Cannot add computer to Windows 2000 domain - IpSec and NetLogon services do not start

Posted on 2004-09-09
Last Modified: 2008-01-09
I have a Windows XP Pro computer that was on a Windows 2000 domain yesterday (one of about 50 in my domain) that refuses to access the internet or the domain. Trying to troubleshoot, I've managed to drop it from the domain down to a local workgroup and sever any ties at all to the network. The IpSec and NetLogon services refuse to start with event log errors like this:

Event Source:      Service Control Manager
Event Category:      None
Event ID:      7023
User:            N/A
The IPSEC Services service terminated with the following error:
The requested service provider could not be loaded or initialized.

Event Source:      NETLOGON
Event Category:      None
Event ID:      5737
User:            N/A
The system returned the following unexpected error code:
The requested service provider could not be loaded or initialized.

Before I stupidly dropped it off the domain, I could still access network files if I provided a logon and password. Now when I try to add it back to the domain, I get messages that the machine cannot connect to a dc, and that tcp/ip is not installed. I figure that is due to the services not running, but here is the error message if you want it:

An error occurred when DNS was queried for the service location (SRV) resource record used to locate a domain controller for domain <DOMAIN>.

The error was: "TCP/IP network protocol not installed."
(error code 0x0000267B DNS_ERROR_NO_TCPIP)

The query was for the SRV record for _ldap._tcp.dc._msdcs.<DOMAIN>

I get error code 10106 when I try to manually start the either service. I'm at a loss. I'm tired, I have 50 other machines that do just fine on this network, and I would just chuck it all and wipe the machine, but it's the only box in my domain that has certain software on it, and I'd like to save it if I can. Sorry about the length, but I'm a too much information rather than too little kind of guy.
Question by:timbercoyote
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 85

Expert Comment

ID: 12024423
Seems like your TCP/IP stack has gone overboard, and without that, you obviously can't start any service that relies on it.
How to remove and reinstall TCP/IP for Windows 2000

Author Comment

ID: 12028740
Thanks oBdA, I had wanted to try to re-install TCP/IP, but apparently you can't do that in Windows XP. I did find the Microsoft article on resetting TCP/IP for Windows XP, but no solution there. I have run standard diagnostics and everything checks out, other than the services failing to start... including pinging the gateway, dns, a different workstation on the domain, the computer names for all of the above, and even pinging from the network to the affected workstation works fine. I tried DHCP, static addressing (default), a new static address, deleting and readding the computer from Active Directory, verifying and changing the dns pointers on the server, and asking it to please just be nice to me. Nothing. I'm working through troubleshooting trying to find anything else wrong, but nothing yet. Again, I can't wipe the box unless I want a serious hassle re-installing software I'm not even sure I know where the discs are. Thanks for any and all help.

Expert Comment

ID: 12229695
Having the same problem.  Mine occurred after SP2.  I know I know, learn from your mistakes right?  Anyway.....
oBdA was right.  But remove and reinstall did noting for me plus anyway you can't uninstall TCP for XP you can only "reset" it.  Still doesn't fix it.  He led me in the right direction by making me check my TCP stack to see if anything was out of the ordinary.  Load up your msinfo32 console and check your stack.  Components...Network... Protocol.  Check first the name.  Should say MSAFD Tcpip [TCP/IP].  Mine in fact did not say this.  I "HAD" Panda Antivirus 2004 installed (others may cause problems too) and my TCP stack started with "PAV over MSAFD"  AHA!!  uninstalled Panda and back on the domain now.  I will try and reinstall Panda 2004 and hopefully it won't screw it up again.  Don't feel bad Timbercoyote, this was my personal computer at work and this beat me up for 2 days too.  Going WAY too technical and getting lost.  Don't ever forget, someone, somewhere has had your problem.  Keep checking the forums.  :-)
Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.


Expert Comment

ID: 12436677
I'm having this same problem. I can't get a IP address on the network and I noticed that IPSEC wasn't started. When I try to start it I get
"Could not start the IPSEC Services service on Local Computer.
Error 10106: The requested service provider could not be loaded or initialized."

I wish I could reinstall TCP/IP or something.

Expert Comment

ID: 12756699
how do i check my tcp stack? please help! i am having the same problem

Expert Comment

ID: 12758318
Load up your msinfo32 console and check your stack.  Components...Network... Protocol.  Check first the name.  Should say MSAFD Tcpip [TCP/IP].  (This was from my previous post)

Accepted Solution

modulo earned 0 total points
ID: 13380197
PAQed with no points refunded (of 500)

Community Support Moderator

Featured Post

Create the perfect environment for any meeting

You might have a modern environment with all sorts of high-tech equipment, but what makes it worthwhile is how you seamlessly bring together the presentation with audio, video and lighting. The ATEN Control System provides integrated control and system automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
An article on effective troubleshooting
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor ( Top Charts is a view in which you can set seve…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question