Solved

Windows 2003 AD and NT 4 domains on same network, can't log on to NT 4 Domain

Posted on 2004-09-01
4
159 Views
Last Modified: 2010-03-18
Until this summer we have been running an NT4 domain on our campus.  We added (did not migrate) a Win2k3 Domain this summer and are partially through moving accounts to the new domain.  We have established trusts between the two domains (for access to each side during the move) and haven't had any problems up to today.  This morning we began receiving errors that machines couldn't log on to the NT4 domain because it wasn't avaliable.  We haven't changed anything on the network or servers since yesterday.

We can log on locally to the NT4 DCs, but when we try to log on from a client it won't authenticate.  We've restarted servers, the NETLOGON service specifically, and also tried promoting one of our BDCs to see if there was an issue with our PDC.  No matter what we try we can't log in to the NT4 domain any longer.  

Anyone have any ideas to check? I've double checked WINS and the 1b and 1c entries are resolving correctly. Any other paths to troubleshoot?
0
Comment
Question by:Northwestu
4 Comments
 
LVL 6

Expert Comment

by:chumplet
ID: 11956039
Which domain is DHCP (if you're using that) coming from?  Can any of those boxes ping the PDC and BDC from the NT4 domain?  It sounds like clients are using DNS and/or DHCP from the new domain and thus aren't "aware" of the old domain controllers, but that's just a hunch.

Let me know what you find out!
0
 

Author Comment

by:Northwestu
ID: 11964819
To answer your question, yes, DNS and DHCP are being served from the new domain.  However we also have WINS setup with information for both domains being served and the WINS addresses are being handed out by the new DHCP.

We fixed the problem through a combination of steps.  First, promoted a new PDC for the NT4 side. Second, we recreated the two-way trusts between the domains. Finally, we restared DNS and WINS (which we had tried before all of this).  Don't exactly know why we had to go through this specific combination, but it cleared up our issue.
0
 

Accepted Solution

by:
modulo earned 0 total points
ID: 13181263
PAQed with points refunded (500)

modulo
Community Support Moderator
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
computers cannot communicate with each other 8 88
Exchange 2010 smtp and senderbase ratings 3 64
Strange routing problem between subnets 2 100
forward schedule of change 1 65
FIPS stands for the Federal Information Processing Standardisation and FIPS 140-2 is a collection of standards that are generically associated with hardware and software cryptography. In most cases, people can refer to this as the method of encrypti…
Are you one of those front-line IT Service Desk staff fielding calls, replying to emails, all-the-while working to resolve end-user technological nightmares? I am! That's why I have put together this brief overview of tools and techniques I use in o…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question