Microsoft Server 2003- can't ping domain controller

Posted on 2009-12-20
Last Modified: 2013-11-21
I've just installed server 2003. I am trying to add a computer to the domain. I went through the steps of adding a user and adding a computer on the server. On the client machine- I right click on my computer, properties, computer name, then I click on change (to change computer name or join a domain.) where it says member of, I entered my domain name.... newserver.local. Then it gives me error message  A domain Controller for the domain Newserver.local could not be contacted.

So before I moved forward I pinged both machines to make sure there was no network issue. Client is able to ping server successfully. Server cannot ping the client. From the admin screen of the router I can see both nodes recognized and both have ip addresses. Server is able to access the www.

I'm stuck. Can someone please help!!!
Question by:pat_the_bat
    LVL 31

    Accepted Solution

    Check if firewall is enabled on DC. If so, either disable it or open up necessary port exceptions on DC.

    Ping nead to have incoming ICMP enabled, but ping from server to client shoultn't be necessary.

    Check DNS settings with ipconfig/all to ensure that it only uses internal DNS servers aware of the internal namespace. No external DNS servers, not even as alternate DNS server,

    Author Comment

    Turned off firewall. That made it so my client machine could join the domain. Then when I go to the Windows logon screen and I choose to login to the domain instead of the local computer, I get "Logon Message     The system cannot log you on now because the domain is not available"
    I am guessing there is something wrong with dns settings but unfortunately I am too much of a rookie to understand what it is. Appreciate some more direction.

    Also, what is the ettiquette here? The answer henjoh09 gave me did in fact solve the problem I posted, so I feel like I should accept as solution so he/she gets awarded those points, but I wanted to get more direction in the context of this correspondence. Should I make this a new post so that a new set of points would be awarded for the new problem that this solution uncovered? Please advise.
    LVL 31

    Expert Comment

    by:Henrik Johansson
    If primary question has been answered/solved, the question should be closed to keep the thread clean from spinoff questions. Better to ask a new question, but you can link the questions together by using 'related question' feature after first question has been closed.

    As I posted above, you nead to check the DNS settings with ipconfig/all command on the client that you don't use any external DNS servers listed that can't resolve the internal namespace. Configure client through either local TCP/IP properties or centralized DHCP options (can also be done with GPO) what DNS servers shall be used.

    Author Comment

    I set dns server as, which is the address of the server. Left alternate dns blank. Still get the logon message system cannot log you on now because the domain is not available.

    When I set the dns server to it allowed me to change the computer name/workgroup to join the domain, so it resolves that issue, but it does not resolve the issue of the windows logon message saying the domain is not available.

    Also, when I am logged on to the client as the local machine, I cannot access any internet pages unless I change the dns server back to (the router) which I am assuming is normal. Thought I would add to post in case that is relevant though.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Top 6 Sources for Identifying Threat Actor TTPs

    Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

    Have you considered what group policies are backwards and forwards compatible? Windows Active Directory servers and clients use group policy templates to deploy sets of policies within your domain. But, there is a catch to deploying policies. The…
    ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
    To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    10 Experts available now in Live!

    Get 1:1 Help Now