

    also try pinging the workstation via the server

  5. #5

    Join Date
    Dec 2010
    Posts
    4
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    I solve the problem

    Thax for the advices.

    I log to DC and try to ping my pc, but i coulnd't, Requiest time out.

    Then i remember that i have Firewall client and Comodo Firewall on my local pc.
    I uninstall Comodo firewall, restart the pc, and now everything is ok.
    It log on for less than 15-20 sec.

    Thax a lot for the advices.

SHARE:
+ Post New Thread

Similar Threads

  1. Why can't our non-domain clients connect to one (out of three) terminal servers!???
    By jrubinstein in forum Thin Client and Virtual Machines
    Replies: 2
    Last Post: 22nd January 2011, 03:53 PM
  2. Windows 7 clients on Server 2003 domain
    By Earthling in forum Windows 7
    Replies: 3
    Last Post: 9th September 2010, 01:00 AM
  3. Replies: 1
    Last Post: 30th November 2009, 06:32 PM
  4. Replies: 13
    Last Post: 18th October 2009, 11:29 AM
  5. Locking down OSX clients in AD domain
    By u8dmtm in forum Mac
    Replies: 9
    Last Post: 18th March 2007, 05:04 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •