Click here to get back home

Login Domain
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.windows.server.security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
Login Domain Softenough 11-25-2005
---> Re: Login Domain Steven L Umbach11-25-2005
Posted by Softenough on November 25, 2005, 7:13 pm
Please log in for more thread options
 I had an NT PDC die and I've replaced it with a Windows 2003 Server DC.

Unfortunately, an Application Server (Windows 2000 - Member Server, not a
DC) was set to the old NT type of Domain name (no suffix) and was rebooted
after the new Domain Controller was installed on the network, before the
Domain to Login to had been changed to the new type of Domain name (with
suffix.) on it (the App. Server.)

Now the Application Server will not login because it can't find the old
NT-type Domain, which is the only Domain name it lets me try... I can't
enter the new Domain name at Login.

How can I get the Application Server to let me tell it the new Domain name
so I can get it logged-in?

Please help...



Posted by Steven L Umbach on November 25, 2005, 10:43 pm
Please log in for more thread options
 Make sure that the server points to only the Windows 2003 domain controller
as it's preferred dns server. Then remove it from the domain to a workgroup
temporarily, reboot, join it to the new domain, reboot again and you should
be good to go though you may want to double check access list permissions
and local group memberships if permissions were given to domain global
groups and they were included in local groups. The link below may be helpful
in how dns must be setup in an Active Directory domain. Also you will find
the support tools netdiag, dcdiag, and gpotool very helpful in checking the
health of your domain computers and domain controllers. --- Steve

http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B291382

>I had an NT PDC die and I've replaced it with a Windows 2003 Server DC.
>
> Unfortunately, an Application Server (Windows 2000 - Member Server, not a
> DC) was set to the old NT type of Domain name (no suffix) and was rebooted
> after the new Domain Controller was installed on the network, before the
> Domain to Login to had been changed to the new type of Domain name (with
> suffix.) on it (the App. Server.)
>
> Now the Application Server will not login because it can't find the old
> NT-type Domain, which is the only Domain name it lets me try... I can't
> enter the new Domain name at Login.
>
> How can I get the Application Server to let me tell it the new Domain name
> so I can get it logged-in?
>
> Please help...
>



Posted by Softenough on November 25, 2005, 10:51 pm
Please log in for more thread options
> Make sure that the server points to only the Windows 2003 domain
> controller as it's preferred dns server. Then remove it from the domain to
> a workgroup temporarily, reboot, join it to the new domain, reboot again
> and you should be good to go though you may want to double check access
> list permissions and local group memberships if permissions were given to
> domain global groups and they were included in local groups. The link
> below may be helpful in how dns must be setup in an Active Directory
> domain. Also you will find the support tools netdiag, dcdiag, and gpotool
> very helpful in checking the health of your domain computers and domain
> controllers. --- Steve
>
> http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B291382
>

Hi Steve, Thanks for your response.

However... I can't login to the Windows 2000 Server to do any of what you
are saying. How can I get logged-in to it to change the Domain?



Posted by Steven L Umbach on November 26, 2005, 12:59 am
Please log in for more thread options
If the server is not a domain controller then you should have an option to
logon to the local computer. If you can not see that choice select more,
advanced, or options[ I can't remember offhand what is the correct name] in
the logon box lower right hand corner to allow you to select the local
computer to logon to. -- Steve


>> Make sure that the server points to only the Windows 2003 domain
>> controller as it's preferred dns server. Then remove it from the domain
>> to a workgroup temporarily, reboot, join it to the new domain, reboot
>> again and you should be good to go though you may want to double check
>> access list permissions and local group memberships if permissions were
>> given to domain global groups and they were included in local groups. The
>> link below may be helpful in how dns must be setup in an Active Directory
>> domain. Also you will find the support tools netdiag, dcdiag, and gpotool
>> very helpful in checking the health of your domain computers and domain
>> controllers. --- Steve
>>
>> http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B291382
>>
>
> Hi Steve, Thanks for your response.
>
> However... I can't login to the Windows 2000 Server to do any of what you
> are saying. How can I get logged-in to it to change the Domain?
>



Similar ThreadsPosted
Can login domain be set to a default? August 31, 2005, 2:09 am
login error in domain March 9, 2007, 2:31 am
Domain user login script execution. June 23, 2006, 3:08 am
Windows 2003 Single Mode - Workstation Login says: DOMAIN (Win 200 January 10, 2006, 8:41 pm
Is It Safe to Deny Administrators Login by Network to Domain Controller? January 13, 2007, 3:00 am
Login Script Question - Failed Login Count, Location, and Method October 5, 2005, 6:28 pm
Smart Card Login + Certificate Login to AD -> Lost smart card December 15, 2005, 10:03 pm
login October 19, 2007, 4:46 pm
Login Auditing June 17, 2005, 11:05 am
Login Interactively June 23, 2005, 8:20 am

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap