Administrators unable to log onto Windows server 2008, user profile service failed to logon user profile cannot be loaded

We have recently come across an issue where only one domain administrator can access the windows 2008 server. all other users recieve the "user profile service failed to logon user profile cannot be loaded". We have tried previous articles in regards to the hives but have had no success. Any ideas on what to look for?
optelecomAsked:
Who is Participating?
 
optelecomConnect With a Mentor Author Commented:
Thanks for everyones support. After consulting Microsoft support it was determined we could simply replace the default user profile from another win 2008 box. Once we deleted the current default user and copied another default user profile from an alternative server everything is back to normal. thanks all for your support
0
 
optelecomAuthor Commented:
I did review this post but it did not appear to apply since the only sid's are the sid's of the users that have already logged in which are one domain admin and the local admin. not other admins have been given the opportunity to log on b/c of this error
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
Darius GhassemCommented:
Is this a DC or just a member server?
0
 
optelecomAuthor Commented:
This is just a member server with sharepoint 2007 in a ad2003 domain
0
 
Darius GhassemCommented:
And you have tried the register tweeks for this problem in Vista?
0
 
optelecomAuthor Commented:
no I have not, can you reference which tweaks to try
0
 
Darius GhassemCommented:
They are the same has the 2008 post I posted. I thought there was one I read when i had this problem with Vista that had 2008 Server listed with a different registry tweek then the above post.

I would check the local policy to see if you have restrict logon locally access.
0
 
tigermattCommented:

optelecom,

The article dariusg is referring to is http://support.microsoft.com/kb/947242.

-Matt
-tigermatt
0
 
optelecomAuthor Commented:
thanks for the posts but I do not have any sid's with .bak extensions
0
 
optelecomAuthor Commented:
the only sid's that are registered are the one domain admin and local server admin. no other profiles have been created or sid's added to the registry. I have tried all three articles and they do not seem to apply.
0
 
Darius GhassemCommented:
I know that is the weird part. Again try to look through your Local Policy in the control panel. Check to make sure you have the domain admins the ability to logon locally and not deny logon locally in the local security policy. Can they RDP intpo server?
0
 
optelecomAuthor Commented:
rdp is not working for anybody but the one DA
0
 
optelecomAuthor Commented:
Deny log on locally is not set in the local computer security policy
0
 
Darius GhassemCommented:
Are the Admins listed in Allow Logon locally?
0
 
optelecomAuthor Commented:
they were not individually listed but the Administrators group was there and all the users being denied were members of that group. I have added these users individually to the log on locally policy but the issue is still present
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.