Solved

Cannot add computer to Windows 2000 domain - IpSec and NetLogon services do not start

Posted on 2004-09-09
9
1,212 Views
Last Modified: 2008-01-09
I have a Windows XP Pro computer that was on a Windows 2000 domain yesterday (one of about 50 in my domain) that refuses to access the internet or the domain. Trying to troubleshoot, I've managed to drop it from the domain down to a local workgroup and sever any ties at all to the network. The IpSec and NetLogon services refuse to start with event log errors like this:

Event Source:      Service Control Manager
Event Category:      None
Event ID:      7023
User:            N/A
Description:
The IPSEC Services service terminated with the following error:
The requested service provider could not be loaded or initialized.

Event Source:      NETLOGON
Event Category:      None
Event ID:      5737
User:            N/A
Description:
The system returned the following unexpected error code:
The requested service provider could not be loaded or initialized.

Before I stupidly dropped it off the domain, I could still access network files if I provided a logon and password. Now when I try to add it back to the domain, I get messages that the machine cannot connect to a dc, and that tcp/ip is not installed. I figure that is due to the services not running, but here is the error message if you want it:

An error occurred when DNS was queried for the service location (SRV) resource record used to locate a domain controller for domain <DOMAIN>.

The error was: "TCP/IP network protocol not installed."
(error code 0x0000267B DNS_ERROR_NO_TCPIP)

The query was for the SRV record for _ldap._tcp.dc._msdcs.<DOMAIN>

I get error code 10106 when I try to manually start the either service. I'm at a loss. I'm tired, I have 50 other machines that do just fine on this network, and I would just chuck it all and wipe the machine, but it's the only box in my domain that has certain software on it, and I'd like to save it if I can. Sorry about the length, but I'm a too much information rather than too little kind of guy.
0
Comment
Question by:timbercoyote
9 Comments
 
LVL 82

Expert Comment

by:oBdA
Comment Utility
Seems like your TCP/IP stack has gone overboard, and without that, you obviously can't start any service that relies on it.
How to remove and reinstall TCP/IP for Windows 2000
http://support.microsoft.com/?kbid=285034
0
 

Author Comment

by:timbercoyote
Comment Utility
Thanks oBdA, I had wanted to try to re-install TCP/IP, but apparently you can't do that in Windows XP. I did find the Microsoft article on resetting TCP/IP for Windows XP, but no solution there. I have run standard diagnostics and everything checks out, other than the services failing to start... including pinging the gateway, dns, a different workstation on the domain, the computer names for all of the above, and even pinging from the network to the affected workstation works fine. I tried DHCP, static addressing (default), a new static address, deleting and readding the computer from Active Directory, verifying and changing the dns pointers on the server, and asking it to please just be nice to me. Nothing. I'm working through troubleshooting trying to find anything else wrong, but nothing yet. Again, I can't wipe the box unless I want a serious hassle re-installing software I'm not even sure I know where the discs are. Thanks for any and all help.
0
 

Expert Comment

by:lancecopeland
Comment Utility
Having the same problem.  Mine occurred after SP2.  I know I know, learn from your mistakes right?  Anyway.....
oBdA was right.  But remove and reinstall did noting for me plus anyway you can't uninstall TCP for XP you can only "reset" it.  Still doesn't fix it.  He led me in the right direction by making me check my TCP stack to see if anything was out of the ordinary.  Load up your msinfo32 console and check your stack.  Components...Network... Protocol.  Check first the name.  Should say MSAFD Tcpip [TCP/IP].  Mine in fact did not say this.  I "HAD" Panda Antivirus 2004 installed (others may cause problems too) and my TCP stack started with "PAV over MSAFD"  AHA!!  uninstalled Panda and back on the domain now.  I will try and reinstall Panda 2004 and hopefully it won't screw it up again.  Don't feel bad Timbercoyote, this was my personal computer at work and this beat me up for 2 days too.  Going WAY too technical and getting lost.  Don't ever forget, someone, somewhere has had your problem.  Keep checking the forums.  :-)
0
Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

 

Expert Comment

by:dkattan
Comment Utility
I'm having this same problem. I can't get a IP address on the network and I noticed that IPSEC wasn't started. When I try to start it I get
"Could not start the IPSEC Services service on Local Computer.
Error 10106: The requested service provider could not be loaded or initialized."

I wish I could reinstall TCP/IP or something.
0
 

Expert Comment

by:gayagaya2
Comment Utility
how do i check my tcp stack? please help! i am having the same problem
0
 

Expert Comment

by:lancecopeland
Comment Utility
Load up your msinfo32 console and check your stack.  Components...Network... Protocol.  Check first the name.  Should say MSAFD Tcpip [TCP/IP].  (This was from my previous post)
0
 

Accepted Solution

by:
modulo earned 0 total points
Comment Utility
PAQed with no points refunded (of 500)

modulo
Community Support Moderator
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

Have you ever set up your wireless router at home or in the office to find that you little pop-up bubble in the bottom right-hand corner of Windows read "IP Conflict - One of more computers on the network have been assigned the following IP address"…
Trying to figure out group policy inheritance and which settings apply where can be a chore.  Here's a very simple summary I've written which might help.  Keep in mind, this is just a high-level conceptual overview where I try to avoid getting bogge…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video discusses moving either the default database or any database to a new volume.

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now