Unable to view Domain resources to add when setting Sharing Permissions

Trying to share a folder on a Windows XP Prof SR-2machine, which is part of a Win 2000 Server Domain, with other Domain users/groups. What I am doing is using the selecting 'Share the Folder' under the Sharing tab of the folder properties (Simple File Sharing has been disabled). Under the permissions button, Everyone is listed. Under the Security tab (I think this is the correct place to share across the network), there are several groups listed (i.e. Administrators for the local machine, CREATOR OWNER, SYSTEM and Users for the local machine). When I Press the Add button to add Domain Users or Groups, the only location listed or availble in the browse dialog is the local machine. The Domain and its various resources are not listed? I am sure that I had properly joined the domain when I logged in, since the Server shared folders are available, but searching/browsing the Active Directory for my username comes up 'no items found' after long wait.
This all used to work not to long ago, so I am really confused. Please help to I can get my network back useful again.
Thanks, Rich
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Rich RumbleSecurity SamuraiCommented:
use the find or advanced find (just press the find button no critera is necessary) and it should enumerate all the users in domain your part of. If it's not finding your own user name you can try it in different formats-
domain\username or
Perhaps something has changed the tcp/ip settings on the wokrstation
check the primary dns entry.

This is only happening on one computer ... right ?
Any errors in event viewer that might indicate another problem ?
RichAuthor Commented:
When I press Find Now in Find Users, Contact and Groups dialog from the Search Active Directory button from the My Network Places window, it says 'No items match the current search' after about a minute.

Also, there are several errors in the Application Event, indicating that the Active Directory can not be found (i.e.
Userenv error: Windows cannot determine the user or computer name. (The specified domain either does not exist or could not be contacted. ). Group Policy processing aborted.
AutoEnrollment: Automatic certificate enrollment for local system failed to contact the active directory (0x8007054b).  The specified domain either does not exist or could not be contacted.
  Enrollment will not be performed.

DNS servers listed with IPCONFIG /ALL show the ISP provided DNS servers. Do I have to have a DNS entry of the IP for the Windows2000 Server, also?

Top Threats of Q1 & How to Defend Against Them

WEBINAR: Join WatchGuard CTO and our Threat Research Team on Aug. 2nd to hear the findings from our Q1 Internet Security Report! Learn more about the top threats detected in the first quarter and how you can defend your business against them!

Hi Rich,
Yes that DNS part is the most important.
You MUST put your DNS Server in as the primary dns on all of your clients.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
RichAuthor Commented:
Thanks. That has solved the problem. To summarize, I manually set the DNS on a local workstation (which was not seeing the Domain, either) to the IP of the Server, and now the Domain is visible, and everything is much faster, too. To be sure I fully understand, though, I let the Server obtain the DNS from the ISP, and then all the workstations simply get the DNS from the Server. I would only need to get the DNS from the ISP if the workstation is removed from the Server environment - otherwise the Server provides the DNS routing.

I will accept this answer.

Great...I'm glad it worked out for you.

>> "I let the Server obtain the DNS from the ISP"

Some would say to not use forwarders on your DNS server and let your server use 'root hints' alone.

How to configure DNS for Internet access in Windows 2000

Frequently asked questions about Windows 2000 DNS and Windows Server 2003 DNS
taken from the above link:

Question: If I remove the ISP's DNS server settings from the domain controller, how does it resolve names such as Microsoft.com on the Internet?

Answer: As long as the "." zone does not exist under forward lookup zones in DNS, the DNS service uses the root hint servers. The root hint servers are well-known servers on the Internet that help all DNS servers resolve name queries.
Question: Do I need to configure forwarders in DNS?

Answer: No. By default, Windows 2000 and Windows Server 2003 DNS use the root hint servers on the Internet; however, you can configure forwarders to send DNS queries directly to your ISP's DNS server or other DNS servers. In most cases, when you configure forwarders, DNS performance and efficiency increases, but this configuration can also introduce a point of failure if the forwarding DNS server is experiencing problems. The root hint server can provide a level of redundancy in exchange for slightly increased DNS traffic on your Internet connection
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.