Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 406
  • Last Modified:

Unable to see computers outside of their OU

We have a Windows domain network with around 300 machines.

We recently built a new DC and ran it side by side with out old, for a transition

Old one was 2003 server, new one is 2008 R2 server. the upgrade went well and clients were able to login OK

However, we have an issue where some clients can only see computers in their OU

We checked the computer browser service on the DC is running
we also have a Windows 2003 server as our BDC

Event Viewer on the DC shows some errors like

The master browser has received a server announcement from the computer WSC03449 that believes that it is the master browser for the domain on transport NetBT_Tcpip_{2CB360C3-F991-4910-A1B5-8F6C6C733B5F}. The master browser is stopping or an election is being forced.

and from another server

The browser service was unable to retrieve a list of servers from the browser master \\dc1 on the network \Device\NetBT_Tcpip_{484C88A2-B8C2-4C5F-9D9E-23A6F55FC99C}.
 
 Browser master: \\WSCDC1
 Network: \Device\NetBT_Tcpip_{484C88A2-B8C2-4C5F-9D9E-23A6F55FC99C}
 
 This event may be caused by a temporary loss of network connectivity. If this message appears again, verify that the server is still connected to the network. The return code is in the Data text box.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.


0
wsc-it
Asked:
wsc-it
  • 4
  • 4
  • 3
1 Solution
 
DeadRatRacerCommented:
In which context are users searching? (XYZ application, Network Places, ?)
0
 
wsc-itAuthor Commented:
Network Places
0
 
Darius GhassemCommented:
You need to go on the client stating that it is the master browser and disable the master browser on this workstation

Change master browser in w2k or XP:
Go to Program files, Admin tools, services then in the right panel right click on computer browser and right click go to properties then from the startup list select Disabled. Or type regedt32, and scroll to this key change value to False
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Browser\Parameters IsDomainMaster=FALSE

http://www.howtonetworking.com/Windows/computerbrowser.htm#How%20to%20start/stop%20Master%20Browser%20on%20Win2K/XP

Make sure that the server if a PDC holds the domain master role. If you should only have one NIC enabled as well.

http://social.technet.microsoft.com/forums/en-US/winservergen/thread/c4e7941b-56f2-43ed-ab3c-1efc76bb1ddf
0
Choose an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

 
DeadRatRacerCommented:
Barring another issue like firewalling, I thought the DC should win against WSC03449. dariusg's post may do the trick, but if you do not mind, what is the Windows version of WSC03449?
0
 
wsc-itAuthor Commented:
The DC should be the master.

the version is Windows XP, its a laptop at a remote site
0
 
Darius GhassemCommented:
Doesn't matter what version the other system it is it thinks it is the domain master which is causing on other computers to think it is the actual domain master browser which is false.
0
 
wsc-itAuthor Commented:
Upon further research, it seems as tho only the computers on VLAN 10 which is our xx.xx.10.0 subnet can only see the computers in their OU

So for example

Only IT machines are on xx.xx.10.0/29 subnet (which is routable, everything works as normal)
Only these IT machines are in their own OU in AD
Only these IT machines see there computers in network places that are in there ou
0
 
Darius GhassemCommented:
That is because NetBios is not a routable protocol you must add a WINS server for this service to work properly across multiple subnets.
0
 
wsc-itAuthor Commented:
2008 R2 Server dosnt do WINS
So we left WINS running on our BDC which is on the xx.xx.1.0 subnet

Computers on our xx.xx.10.0 subnet still use this server as their WINS
0
 
DeadRatRacerCommented:
Did dariusg's first suggestion improve or change the situation?
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 4
  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now