Advertisement

04.25.2008 at 09:07AM PDT, ID: 23353985
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
8.2

Workstations losing connection to all services on SBS server after reboot

Asked by sbaylis in Active Directory, SBS Small Business Server

Tags: , ,

Server Specs:

Domain Controller is Small Business Server 2003 SP2, updated with all current hotfixes.
dual 3.2GHz, 2.0 GB RAM, plenty of available disk on all logical disks.

Active Directory Specs:
~20 users
~15 workstations
no additional member servers or domain controllers

Symptoms:

This morning users were not able to access any server resources and were receiving "Access is denied" after attempting to access drives mapped from the SBS.   Alternatively, some users get a username/password request dialog, however entering proper credentials doesn't allow access.  Logon script processing never happens during logon.  Users cannot access any shared drives, network printers, or email -- i.e. any services located on the SBS.

Event Viewer on Server has a LOT of 538, 540, and 576 logging in Security Logs every second.  These information events follow:

Event Type:      Success Audit
Event Source:      Security
Event Category:      Logon/Logoff
Event ID:      538
Date:            4/25/2008
Time:            7:14:11 AM
User:            NT AUTHORITY\SYSTEM
Computer:      server
Description:
User Logoff:
       User Name:      server$
       Domain:            domain
       Logon ID:            (0x0,0x2583CAC6)
       Logon Type:      3


Event Type:      Success Audit
Event Source:      Security
Event Category:      Logon/Logoff
Event ID:      576
Date:            4/25/2008
Time:            7:14:11 AM
User:            NT AUTHORITY\SYSTEM
Computer:      server
Description:
Special privileges assigned to new logon:
       User Name:      server$
       Domain:            domain
       Logon ID:            (0x0,0x2583CB83)
       Privileges:      SeSecurityPrivilege
                  SeBackupPrivilege
                  SeRestorePrivilege
                  SeTakeOwnershipPrivilege
                  SeDebugPrivilege
                  SeSystemEnvironmentPrivilege
                  SeLoadDriverPrivilege
                  SeImpersonatePrivilege
                  SeEnableDelegationPrivilege



Event Type:      Success Audit
Event Source:      Security
Event Category:      Logon/Logoff
Event ID:      540
Date:            4/24/2008
Time:            4:14:11 PM
User:            NT AUTHORITY\SYSTEM
Computer:      server
Description:
Successful Network Logon:
       User Name:  server$
       Domain:            domain
       Logon ID:            (0x0,0x2583CB83)
       Logon Type:      3
       Logon Process:      Kerberos
       Authentication Package:      Kerberos
       Workstation Name:      
       Logon GUID:      {24c78def-3419-0054-4395-9a1f4ede0cd7}
       Caller User Name:      -
       Caller Domain:      -
       Caller Logon ID:      -
       Caller Process ID: -
       Transited Services: -
       Source Network Address:      192.168.1.2
       Source Port:      49878






Workstations report Application Error Event 1058 from Source Userenv:

Event Type:      Error
Event Source:      Userenv
Event Category:      None
Event ID:      1058
Date:            4/25/2008
Time:            7:09:10 AM
User:            user\domain
Computer:      computername
Description:
Windows cannot access the file gpt.ini for GPO cn={E08C8491-B61A-4987-B658-683D99CF8F44},cn=policies,cn=system,DC=domain,DC=local. The file must be present at the location <\\domain.local\SysVol\domain.local\Policies\{E08C8491-B61A-4987-B658-683D99CF8F44}\gpt.ini>. (Access is denied. ). Group Policy processing aborted.



Troubleshooting steps taken:
-Restarting Server and workstations:  unsuccessful.
-Resetting computer account in AD and rejoining domain: limited success.  The users can then access services, however after an additional workstation restart, the same symptoms as above occur.
-Complete removal of workstation from domain.  Rename workstation and rejoin domain: limited success with same result as resetting account.
-dcdiag passes all tests

This seems to be some issue with AD and user/computer credentials.  Not sure where to go from here.
Start Free Trial
 
Keywords: Workstations losing connection to all se…
Title
1 GPO Not taking affect
2 SBS ConnectComputer error
3 GPOs Dont work in SBS 2003
4 SBS Logon Script
5 SBS 2003 Logon/Security Errors a…
6 SBS 2003 R2 - Group Policy Failing
 
Loading Advertisement...
 
[+][-]04.25.2008 at 11:41AM PDT, ID: 21442196

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]04.25.2008 at 01:14PM PDT, ID: 21442877

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]04.25.2008 at 03:23PM PDT, ID: 21443609

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]04.27.2008 at 09:18AM PDT, ID: 21449543

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]04.28.2008 at 07:36AM PDT, ID: 21454374

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Active Directory, SBS Small Business Server
Tags: Microsoft, Server, Small Business Server 2003
Sign Up Now!
Solution Provided By: sbaylis
Participating Experts: 1
Solution Grade: A
 
 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628