+ Post New Thread
Page 2 of 4 FirstFirst 1234 LastLast
Results 16 to 30 of 47
Windows Thread, Nightmare in a network in Technical; My previous network was an RM network.... I've never had to use sysprep before! If anyone has a guide for ...
  1. #16


    Join Date
    May 2009
    Location
    UK
    Posts
    2,105
    Thank Post
    256
    Thanked 450 Times in 251 Posts
    Rep Power
    141
    My previous network was an RM network.... I've never had to use sysprep before! If anyone has a guide for Sysprep beyond the microsoft KB article which is conjested, and not overly explanatory I'd appreciate it. I have 3 new laptops that arrived last week I can do a FULL new setup on the way I like it

  2. #17

    sparkeh's Avatar
    Join Date
    May 2007
    Posts
    6,730
    Thank Post
    1,272
    Thanked 1,644 Times in 1,100 Posts
    Blog Entries
    22
    Rep Power
    505
    Quote Originally Posted by ahuxham View Post
    Anywho, Duplicate SID's will do this. I do believe sysinternals made a program called "NewSID" which is discontinued (as Microsoft now own the company), however I'm sure someone somewhere has the software.
    Just for info, NewSid was retired when Mark Russinovich (creator) decided that duplicate SIDs do not cause any issues on a network and the software was in effect pointless.

    Read his blog post regarding this here

  3. #18
    MGSTech's Avatar
    Join Date
    Jul 2007
    Posts
    362
    Thank Post
    13
    Thanked 95 Times in 54 Posts
    Rep Power
    39
    Try here:-
    Deploying Windows XP

    Assumes XP OS

    Not sure I agree on the duplicate SID's not affecting PC's in 20 years consulting I've had a few "odd" issues resolved by sysprepping workstations.....

  4. #19

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,799
    Thank Post
    272
    Thanked 1,134 Times in 1,030 Posts
    Rep Power
    349
    The time isnt different on the DC's is it? i know this can cause problems with replications, just an idea before digging into things to deep.

  5. #20


    Join Date
    May 2009
    Location
    UK
    Posts
    2,105
    Thank Post
    256
    Thanked 450 Times in 251 Posts
    Rep Power
    141
    Quote Originally Posted by glennda View Post
    The time isnt different on the DC's is it? i know this can cause problems with replications, just an idea before digging into things to deep.
    Nope, but nice try! I've had that once before...

  6. #21

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,799
    Thank Post
    272
    Thanked 1,134 Times in 1,030 Posts
    Rep Power
    349
    Quote Originally Posted by neilfisher View Post
    Nope, but nice try! I've had that once before...
    yeah i used to have it at my old place, on a really old viglen dc that was running at 100% 24/7 and didn't have enough time to update the time!!

  7. #22


    Join Date
    May 2009
    Location
    UK
    Posts
    2,105
    Thank Post
    256
    Thanked 450 Times in 251 Posts
    Rep Power
    141
    Quote Originally Posted by MGSTech View Post
    Try here:-
    Deploying Windows XP

    Assumes XP OS

    Not sure I agree on the duplicate SID's not affecting PC's in 20 years consulting I've had a few "odd" issues resolved by sysprepping workstations.....
    This page links to Microsoft pages that no longer exist...

  8. #23

    mattx's Avatar
    Join Date
    Jan 2007
    Posts
    9,240
    Thank Post
    1,058
    Thanked 1,068 Times in 625 Posts
    Rep Power
    740
    It won't do any harm trying the newsid - it's on the Admin Bar below btw if you can't find a link. I still use it when Ghosting and using forget to sysprep - old habits die hard as they say....

  9. #24
    ahuxham's Avatar
    Join Date
    Apr 2008
    Posts
    1,122
    Thank Post
    76
    Thanked 138 Times in 109 Posts
    Rep Power
    30
    Quote Originally Posted by sparkeh View Post
    Just for info, NewSid was retired when Mark Russinovich (creator) decided that duplicate SIDs do not cause any issues on a network and the software was in effect pointless.

    Read his blog post regarding this here
    Perhaps, than why all the fuss coming from Microsoft regarding the practice? Why does Sysprep ensure this is done?

    I find it hard to believe that software was just created to resolve an issue that doesn't exist, wouldn't you research the issue before writing the software? I can only assume this was done, and they wrote the software to combat this.

    Alot of sysinternals stuff has been "cleared up" by Microsoft. I remember watching a speech from the last DEF CON Conference how and why these tools were bought up

  10. #25

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    9,262
    Thank Post
    242
    Thanked 1,568 Times in 1,250 Posts
    Rep Power
    340
    I still Sysprep machines, plus it's great when deploying an image. I always specify the computer name manually, but then it joins the domain automatically, then restarts ready to use. It saves a lot of time!

  11. #26

    sparkeh's Avatar
    Join Date
    May 2007
    Posts
    6,730
    Thank Post
    1,272
    Thanked 1,644 Times in 1,100 Posts
    Blog Entries
    22
    Rep Power
    505
    Quote Originally Posted by Michael View Post
    I still Sysprep machines, plus it's great when deploying an image. I always specify the computer name manually, but then it joins the domain automatically, then restarts ready to use. It saves a lot of time!
    Oh you positively *have* to use sysprep when imaging as it does a hell of a lot more than just change SIDs. Don't sysprep and you will feel the pain.

