Solved

Login script w/multiple DCs

Posted on 2006-07-10
8
343 Views
Last Modified: 2010-04-18
I've got 2 2003 Servers. Both are DCs, GCs and DHCP servers. I've got a Visual Basic login script placed in the \\domain.dom\netlogon folder. I have a Login Script policy in GPO tied to my main OU. The Logon script path is \\domain.dom\netlogon\login.vbs

The problem is when I shut down DC1 and log into a workstation, the login script is not being run. I need it to pull the script when logging into DC2. When DC1 is down, I can browse to that Netlogon folder and manually run the script, so it's not a rights issue. For some reason it's just not running itself when DC1 is down.

Someone please advise.
0
Comment
Question by:lbbcsg
  • 4
  • 4
8 Comments
 
LVL 51

Expert Comment

by:Netman66
ID: 17073403
This script should be placed in :

C:\WINDOWS\SYSVOL\sysvol\{your domain here}\scripts

This will then replicate to all DCs.

The GPO running the Logon script will then simply point to login.vbs with no UNC path.

0
 
LVL 2

Author Comment

by:lbbcsg
ID: 17073814
When I put it in the C:\WINDOWS\SYSVOL\sysvol\domain.dom\scripts folder then go into my GPO and choose Logon Script, I have to drill down to find it, and it ends up putting in the entire path with the file name at the end.
0
 
LVL 51

Expert Comment

by:Netman66
ID: 17073966
When you click Add for the logon script, you should be presented with a logon script name and parameters.  By default, it should place the script in the GPO (policy's) folder as below - note the GUID will be different for you.

\\Domain\SysVol\Domain\Policies\{E1E61435-DA91-4FEC-BD81-582D8543F0AE}\User\Scripts\Logon

As log as the script is in the policy folder it will replicate to all DCs and should be available.

You can leave it in the Scripts folder as instructed above, but you will need to drill down to it.

Either way should work for you.
0
 
LVL 2

Author Comment

by:lbbcsg
ID: 17074177
Netman, thanks for the help thus far.

I know what you mean when I hit Browse and it looks in the default spot like you mention above. If I put my script in there, it still doesn't run when DC1 is down.

So far I've tried:

\\Domain\SysVol\Domain\Policies\{E1E61435-DA91-4FEC-BD81-582D8543F0AE}\User\Scripts\Logon
C:\WINDOWS\SYSVOL\sysvol\{your domain here}\scripts

From both spots, no script runs when DC1 is down. Yet I can browse to both locations while DC1 is down and manually run it.

Anymore ideas?

0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 51

Accepted Solution

by:
Netman66 earned 250 total points
ID: 17074307
If you place the script in that location on DC1, then it should replicate to DC2.

If you have DNS configured correctly, then the client should authenticate to DC2 if DC1 is down and run the script correctly.

Is DC2 a Global Catalog?  Is it running DNS and in sync with DC1?

0
 
LVL 2

Author Comment

by:lbbcsg
ID: 17074838
The replicaiton works, I can make a change to the script on DC1, then within seconds see the change on DC2. DC2 is a GC. I will have to verify the DNS status.
0
 
LVL 51

Expert Comment

by:Netman66
ID: 17081839
I think you'll find that this:  The Logon script path is \\domain.dom\netlogon\login.vbs

Should simply refer to the script name of login.vbs in that GPO isnce it knows where to look already.  

By adding the domain it likely only resolves to the other DC.

0
 
LVL 2

Author Comment

by:lbbcsg
ID: 17167102
It came down to being a DNS issue. Once I added the 2nd DNS server IP address inside DHCP it seemed to resolve the problem.
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Replace 2003 domain controller with 2012 3 65
how to check the account lockout counter? 6 58
Moving RDP Server to New Server. 3 46
Event ID: 1202 / Source: SceCli 6 87
The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now