Problem with Domain Security Policy and Remote Access/VPN server
Posted on 2007-07-22
Scenario: I'm have two servers; server1 is the PDC, and also runs DNS, WINS, IIS, and a VPN. server 2 is just a terminal server. These are the only two computers/servers on the domain for now.
Problem: While the remote access/VPN module is running on server1, server2 is unable to synchronize the domain security policy with the PDC. It gives me an error in the Application event log that says:
Event ID: 1030
Description: Windows cannot query for the list of Group Policy objects. Check the event log for possible messages previously logged by the policy engine that describes the reason for this.
I can't find anything else in the logs that seem to point out a problem. Disabling the remote access server solved the problem, but I would like to have that running. Basically what I want from the VPN is just for users to be able to connect to the server and access network resources, as well as be able to use the internet connection. I have a Cisco router, so I don't need the computer to act as another router (at least I don't think). Can anyone explain how the remote access server should be set up so this will work?
I'm also having another problem which may or may not be related. I usually use remote desktop connection to connect to the servers and administer them. One of my computers run Windows XP, and can connect to both servers fine. My other computer, which runs Vista Ultimate, can connect to server2 fine, but when connected to server1 has very high latency or something. In other words, everything just takes about 10 seconds to appear on the client computer. The configuration of both computers network wise is the same besides the OS.
If you need any more info feel free to ask.