    The retirement of NewSid is down to the fact that after investigation, Mark Russinovich found that there was no case where two machine machines having the same SID caused any issues.

  12. #27

    sparkeh's Avatar
    Join Date
    May 2007
    Posts
    6,730
    Thank Post
    1,272
    Thanked 1,644 Times in 1,100 Posts
    Blog Entries
    22
    Rep Power
    505
    Quote Originally Posted by ahuxham View Post
    Perhaps, than why all the fuss coming from Microsoft regarding the practice? Why does Sysprep ensure this is done?

    I find it hard to believe that software was just created to resolve an issue that doesn't exist, wouldn't you research the issue before writing the software? I can only assume this was done, and they wrote the software to combat this.

    Alot of sysinternals stuff has been "cleared up" by Microsoft. I remember watching a speech from the last DEF CON Conference how and why these tools were bought up
    Read the blog, NewSid was written purely on the faith that it was neccessary for two machines on a network to have different SIDs. After investigation it was found not to be the case.

    If you read all the comments under the blog you will see one by one peoples concerns about different scenarios are addressed .

  13. #28

    mattx's Avatar
    Join Date
    Jan 2007
    Posts
    9,240
    Thank Post
    1,058
    Thanked 1,068 Times in 625 Posts
    Rep Power
    740
    Just wondering what the outcome was of the server re-boots......!!

  14. #29

    Join Date
    Aug 2005
    Location
    London
    Posts
    3,154
    Thank Post
    114
    Thanked 527 Times in 450 Posts
    Blog Entries
    2
    Rep Power
    123
    Quote Originally Posted by ahuxham View Post
    It's your post, no such thing as off topic

    Anywho, Duplicate SID's will do this. I do believe sysinternals made a program called "NewSID" which is discontinued (as Microsoft now own the company), however I'm sure someone somewhere has the software.

    Just run it on your machines and see if this alleviates the problems you are experiencing, saves you having to sysprep the machines, less work = better in my opinion.
    I'd be very surprised if it's anything at all to do with the SID.

    The reason that NewSID is being (has been?) discontinued is because it's not necessary - Mark Russinovich (who write NewSID) has a blog post about this - Mark's Blog : The Machine SID Duplication Myth

    Given that replication isn't working properly between the 2 DCs I think you need to establish which of the DCs are holding which FSMO roles. Move them all to the machine you want to be "correct" and once that's done wait an hour or so for things to settle down (not needed if the FSMO roles are all on your main DC)

    Once you've got that sorted, run dcpromo on the other server; this will stop it being a DC and leave the first server as the only DC. That may fix all the problems - if machines are trying to authenticate against DC2 but for some reason it's not being found or its database is not in sync then moving to a single DC will fix the problems.

    Check that your one DC points to itself for DNS - the network card properties MUST NOT refer to any DNS other than itself (you resolve external names by setting the DNS service itself to either use root hints or to forward to your ISP DNS). Do another dcdiag - you may well still see frs errors but check the times - they should be before you wiped the other DC settings (nothing to replicate in a single DC setup!)

    Once you're confident that your one DC is running OK you can promote the other one. First of all, make sure that it is pointing to your other DC for DNS; again, there must be no reference to external DNS Run dcpromo and follow the prompts to make it a DC in an existing domain.

    Finally, check the DHCP settings - again, they must not give out any DNS other than that of your main DC. (It's a really common mistake to have clients getting 2 DNS addresses, one is the internal DNS, the second is external. It looks like a good idea but IT'S WRONG!!) (apologies for shouting; it's just such a common mistake!!)

  15. Thanks to srochford from:

    BJG (26th January 2010)

  16. #30
    wagnerk's Avatar
    Join Date
    Jun 2007
    Location
    Northants
    Posts
    803
    Thank Post
    63
    Thanked 165 Times in 134 Posts
    Rep Power
    46
    Just double checking, have you checked your switches (assuming that they are managed ones) to see if there are any excessive broadcasts or loops in your network. Also have you made sure that there aren't any rouge DHCP/DNS servers on your network? Eg external print servers, something along the lines of these that are mis-configured.

    -Ken

SHARE:
+ Post New Thread
Page 2 of 4 FirstFirst 1234 LastLast

Similar Threads

  1. AOL nightmare
    By suesmate in forum How do you do....it?
    Replies: 3
    Last Post: 10th July 2007, 10:44 AM
  2. proxy nightmare
    By alonebfg in forum Wireless Networks
    Replies: 15
    Last Post: 20th November 2006, 05:48 PM
  3. New server nightmare
    By dezt in forum Wireless Networks
    Replies: 10
    Last Post: 16th November 2006, 07:21 PM
  4. Nightmare
    By mrforgetful in forum ICT KS3 SATS Tests
    Replies: 6
    Last Post: 16th May 2006, 02:27 PM
  5. Nightmare Scenario
    By kingswood in forum Wireless Networks
    Replies: 4
    Last Post: 15th September 2005, 07:27 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •