Link to home
Start Free TrialLog in
Avatar of optelecom
optelecom

asked on

Administrators unable to log onto Windows server 2008, user profile service failed to logon user profile cannot be loaded

We have recently come across an issue where only one domain administrator can access the windows 2008 server. all other users recieve the "user profile service failed to logon user profile cannot be loaded". We have tried previous articles in regards to the hives but have had no success. Any ideas on what to look for?
Avatar of Darius Ghassem
Darius Ghassem
Flag of United States of America image
Avatar of optelecom
optelecom

ASKER

I did review this post but it did not appear to apply since the only sid's are the sid's of the users that have already logged in which are one domain admin and the local admin. not other admins have been given the opportunity to log on b/c of this error
Avatar of Darius Ghassem
Darius Ghassem
Flag of United States of America image
Is this a DC or just a member server?
Avatar of optelecom
optelecom

ASKER

This is just a member server with sharepoint 2007 in a ad2003 domain
Avatar of Darius Ghassem
Darius Ghassem
Flag of United States of America image
And you have tried the register tweeks for this problem in Vista?
Avatar of optelecom
optelecom

ASKER

no I have not, can you reference which tweaks to try
Avatar of Darius Ghassem
Darius Ghassem
Flag of United States of America image
They are the same has the 2008 post I posted. I thought there was one I read when i had this problem with Vista that had 2008 Server listed with a different registry tweek then the above post.

I would check the local policy to see if you have restrict logon locally access.
Avatar of tigermatt
tigermatt
Flag of United Kingdom of Great Britain and Northern Ireland image

optelecom,

The article dariusg is referring to is http://support.microsoft.com/kb/947242.

-Matt
-tigermatt
Avatar of optelecom
optelecom

ASKER

thanks for the posts but I do not have any sid's with .bak extensions
Avatar of optelecom
optelecom

ASKER

the only sid's that are registered are the one domain admin and local server admin. no other profiles have been created or sid's added to the registry. I have tried all three articles and they do not seem to apply.
Avatar of Darius Ghassem
Darius Ghassem
Flag of United States of America image
I know that is the weird part. Again try to look through your Local Policy in the control panel. Check to make sure you have the domain admins the ability to logon locally and not deny logon locally in the local security policy. Can they RDP intpo server?
Avatar of optelecom
optelecom

ASKER

rdp is not working for anybody but the one DA
Avatar of optelecom
optelecom

ASKER

Deny log on locally is not set in the local computer security policy
Avatar of Darius Ghassem
Darius Ghassem
Flag of United States of America image
Are the Admins listed in Allow Logon locally?
Avatar of optelecom
optelecom

ASKER

they were not individually listed but the Administrators group was there and all the users being denied were members of that group. I have added these users individually to the log on locally policy but the issue is still present
ASKER CERTIFIED SOLUTION
Avatar of optelecom
optelecom
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial