[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1195
  • Last Modified:

Windows 2003: DHCP will not authorize "access is denied" error

Hello Experts!

I am trying to move DHCP services off my Windows 2000 server from Domain A (scheduled to be collapsed) and on to my Windows 2003 server in Domain B.  The scopes configured on each Domain Controller are almost identical with the exception of WINS servers.  After unauthorizing DHCP and stopping the DHCP services on the Win2k server, I try to authorize the DHCP on the Win2k3 server and get the "access is denied" error although I am a Domain Admin on the network.

I found this article, but it does not really answer my question.
http://www.experts-exchange.com/Networking/Microsoft_Network/Q_21079060.html?query=DHCP+access+denied&clearTAFilter=true 

My event IDs are 1046 and 1056

1046
The DHCP/BINL service on the local machine, belonging to the Windows Administrative domain ad.gd-ais.com, has determined that it is not authorized to start.  It has stopped servicing clients.  The following are some possible reasons for this:
      This machine is part of a directory service enterprise and is  not authorized in the same domain.  (See help on the DHCP Service  Management Tool for additional information).

      This machine cannot reach its directory service enterprise and  it has encountered another DHCP service on the network belonging to  a directory service enterprise on which the local machine is not authorized.

      Some unexpected network error occurred.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

1056
The DHCP service has detected that it is running on a DC and has  no credentials configured for use with Dynamic DNS registrations  initiated by the DHCP service.   This is not a recommended security configuration.   Credentials for Dynamic DNS registrations may be configured using the command line "netsh dhcp server set dnscredentials" or via the  DHCP Administrative tool.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.


I have uninstalled and reinstalled DHCP on the Win2k3 server and still have the same symptoms.

Please help!

0
mb2010
Asked:
mb2010
1 Solution
 
mwalkerbcCommented:
You mentions that you are a Domian Admin, but you need to be an Enterprise Admin in order to authorize DHCP servers.

After that, you may still need to address the Dynamic DNS updates problem, but hopefully you can get your account in the Enterpise Admins group or get another Admin to autorize your DHCP server.

Hope that helps.
0
 
mb2010Author Commented:
Thanks mwalkerbc!

In addition, I found this for those that may reference this post later:

"If a DHCP server is also configured as a DNS server, members of the DHCP Admin group can view and modify the DHCP configuration but cannot modify the DNS server configuration on the same computer. Because members of DHCP Admin have rights on the local computer only, they cannot authorize or unauthorize DHCP servers in Active Directory; only members of the Domain Administrators group can perform this task. If you want to authorize or unauthorize a DHCP server in a child domain, you must have enterprise administrator credentials for the parent domain."

 

Quote taken from here:

http://www.microsoft.com/technet/itsolutions/techguide/wssra/raguide/Network_Services_SB_2.mspx

0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now