• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 203
  • Last Modified:

Wiindows 2003 Domin Controller not answering authentication requests.

Hello,

I have an interesting problem with a small 2 DC domain:

Background:
My customer had a 2000 server DC and I installed a new Windows 2003 DC following  MS white papers, I did the 2000 to 2003 ADPrep and transferred the FSMO roles to the new 2003 DC.

The new DC is used mostly for file sharing, but it is configured with DHCP, DNS and WINS.

Problem:
Two times the old 2000 server suffered a hardware failure and would not boot, after this happened, only about half of the users could open their shared folder on the server, if I deleted their mapped drive and tried to re-map, it would ask for credentials and when supplied, it would give an error that the “login credentials” have already been tried and have failed.

I found out if I reboot the PC even though they have been rebooted many times before while the mapped drive was attached, then tried to map again it would ask for credentials and accept the login credentials creating the mapped drive.

I noticed that when you do a “set” command from the command prompt, the LOGINSERVER was the 2000 server and not the 2003 server. It seems that it’s using the cached credentials to log on, but not getting authentication from the 2003 server if the 2000 server is unavailable. The 2003 server is set in DHCP as the DNS server and WINS server.  I’m baffled as to why it will not authenticate users trying to use a share on itself.

Any ideas what I should be looking for here?
0
JDrobnick
Asked:
JDrobnick
  • 2
1 Solution
 
LauraEHunterMVPCommented:
Confirm that the 2003 server configured as a Global Catalog server.

0
 
JDrobnickAuthor Commented:
It looks like the 2000 DC was a GC, but the 2003 was not, thanks for the quick solution!
0
 
JDrobnickAuthor Commented:
Another thing I noticed is that after turning on the GC, I still have issues with some nodes not finding any server to authenticate to, so they use cached credentials. The 2000 DC is currently down with a hardware issue that will take another week to repair, I'm assuming that since the 2003 DC was just configured as a GC, that it is missing something from replication that it can't get because the 2000 DC is down?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now