After adding Active Directory/Domain Controller to a Windows 2003 Terminal Services server Remote Desktop to any domain controller now fails with "...you must be granted Allow log on through "...
Posted on 2009-02-18
After adding a Domain Controller role (for use as backup domain controller) to an existing Terminal Services server running Windows 2003 R2 SP2, all users, including domain/Administrator are now getting "To log on to this computer, you must be granted Allow log on through Terminal Services..." I've verifiied security in Group Policy as well as Domain Controller Security settings. One thing I have noticed is the SysVol does not replicate. As a matter of fact Sysvol and Netlogon shares never got created. I've attempted to follow MS KB 315457, but when it comes to add a DWORD in HKEY_LOCAL_MACINE\SYSTEM\CurrentControlSet\Services\NtFrs\Parameters\
Replica Sets\ there is no GUID key on the original domain controller. There is a GUID on the backup domain controller but not on the original. Should a key be created on the original with the sam GUID as the backup and continue with the process?