Solved

GROUP POLICY FOLDERS ON SYSVOL MISSING

Posted on 2006-07-06
3
4,007 Views
Last Modified: 2012-06-21
For whatever reason, my sysvol folder does not contain any of my group policy folders..   I had about 12 group policies that show up in the Management Console, but every time I try to edit it it states it failed to open the group policy object and the system cannot find the path.    I've looked in the SYSVOL of my other 3 DCs and I don't see any.  I suspect it suppose to be in the netlogon share somewhere... I can recall seing them in there at one time or another.

Question 1.  Can I restore these directories to one of the DC from tape and have AD just replicate them or is this NOT THE WAY TO DO IT.
Question 2.  I demoted one of our DCs a week or so ago... I'm sure it had something to do with that.  Is there an easier way to get at these GP files without going back to tape?

I have lots of custome GPs so redoing them is really not an option unless I have no choice.

Please advise.

Thanks
0
Comment
Question by:rdelrosario
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 26

Accepted Solution

by:
Pber earned 500 total points
ID: 17057914
Your GPO's aren't stored in netlogon: domain.com\sysvol\domain.com\scripts.

They are stored in the policies folder: domain.com\sysvol\domain.com\policies\
Each policy is located in a folder under the above folder.

Question 1: Yes you can restore the files and have AD replicate them.  As long as replication isn't broken.  I would probably restore the files to an alternate location and then copy then into the policies folder manually.

Question2:  It could be the issue, but I've never seen that happen.  If you deleted the files on the DC you removed before you demoted it, it would wipe them out on the remaining DC's.

Here's what I would do.

I would first make sure replication is working by placing a file in the policies folder and seeing if it replicates to the other DC's.  I would also check the FRS event logs on the DC.  If it is not you will have to something like at this link: http://www.jsifaq.com/SUBQ/tip8400/rh8481.htm

If replication is working, I would then delete the above file and then go to tape and restore teh GPO's to a different location and move to the policies folder one by one.

The Group Policy Management Console (GPMC) includes a new backup feature that allows backing up and restoring policies in case these are deleted or corrupted.  A backup script is included with the installation of GPMC that can be used as a scheduled task to back up these policies on a regular basis.  http://www.microsoft.com/windowsserver2003/gpmc/gpmcintro.mspx





0
 

Author Comment

by:rdelrosario
ID: 17058197
I figured it out and followed a very similar path that you explained.

Yea, I noticed I typed the wrong path, but yes I did find the 12 policy folders on a snapshot prior to my demotion.   I actually created a policies folder and replicated that and copied the policy folders individually and checked to see if I could edit the policies 1 by one.  I verified the ID of each policy within GP and everything looks good.

Thanks for the quick answer
0
 
LVL 26

Expert Comment

by:Pber
ID: 17058204
Glad to hear you got it fixed.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Microsoft Azure Site-to-Site VPN with Palo Alto 3 307
server is not seen in network 12 90
Understanding Security Log Events 2 79
Password managers 1 65
Sometimes you might need to configure routing based not only on destination IP address, but also on a combination of destination IP address (or hostname) and destination port number. I will describe a method how to accomplish this with free tools. …
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question