Problem Accessing File server

-

hi,
cannot access shared folder our server, prompts server not accessible , target accoount name incorrect.

file server domain controller. i've checked event logs , find these error logs:
    source: userenv
    event id:1053
    descriprion: windows cannot determine user or comp. name. group pol. aborted.

    source: dns
    event id: 4000
    description: dns server unable open active directory.

tried open group policy , got error: domain controller group policy operation not available.


kindly please.. thanks

hi,

as can access shared folders via ip, kerberos related issue.

please follow steps trouble shoot issue.

step 1: check time skew between domain controllers, see knowledge base article http://support.microsoft.com/?id=257187

setp 2: check domain controller registry confirm if crashonauditfail [reg_dword] = 0x2
if crashonauditfail = 0x2 perform following steps
a. type regedit start, , click run.
b. expand hkey_local_machine\system\currentcontrolset\control\lsa
c. right-click crashonauditfail, select modify
d. under value data:, select 2 , change value 0
e. reboot domain controller
verify useraccountcontrol , kerberos trust
1) ensure kerberos key distribution center (kdc) service started.
2) ensure trust computer delegation check box selected on general tab of domain controller properties dialog box in active directory users , computers.
3) using adsiedit or ldp (both included in windows 2000 support tools), confirm useraccountcontrol attribute set 532480. check this, perform following steps
a. type adsiedit.msc start, , click run.
b. expand domain nc container.
c. expand object below, i.e. dc=contoso, dc=com
d. expand ou=domain controllers
e. right-click cn=<domain_controller>, , select properties
f. under select property view, select useraccountcontrol , verify value 532480
note:check value each failing dc account on local copy of ad every partner dc. example if dc-a , dc-b failing replication, check above on dc-a’s copy of ad , dc-b’s copy of ad.

step 3: modify kdc related parameters
1. if problem exists between domain controllers different domains, add following registry value upstream replication partner
hkey_local_machine\system\currentcontrolset\services\ntds\parameters
value name:  replicator allow spn fallback
value type:  reg_dword
value data:  1
2. run following command upstream partner:
c:\>repadmin /add cn=configuration,dc=<domain controller>,dc=<com> <root dc name> <fully qualified name of child domain controller>
3. remove replicator allow spn fallback registry value after testing replication.



Windows Server  >  Windows Server General Forum



Comments

Post a Comment

Popular posts from this blog

Group Policy Event ID 1058 Error Code 1326 (The user name or password is incorrect)

-
i seeing odd error on 1 of our domain controllers. have dealt event id 1058 errors whereby policy (or policies) not replicating, receiving error along error code 1326 on server, , apparently happening default domain policy: log name:      system source:        microsoft-windows-grouppolicy date:          8/10/2015 3:09:54 pm event id:      1058 task category: none level:         error keywords:      user:          s-1-5-21-1484152634-2550175353-3916092219-3287 computer:      <dc name>.<domainname> description: processing of group policy failed. windows attempted read file http://schemas.microsoft.com/win/2004/08/events/event ">   <system>     <provi...
Read more

Suspicious event log Event ID: 4905

-
hi thr, could please me understand causing such event logs generate ? as  i understand, vssvc.exe pertains volume shadow copy used backup purpose.  we have third party application used taking backup of servers. the event longs generated following messages: 1) attempt made unregister security event source. 2) attempt made register security event source. these events not regular generated on random days. standard fields: date:               2013/10/19 time:               02:32:19 importance:         critical rule name:          security event monitored machine:  <domain controller> log format:         windows log name:           security event id:           4905 in work hours:      yes dynamic fields: internal timestamp: 2013/10/19 ...
Read more

DCOM received error "2147746132" from...

-
hi everybody, i have dc (my windows essentials 2012 server) , windows 2012 server in network.  the windows server 2012 inside domain. on server, got "non stopping" error says in event logs : ===> dcom received error "2147746132" fromd computer xxxx(my dc computer) while server trying activation : {6df8cb71-153b-4c66-8fc4-e59301b8011b} it never stops, got 11000+ new events :s i found : http://support.microsoft.com/kb/971153/fr i'm not sure should ? does got idea ? matthieu. hi, please try solution mentioned in below link: http://www.eventid.net/display-eventid-10006-source-dcom-eventno-272-phase-1.htm regards, cicely Windows Server  >  Windows Server 2012 General ...
Read more