?
Solved

Does Group Policy require RPC?  Our DC is behind a firewall an Group Policy won't apply

Posted on 2006-11-17
5
Medium Priority
?
684 Views
Last Modified: 2012-08-14
We have all the necessary ports/services forwarding through our firewall (this is not on a public internet, but segmented internal network) and can login fine.

HOWEVER, evern though mapped drives work, login, joining to domain, etc. all work -- Group Policy isn't applying itself.

GPUPDATE says "success" but none of our policies are enforcing.  HERe are our open ports

•      Kerberos (88/tcp, 88udp)
•      LDAP (389/udp, 389/tcp and/or 636/tcp if using LDAP over SSL)
•      SMB over IP traffic (445/tcp, 445/udp)
•      DNS ports (53/tcp, 53/udp) used for name lookups
•      135 DCE Enpoint
•      1000-5000 (For testing of RPC)

Shouldn't it be working w/ Group Policy too!?


Thanks!!

0
Comment
Question by:jgantes
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 16

Expert Comment

by:AdamRobinson
ID: 17964662
Can you post the results of your GPRESULT on the client(s)?

0
 

Author Comment

by:jgantes
ID: 17967260
GPRESULT

INFO: The Policy object does not exist.



Jim
0
 

Author Comment

by:jgantes
ID: 17970564
Spoke to soon... found a KB on MS website that describes adding registry keys to set a static range for the RPC ports.  One we did this we were good to go.
0
 
LVL 1

Accepted Solution

by:
DarthMod earned 0 total points
ID: 18349754
PAQd, 250 points refunded.

DarthMod
CS Moderator
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

741 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question