Ghost error you were logged on but

Ghost Drive Mapping Boot Disk problem.

Setup a Laptop with AD, DHCP, and DNS.  Connected a single client to verify DHCP is updating DNS which it is.  All records show up and the computer can access all resources.

Created a Ghost Network (mapping) Boot Disk, which connects and when I logon to the server as the domain admin(or any other user I create), I get the message:  You were logged on, but have not been validated by a server.  Therefore you may not have permission to use some network resources.

The disk continues and gives me a mapped drive but of course when I try to access anything I get Access Denied.

Any ideas?
dgore1Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

dgore1Author Commented:
Also forgot to mention that this is an AD 2003 server.
0
John Gates, CISSPSecurity ProfessionalCommented:
What does your NET/network.ini file look like?

It should look like this:

[network]
computername=<unique name>
lanroot=A:\NET
autostart=netbeui full
username=<your username>
domain=<your domainname>
lslogon=yes
reconnect=no
passwordcaching=no
timesync=no

Let me know and I will help further 8)

-D-
0
dgore1Author Commented:
[network]
computername=test1
lanroot=A:\NET
autostart=netbeui full
username=ghostie
domain=casting.local
lslogon=yes
reconnect=no
passwordcaching=no
timesync=no


Also, ghostcasting works just fine.  But that doesn't require name resolution.  And for the domain area, if I leave the .local off, it denies me access with net help 5 I belive.
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

John Gates, CISSPSecurity ProfessionalCommented:
change the line casting.local to just the base pre dot name:

casting

the DOS client is not going to know what to do with that ;-)  

That should fix the issue.

-D-
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
dgore1Author Commented:
Yup...that's what I thought too.  So I changed it again today and get the error message :

Error 5:  Access has been denied.

the full domain name is testing.casting.local, with the Server name being testing.  Netbios name is testing as well.

I even found this symantec article that said if you receive access denied on a Windows 2003 server, change the network security: Lan Manager Authentication Level from Send NTLM response only to Send LM & NTLM responses.

Same error.

I then joined another computer to the domain using the user ghostie with no problems since they are an enterprise admin.
0
dgore1Author Commented:
Another update:

I forgot to read the whole article:  You also have to find microsoft network server: digitally sign communications (always), and change the setting from enbled to disabled.

Wow...That did the trick!! Even though I changed the domain to be casting, going to award you the poinst since you made me go down the path one more time!!(and it was wrong!!)

Thanks,
Dale
0
John Gates, CISSPSecurity ProfessionalCommented:
Is one of the choices for digitally sign communications "Respond" ?  I think I would set it to that before disabling it completely.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft DOS

From novice to tech pro — start learning today.