Strange problems with domain security/ user account privelidges

I have a customer with 3 servers (1 DC 2 member servers), they where it with the servu virus last year witch killed a 2nd DC at the time, this is currently offline. Since this users can log in and use the domain resources but there are lots of issues with access rights. A good example of this is if I log into either of the member servers as the domain admin I dont get local admin privelidges, another constant issue is if I try to push out backup exec remote agents no matter if I use the domain admin account or the local admin account for that server it always fails with access right issues? All 3 servers are running 2003 server R2 with SP2.

Thanks in advnace for any help.
LVL 14
plug1Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

fishadrCommented:
Is the remaining server holding all the FSMO roles? If not you need to move these to the server check the MS Artice:

http://support.microsoft.com/kb/255504

are the old servers still listed as DC's in AD, if so can you demote the DC from AD? If not use the procedures at the end of the following to remove the server out of AD

http://support.microsoft.com/kb/332199

Check the Event logs - usually there will be something here that will point you to the problem
0
plug1Author Commented:
The remaining server has all the FMSO roles and I have already removed the old server from the AD.

cheers
0
plug1Author Commented:
OK I have rebuilt and repaired the DNS server which as sorted out the member servers ability to browse the AD when adding global groups to local groups which they couldnt do before (the domain wasnt even listed) bu the problem of domain admins not getting local admin rights is still there??? I havent rebooted the member servvers yet but I doubt that it will have an effect.

Any ideas people.
0
plug1Author Commented:
Well after rebuilding the dns server I removed and re-added the two offending servers to the domain and all is well.

Thanks for the help lol.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.