Windows 2003 DC logon problem
Posted on 2004-03-22
Here is the scenario:
I used to have 1 domain controller running Windows 2000 in my Windows Network. The web server, running IIS and windows 2000, was using domain users to control the anonymous access to every configured virtual website (i.e. MyDomain\IUSR_site1; MyDomain\IUSR_site1). Everything was working fine until I decided to add a secondary domain controller.
I decided this second domain controller to run Windows 2003. Installing and promoting this new server to domain controller went real smoothly.
The problem started 2 days after promoting the new server. I happen to had to restart the web server to apply new updates from Microsoft. Suddenly all my web sites started to display the “500 Internal Server Error”. The problem was easy to identify: the web server was unable to authenticate the IIS anonymous users in the domain. Errors messages like this were written to the Web Server Event Viewer:
The server was unable to logon the Windows NT account 'MyDomain\IUSR_site1' due to the following error: The specified procedure could not be found. The data is the error code.
After trying different things with no success I decided to restart the Windows 2003 DC and 2 seconds after clicking the restart button everything started working and continued OK when the Window 2003 DC was back online. Now every time I have to restart the Web Server, or even the IIS service, I’m forced to restart the Windows 2003 DC too in order to get the web sites working again.
Any ideas of what might be causing this problem?