Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 346
  • Last Modified:

Add Windows 2003 server to existing Active Directory

I have setup a Win2k3 server for a remote location that doesn't have any MS networking currently, just Netware. I want to join it to our existing domain in a new site but I'm having problems. Here's what I have done so far...
     - The remote location is on its own IP subnet.
     - The new server is in place at the remote  location and running properly as a member of "workgroup".
     - The remote location is connected to us via a VPN and Cisco routers.
     - I configured the remote server to use one of the Win2k3 servers here to be it DNS server. Pinging by name works in both directions.

The new server can see the existing domain. From the remote server, I can access Win2k3 servers here by entering the IP address (ex. \\\util or \\cullman-ms1.wiscoind.local\util). However, when I try to join the server into the existing domain, the process fails. I'm prompted for a username and password to authorize joining the domain but the process timesout after 6-7 minutes with the error "The following error occured attempting to join the domain "wiscoind": The service did not respond to the start or control request in a timely fashion."

Here's what I've done in AD to prepare for the join...
     - I've created a subnet entry under DNS for the remote location.
     - I've entered a host (A) entry using the static IP address and name of the server and corresponding reverse lookup pointer.
     - I've created a site for the remote location with corresponding subnet and associated them.
     - I've created a site link connecting the remote location to the main site where the main DC is located.

I have noticed that for the remote server's entry in the sites structure is missing an NTDS Settings object that the other two sites have. I'm assuming this is a result of the remote server not being a part of the domain yet since these objects say they are automatically generated.

Ultimately, I want to make this server a domain controller and dns server. I know some of the entries above don't have anything to do with the domain join problem.

I'm missing something. What is it?

1 Solution
Hi bhartung1,

to start with are you running DCPROMO or are you just trying to join the server into the Domain? try the dcpromo route and add the server as an additional DC, once the DC is part of the domain, then you can play with sites and services, have you installed DNS on the remote server yet?

What happens on the remote server when you do "nslookup  domainname"?  As well, there is no filtering set up on the CISCO's for the VPN connection is there?  All ports are allowed through?
bhartung1Author Commented:
Hi Jay_Jay70,

Initially, I'm just trying to join the server to the domain. I'm assuming if I can't do that, trying to make the server an additional DC isn't possible. Something I forgot to include was that no errors show up either on the remote server or on our current main DC in the event logs.
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

what kind of connection do you have between the two site mate?
bhartung1Author Commented:
Hi Bill,

Below is the nslookup output from the remote server. I tried the same command locally and got the same output.

      C:\Documents and Settings\Administrator>nslookup wiscoind.local
      Server:  wisco-db1.wiscoind.local

      Name:    wiscoind.local

As far as the Cisco routers go, there is no filtering set on them.
bhartung1Author Commented:

We have a cable connection (2MB x 512Kb) locally and a Dsl (1.5MB x 256Kb) at the remote end. We have internet appliances at either end providing an always-up VPN.
there is windows firewall service running on the target machine is there??
bhartung1Author Commented:
Both the remote and local Win2k3 servers have the Windows firewall disabled.
good good,

im just thinking its DNS related

are you pointing your primary DNS to your server in the remote site?

sorry if you answered this alread, im at work and just posting as i can :)
bhartung1Author Commented:
Sorry for not posting back sooner.

I had a tech in for a different project and I happened to mention the problem to him and he asked how I had set the new server up. I told him I had set it up locally and then sent it down. He asked if I had joined it to the domain while it was local and I said yes. Then I had removed it from the domain prior to shipping. Then he asked if I had downed the domain controller since I'd removed the new server from the domain and I said no. He said reboot it and it should be able to join the domain then. And it worked!

I was amazed he zeroed in on this so fast but he explained he'd had a customer with the same problem about a month ago and it had taken a bit longer the first time.

Thanks all.
glad you got it all sorted :)
tis all good
Closed, 500 points refunded.
The Experts Exchange
Community Support Moderator of all Ages

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now