Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 190
  • Last Modified:

Roming profiles not working, not believed to be permission related. Some other obscure problem perhaps......

I have a client with roaming profiles that have ceased to work.  I cannot setup a new user with the profiles to a new or existing shared folder and have the profile load either.  It says it cannot find the path specified when I try to login via TS.  This is BS since I can login as the user(to the local profile) and UNC to the path of my roaming profile and access any and all of the contents of that folder.  I have checked the security and share permissions on the folder numerous times.  The TS server is a win 2003 box with sp2. It is the backup DC. the PDC is win 2000 sp4.  The profiles are to be found on the win 2k box setup like so \\server\profilesfolder\userprofile  where the profilesfolder is shared the users profile folder is a subdir.  I have the users with full control to the userprofile folder and their own folder.  I have run the UPH clean utility per the event id's i was getting with no change.  
0
bcrosby007
Asked:
bcrosby007
  • 5
  • 5
  • 4
  • +1
3 Solutions
 
Netman66Commented:
Sounds a bit like a DNS issue.

You may want to ensure the time (date, time, time zone and daylight savings settings) are correct and match the server.

Can you ping by fqdn from the client?  Can you ping just the Domain name rather than a host and get a response?

0
 
ChiefITCommented:
I agree with Netman>> Definately sounds like ((DNS))
0
 
JSoupCommented:
Note He never said he check the event view and found no entry success or failed.  
The answer would be clearer if the security event view were confirmed.
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
JSoupCommented:
ChiefIT
Mix domain..  
0
 
ChiefITCommented:
JSoup: I thought about your mixed domain, I think it would be good to explore it. Please provide your expertise on this matter.  

Netman:
At first I thought this might be a DNS issue, but the author said he could log on at the client. Without DNS, the Bcrosby shouldn't have been able to log on from the client, unless using the IP address to locate the profile from the client.

Bcrosby007:
I researched this issue based on Event IDs you provided. From what I am reading, this sounds like an appropriate fix.  

http://support.microsoft.com/kb/837115

It would make sense that unterminated software would interfere with the Roaming profile update upon exit.

0
 
JSoupCommented:
ChiefIT:
he ran "I have run the UPH clean utility per the event id's i was getting with no change." http://support.microsoft.com/kb/837115
bcrosby007 has not come back to anyone..  is he there??????
0
 
bcrosby007Author Commented:
Hello all.  Sorry.  I hve not been johnny on the spot in replying.  I have several other clients up my rear about other issues as well right now.  I have run UPH, with no success.  Also the time on the servers are not so disparate that I would see that as the cause in this case. When I checked them they were only 2 mins apart.  If this is enough to be an issue. Let me know.  

At this time, I have no difficulty pinging using FQDN from the TS server to the server hosting the profiles and vice versa.  I can therefore, of course, UNC to the path the profiles are located at as well from the TS server.   I will double check my DNS settings anyway, but I think the issue would be more than roaming profile issues if DNS were incorrect.
0
 
JSoupCommented:
The whole picture is hard to get from the one and only statement. Details are important.
What is missing is the type of domain controllers in a domain within the network layout

In order to understand potential problems that can arise with the Global Catalog Server, you have to get a better understanding of the different types of domains in Active Directory, especially the new domain functional levels and forest functional levels in Windows Server 2003. Domain functional levels

The term functional level replaces the term mode as it was used in Windows 2000 to refer to the type of domain controllers in a domain. There are four domain functional levels in Windows 2003 Active Directory:

Windows 2000 Mixed
Windows 2000 Native
Windows Server 2003 Interim
Windows Server 2003
Windows 2000 Mixed is how your domain will be configured by default, and it allows support for Windows NT 4.0 backup domain controllers. This level is similar to what was called Mixed Mode in Windows 2000. In Windows 2003, your Global Catalog Server is affected by the choice you make in any domain. This was not the case in Windows 2000. In that version, you could have each domain in a different mode, and the Global Catalog Server wasnt affected. Universal groups and group nesting will not be available if you have a domain functional level of Windows 2000 Mixed.
In Windows 2000 Native domain functional level, there can be no NT4 backup domain controllers (isnt it time for these guys to retire, anyway?). NT4 BDCs need a PDC with which to replicate. Otherwise, they continually try to promote themselves to PDC and can cause your domain to malfunction. However, in Windows 2000 Native domain functional level, the PDC Emulator takes on greater importance than just keeping a BDC in its place. The PDC Emulator is the clearinghouse for all account changes, which require urgent notification to other domain controllers.
0
 
bcrosby007Author Commented:
Ok. the PDC is a 2000 box that is in Mixed Mode.  The TS server is also a BDC and is windows server 2003 running in Win 2k Mixed mode.  Does this help?
0
 
JSoupCommented:
End sum
Once you find out whether your Global Catalog Server is working properly, the rest is up to you. The easiest fix is to make sure you have all of your domains at the same functional level as your forest. If that isnt the problem, then it could be DNS. Check out my article "When troubleshooting Windows 2000, start with DNS" for what to do when DNS loses the Global Catalog Server service record.

http://articles.techrepublic.com.com/5100-6345_11-5246874.html
SolutionBase: Be aware of the Global Catalog Server in a multidomain structure

When troubleshooting Windows 2000, start with DNS
http://articles.techrepublic.com.com/5100-1035_11-1048225.html
0
 
ChiefITCommented:
Is zone transfers elected as an option in DNS. This is necessary to transfer DNS objects from one server to another.  
0
 
bcrosby007Author Commented:
I'm not sure about the zone transfers option.  I will look into that as well.
0
 
Netman66Commented:
If the zones are AD Integrated they will replicate - unless it's across domains (in Windows 2000).

0
 
bcrosby007Author Commented:
Is there any possibility that my Default domain controller policy(or lack thereof) would cause this issues?   I'm noticing that the default domain controller policy is not anywhere to be found.  I've also looked at AD replication and it appears to be fine.  It will replicate on demand with issue.
0
 
ChiefITCommented:
By the term "default domain controller" do you mean default first site or the FSMO role holder?

If it replicates with issues, what issues are we talking about? Perhaps posting errors from a DCdiag /verbose would give us something more to go on.

0
 
Netman66Commented:
You can recreate the Default Domain Controller Policy be issuing this command on a DC from a CMD prompt:

dcgpofix /target:dc

0
 
bcrosby007Author Commented:
I will give those last two suggestions a go.  The client is considering a complete rehaul of their environment.  So, I'm kind of putting this issue on the back burner.  They are in desperate need of new hardware and a complete rehaul.......
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 5
  • 5
  • 4
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now