spiderbite
asked on
Access denied adding member server to domain
I have an enterprise 2003 OS on this server and for some reason the ability to share folders dissapeared. So, I removed it from the domain and then tried adding it back and I keep getting access denied when using a domain admin account. What might be wrong here?
Jay_Jay70
try using a different account that is a member of the enterprise admins group
ASKER
Tried it, no go. Still access denied.
On the problem server, please open a command prompt and enter the following:
cd C:\
gpresult /z >result.txt
This will create a report at C:\result.txt, please post it here.
Jeff
TechSoEasy
cd C:\
gpresult /z >result.txt
This will create a report at C:\result.txt, please post it here.
Jeff
TechSoEasy
ASKER
Microsoft (R) Windows (R) Operating System Group Policy Result tool v2.0
Copyright (C) Microsoft Corp. 1981-2001
Created On 6/23/2006 at 7:28:18 PM
RSOP data for NODA-SAS\Administrator on NODA-SAS : Logging Mode
--------------------------
OS Type: Microsoft(R) Windows(R) Server 2003, Enterprise Edition
OS Configuration: Standalone Server
OS Version: 5.2.3790
Terminal Server Mode: Remote Administration
Site Name: N/A
Roaming Profile:
Local Profile: C:\Documents and Settings\Administrator
Connected over a slow link?: Yes
COMPUTER SETTINGS
------------------
Last time Group Policy was applied: 6/23/2006 at 7:11:54 PM
Group Policy was applied from: noda-dc01.NodalityInc.loca
Group Policy slow link threshold: 500 kbps
Domain Name: NODA-SAS
Domain Type: <Local Computer>
Applied Group Policy Objects
--------------------------
N/A
The following GPOs were not applied because they were filtered out
--------------------------
Local Group Policy
Filtering: Not Applied (Empty)
The computer is a part of the following security groups
--------------------------
BUILTIN\Administrators
Everyone
NT AUTHORITY\Authenticated Users
Resultant Set Of Policies for Computer
--------------------------
Software Installations
----------------------
N/A
Startup Scripts
---------------
N/A
Shutdown Scripts
----------------
N/A
Account Policies
----------------
N/A
Audit Policy
------------
N/A
User Rights
-----------
N/A
Security Options
----------------
N/A
N/A
Event Log Settings
------------------
N/A
Restricted Groups
-----------------
N/A
System Services
---------------
N/A
Registry Settings
-----------------
N/A
File System Settings
--------------------
N/A
Public Key Policies
-------------------
N/A
Administrative Templates
------------------------
N/A
USER SETTINGS
--------------
Last time Group Policy was applied: 6/23/2006 at 7:27:15 PM
Group Policy was applied from: N/A
Group Policy slow link threshold: 500 kbps
Domain Name: NODA-SAS
Domain Type: <Local Computer>
Applied Group Policy Objects
--------------------------
N/A
The following GPOs were not applied because they were filtered out
--------------------------
Local Group Policy
Filtering: Not Applied (Empty)
The user is a part of the following security groups
--------------------------
None
Everyone
BUILTIN\Administrators
BUILTIN\Users
REMOTE INTERACTIVE LOGON
NT AUTHORITY\INTERACTIVE
NT AUTHORITY\Authenticated Users
This Organization
LOCAL
NTLM Authentication
The user has the following security privileges
--------------------------
Bypass traverse checking
Manage auditing and security log
Back up files and directories
Restore files and directories
Change the system time
Shut down the system
Force shutdown from a remote system
Take ownership of files or other objects
Debug programs
Modify firmware environment values
Profile system performance
Profile single process
Increase scheduling priority
Load and unload device drivers
Create a pagefile
Adjust memory quotas for a process
Remove computer from docking station
Perform volume maintenance tasks
Impersonate a client after authentication
Create global objects
Resultant Set Of Policies for User
--------------------------
Software Installations
----------------------
N/A
Logon Scripts
-------------
N/A
Logoff Scripts
--------------
N/A
Public Key Policies
-------------------
N/A
Administrative Templates
------------------------
N/A
Folder Redirection
------------------
N/A
Internet Explorer Browser User Interface
--------------------------
N/A
Internet Explorer Connection
--------------------------
N/A
Internet Explorer URLs
----------------------
N/A
Internet Explorer Security
--------------------------
N/A
Internet Explorer Programs
--------------------------
N/A
Check the server for viruses or other maleware.
Delete the account for the server in both AD users and computers and in DNS.
Also try joining the domain as DOMAIN.COM, DOMAIN, domain.com, or domain
I've noticed that for some reason joining a domain in one way will work and the other way may not.
Then try again.
eb
Delete the account for the server in both AD users and computers and in DNS.
Also try joining the domain as DOMAIN.COM, DOMAIN, domain.com, or domain
I've noticed that for some reason joining a domain in one way will work and the other way may not.
Then try again.
eb
So, are you attempting to do all of this remotely? Just want to confirm that.
Also, is your domain configured with EFS (Encrypted File System)? Do you have ISA Server installed?
Jeff
TechSoEasy
Also, is your domain configured with EFS (Encrypted File System)? Do you have ISA Server installed?
Jeff
TechSoEasy
ASKER
Deleted server from AD and DNS but still access denied. There is no EFS or ISA installed. Right before this happened, file sharing options were not available. After removing from domain, share options became available again. Now can't rejoin domain. Still getting Access Denied. Upper and lower case letters not making a difference.
Must be something on that server causing the problem, check the security settings.
eb
eb
ASKER
Please close this with no points to give away. Full OS reinstall did the trick.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.