Solved

Unidentified Network (Public Network) after running dcpromo on 2008 server

Posted on 2009-07-08
7
2,054 Views
Last Modified: 2012-05-07
I've added a 2008 domain controller to the network to replace the current 2003 domain controller.  ADPREP ran fine and I ran DCPROMO on the 2008 server but after the first reboot the server lost network connectivity and it seems the reason is because now instead of using the domain network profile it's using the Public one because it thinks it's on an "unidentified network".   I cannot connect to or out of the 2008 server anymore, not even pings and the Network and Sharing Center says I have Local Access only.  

Also, the domain policy enabled the firewall and turned off the standard profile firewall in the registry as part my troubleshooting.   netsh shows the opmode as enabled and it won't let me disable. (if this is a firewall issue)

When the server was a member server everything was fine.

Thanks.
0
Comment
Question by:daboyle
  • 4
  • 3
7 Comments
 
LVL 3

Accepted Solution

by:
AdoBeebo earned 500 total points
ID: 24811667
Ping won't work in Public profile mode as ping is only available when you enable File Sharing in Network & Sharing Center, unless you make a seperate Firewall entry for it. Public profile is going to stop most in/out traffic as it is the profile that is designed for connecting to an unsecure hotspot in a cafe.
Try deleting all of the existing network locations, reinstalling the NIC with the latest driver from the manufacturer, checking the NIC settings match up to your network settings (e.g. flow speed), setting the new DC to DHCP and testing it on the same switch as the DHCP server.
After it rebooted did the wizard finish successfully? Any errors in the Event logs? Although I maybe wrong, I doubt this is a firewall issue. Might be worth running gpresult and see what policies have applied to it ...
0
 

Author Comment

by:daboyle
ID: 24812929
I'll go try that now.  

The event logs are full of errors about not being able to contact the domain.   When the server came back up I don't think it did finish because it couldn't see the network.   I see on the 2003 servers that there isn't any records in the DNS except for it's one A record, it's own DNS however looks like it syncronized and is correct with all three servers.  The existing two domain controllers have replication entries for the new server and are trying to replicate with it.
0
 

Author Comment

by:daboyle
ID: 24813134
I tried what you suggested and have the same problem.   I tried a different NIC as well and got the same result.
0
Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

 
LVL 3

Expert Comment

by:AdoBeebo
ID: 24813178
Have you run gpresult and has it picked up the Domain Controller policy?
0
 
LVL 3

Expert Comment

by:AdoBeebo
ID: 24817852
Also, did you run domainprep and forestprep before bringing up the new 2008 DC?
0
 

Author Comment

by:daboyle
ID: 24818060
It's working now but I don't actually know what was wrong.  Yesterday as part of troubleshooting I tried the built in Broadcom NIC that was in the server (I was using an intel card) and I experienced the same problem so I didn't think it was a bad NIC and switched back to the original.    I tried it again this afternoon and the Broadcom network card worked.    I'm not sure what has changed between yesterday and today, I had the firewall off yesterday and I turned it back on today but I dont' think that would be it.

It wasn't a TCP/IP setting and because nothing changed in the intel adapter setup from before and after the DCPROMO I can't explain it.   Maybe it was just a coincidence that the NIC failed when it did.   Whether it's a hardware issue or not I don't know, I'll have to try it in a spare server.

Thanks for your help.   And the server has replicated now with the others and it looks good.
0
 

Author Closing Comment

by:daboyle
ID: 31601283
Your thinking around the network adapter being the problem was correct.
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Set time on server to sync with the internet clock 22 72
vmdk greater than 2TB 2 56
Server 2008 R2 and Windows 10 Admin Templates 7 38
TLS/SSL Diable 3DES ciper suites 4 30
I was supporting a handful of Windows 2008 (non-R2) 2 node clusters with shared quorum disks. Some had SQL 2008 installed and some were just a vendor application that we supported. For the purposes of this article it doesn’t really matter which so w…
Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question