Solved

All client machines very slow to login to dc

Posted on 2008-10-06
10
408 Views
Last Modified: 2012-05-05
This is a school network.  

We have a Poweredge server with 2003 Server R2 and close to 65 users.  All computers are connected into a 10/100 switch with a 1000 connection to the server.  We also have several Linksys Access Points off of the switch.

It seems as if every client we have in our school takes forever when logging in.  The only time it does not take long is when your logging into a local user account on the PC.

Does anyone have any ideas on what is causing this?? Thanks!!

0
Comment
Question by:Kyle_B21
  • 3
  • 2
  • 2
  • +3
10 Comments
 
LVL 63

Expert Comment

by:SysExpert
ID: 22652411
1)  Any roaming profiles - That can be a killer if time is essential.

You may need to disallow certain stuff in the roaming profile if that is your case.

Anything in the local or server event logs ?


DCDIAG and NETDIAG show anything ?

I hope this helps !
0
 
LVL 7

Expert Comment

by:youngrmy
ID: 22652428
Check the DNS Setting on the server. If this was limited to one or two PC's it may be that the problem is with the local PC. where this is happeningto all. it is most likely with an setting on the server. DNS Make the most sense to check first.
0
 
LVL 58

Expert Comment

by:tigermatt
ID: 22652446

The most common situation in this case is when the DNS Server on the client workstations (or perhaps the server) is not the IP of the Domain Controller server itself. On any Active Directory network DNS is the most critical point to tie everything together; if the DNS Server list on a workstation or the server includes DNS Servers from the ISP, the router or anything else which is not the IP of the server, you will experience login issues.

-tigermatt
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 10

Expert Comment

by:kukno
ID: 22652539
Do you have "roaming profiles"? If so, is there a lot of data on the "Desktop"? The files on the Desktop are part of the profile. In case of roaming profiles, they must be copied from the server every time you log in.

If this is not the case, here are some other possible problems.

1.) General network problems, e.g. bad interface card at the DC, bad cable at the DC, bad switch port, etc.
2.) DNS is not configured properly on the clients first and only DNS server should be your DC) or on the DC.


Regards
Kurt
0
 

Author Comment

by:Kyle_B21
ID: 22652822
Everyone does have "roaming profiles".  However I created a test account in AD with all the same scripts and GPOs running.  It takes just as long with a brand new accounts, sometimes 2 minutes to be exact stuck on the applying personal settings.  I really do not have many GPOs setup either, more next to nothing then something.

How would I check DNS Settings
0
 
LVL 10

Expert Comment

by:kukno
ID: 22652853
check the client settings. ipconfig /all. What's the DNS server? Is it your DC?
0
 
LVL 10

Expert Comment

by:kukno
ID: 22652864
maybe your DHCP server distributes two DNS servers. First is an external one. Second is the DC.
0
 
LVL 4

Expert Comment

by:placebo69a
ID: 22655618
First of all, create a user with no roaming profile and see how long it takes for that user to log in from a client computer. If it takes as long as your other users this is most likely a DNS issue. If it doesn't take long at all you should reconsider using roaming profiles.
Run the IPCONFIG.EXE /ALL from the command prompt on both your domain controller and a client machine. The ip address on the line that says DNS Servers should be your domain controllers ip address.
If it isn't go to Network Connections, right click Local Area Connection and click Properties. Double-click the Internet Protocol ( TCP/IP ) and change the setting on the bottom to "Use the following DNS server addresses" and type in your domain controller ip address as the "Preffered DNS server". Click OK twice and then try logging in again, see if the time improves.
Note that the DNS setting must point to your domain controller on both the server and client machines to avoid lengthy login times.
Let me know if this helps. :)
0
 

Author Comment

by:Kyle_B21
ID: 22663006
I appreciate all the answers!! I will try the DNS Configuration tomorrow when I go on-site.

Just a question, but if it is a DNS Issue, is there a way to set the "Preferred DNS Server" on all the clients from the server such as a GP Push or something like that? Maybe even a script?

We are in the process of setting up Symantec Ghost and getting all the PCs licensed for it, so if this is the case and I can't do it from the server I will wait to change it on all PCs until we get ghost up and running.

Thanks!
0
 
LVL 58

Accepted Solution

by:
tigermatt earned 350 total points
ID: 22664069

DNS Servers are generally set using DHCP. There is a Group Policy to set DNS Servers which some people often suggest, but that policy is rather pointless in my opinion; if DNS settings are incorrect, Active Directory Domain Controllers cannot be located by workstations (due to incorrect / no DNS server settings), and thus Group Policy cannot be applied to get those DNS Server settings.

Run DHCP on one of your Server 2003 servers, and turn it off on any routers / firewalls. Using Server 2003 DHCP gives best flexibility, and allows for you to set options such as DNS, DNS Domain Name etc.

-tigermatt
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Big Problem with Redirected Folder 8 65
How do i de-activate my Visual Studio 2012 Professional license 3 51
User wants to log with Username or Email 4 83
IP range 6 61
Trying to figure out group policy inheritance and which settings apply where can be a chore.  Here's a very simple summary I've written which might help.  Keep in mind, this is just a high-level conceptual overview where I try to avoid getting bogge…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question