I have a very simple setup. I have a DC and three member servers. The DC is NOT running DNS or DHCP. Those are provided by an external agency.
All of the member servers can logon to the Domain, although it seems to take forever.
When I logon to the member server, I want to add a domain group to a local resource, such as a share or a directory. When I go to add the user, the defualt "look in" is the local machine. If I click the locations button, I cannot see anything but the local machine. As such, when I put in the name in any format (user, domain\user, user@domain, etc) it says it cannot find the account in the current location. This is correct since the current location is set to the local machine. However, it will not allow me to select any other location (DC or other) to search in.
Although this seems to be a global problem regardless of the local resource I am trying to manipulate, I specifically need to grant access for a domain group or user to an FTP site hosted on the member server.
The rest of the network functionality seems to be working fine. I can browse the machines via explorer and network neighborhood. I can ping by name and address. If I add a local account to the FTP server, I can FTP back and forth with no issues, as long as I use the local account.
If I set up a local account that uses the same username and password as the domain account (different SIDs), it does not work. As such, the SID is the issue.
All of this functionality is background functionality with no user interface between the user and the process. It is application to application, so I cant specify a username and password for transaction. I must use the same account (same SID).
I need help...or a gun.