GPO ball up my computer

I have a problem with my computer  - I can not copy or paste anything. The computer can not be access from any other computer on the network, but it can access the server and workstations.

My computer is on a network that runs AD and the Enterprise Domain have working on the GPOs  -  I noticed that we were not longer administrators on our computer.  After talking with them  the Enterprise Admin made some changes to the GPO and asked me to perform a gpupdate /force.  After running the command I could no longer access the network correctly- the Enterprise Admin could not see my computer on the network even though I had an IP address (which I could ping); I could ping the DHCP and DNS server) but he couldnt access my computer at all.  We tried to do a restore from a restore point, but the GPO policy prohibited this.  Im also getting error (error5: access denied) when I try to start RPC  which is not starting as it use to.   To further the problem after restarting my computer and trying to go to the Last Known good config that didnt work.

Thinking that I would just copy the files from my desktop which I can access, however; I can not copy them to another copy or server  -- nor can I access my computer from another machine on the network.  From my computer I can not copy or paste anything, but I can open access other machines on the network.  Also I can not access the Start bar at all  it is hidden at the bottom of the screen.    

This is a mess, at this point  how can I just get the documents off my desk (copy them) and the reformat the computer???
misterdAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

piattndCommented:
What's the error message you receive when others try to access your machine?  Are they getting access denied?
0
PeteJThomasCommented:
Can you boot into safe mode? If so does that help at all?

You could also either nab the HDD out, connect it to a USB HDD enclosure, and just drag stuff onto another PC or burn it off to CD/DVD from another PC...

Or you can try one of the many bootable environments (such as BartPE: http://nu2.nu/pebuilder/) to boot into an environment outside of your Windows installation to copy the files off to an external USB drive or something.

Just throwing in some possible ideas! :)

Pete
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
zelron22Commented:
He probably can't access your machine because the firewall has been activated.  That would prevent PING and other remote access.

0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

piattndCommented:
Just FYI to the poster, if the issue was a GPO related issue, your domain admin can move you into an OU that doesn't have ANY GPOs associated to it and the issue should clear.  Reboot your machine after he's moved your machine account out of that OU and it will remove all previously associated GPOs.

That's also a test your domain admin can use to identify WHICH GPO caused the issue.
0
PeteJThomasCommented:
That may work, although I think a lot of GPO settings are persistent, and don't actually revert back to normal once the GPO is removed - You actually have to continue to use the GPO, but with whatever new settings you want. It's worth a shot though by all means!

Pete
0
piattndCommented:
I forgot to also specify, if it was a GPO assigned to your user OU or Computer OU, that's the account they need to move.  They should know what they did and I'm kinda surprised they haven't undone it if it truely is a GPO issue.

I agree with Pete though, it's possible removing the GPO may not revert all changes.  For example, if the GPO forced the firewall to be turned on, removing the GPO may not revert that change AND the firewall may prevent communication with the DC to apply the new GPO removing the firewall, therefore having to manually disable the firewall with local admin rights.  Good catch Pete.
0
PeteJThomasCommented:
And I also agree that I think it's daft this happened in the first place and that they can't sort it. What do we always do before implementing ANYTHING in a live environment? Thoroughly test it, that's what!!! :)

Pete
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.