Solved

Users dropping off the Domain

Posted on 2011-03-06
13
767 Views
Last Modified: 2012-05-11
About once a week, I have 1-2 PC's that will just not join the domain. I will have users or PC's drop off the domain for no reason. Once you log in as a local admin and rejoin the PC back to the domain the PC and the user can log-on just fine. What gives? We have a 2003 & 2008 AD scheme running side-by-side. We are migrating from 2003 to 2008 just moved the print ques. More to follow, Could that be causing the issue?  
Please advise  DP -Saxman
0
Comment
Question by:dpsaxman
13 Comments
 

Author Comment

by:dpsaxman
ID: 35052414
Looking for an answer this week.  
0
 

Expert Comment

by:stealth2549
ID: 35052516
Most common cause is that another PC on the domain has the same name.  The PC account will be deleted from AD if 2 computers with the same name are logged in simultaneously.  Can you verify if the user accounts have experienced any issues also?
0
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 35052533
Need to be more specific....what do you mean by not joining the domain?  What are the errors?  What do you mean by dropping off the domain?

I would start by looking at event logs both on the workstation as well as the servers for any AD issues.
The 2003 and 2008 domain controllers should have identical copies of AD.  Make sure there are no replication issues.
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 

Author Comment

by:dpsaxman
ID: 35052956
So what is going on to be clear is, That the user will dock his laptop or turn on his desktop, And he will get "The user or computer is not trusted on this domain. Please contact your system administrator".

This happened to people from different depts including the CEO. And these are users and PC's, that had been on the network before with no issues. This is coming from different points and users and depts. So I am am thinking AD is playing a role on this. Just not sure where.
0
 
LVL 3

Expert Comment

by:kawamuracd
ID: 35053287
You may want to check the speed settings on the user's nic. Set the Speed & Duplex to something other than Auto Negotiation. We have a few machines that used to do that. We set it to use 100 Mbps Full Duplex, the nic could go up to 1.0 Gbps Full. I don't know if it will help you but it worked for the handful that we had.
0
 

Author Comment

by:dpsaxman
ID: 35053324
kawam..
That would be odd that one day it would work, and the next day not without a settings change. So I an not sure about making a change on the system like that, Because after you re-join the domain the system has no problems after that.
0
 
LVL 26

Expert Comment

by:MidnightOne
ID: 35177417
Are the clocks on the troubled systems synced with the DC holding the PDC Emulator role?
0
 

Author Comment

by:dpsaxman
ID: 35177449
I am not sure about the PDC Emulator role. I will have to check and get back with you on this.
0
 
LVL 14

Accepted Solution

by:
Burns2007 earned 500 total points
ID: 35178018
It sounds like you probably have a tombstoned domain controller that is no longer replicating with the other DCs. PCs reset their computer account password every 30 days or so, and if they reset the password with one domain controller that isn't replicating, then when they try to connect to another domain controller they will appear to "fall off the domain"

Use Active Directory Sites and Services to check the replication between all your domain controllers is working correctly.
0
 
LVL 29

Expert Comment

by:pwindell
ID: 35180649
We have a 2003 & 2008 AD scheme running side-by-side.

That is impossible.  There can only be one scheme,...and it would have to be 2003 since it is impossible for 2003 Dcs to operate at a 2008 level.  Now if you mean that you have both a 2003 Domain and a separate 2008 Domain with a Trust between the two then you need to make that clear.
0
 

Author Comment

by:dpsaxman
ID: 35229039
Thank you very much.
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
An article on effective troubleshooting
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

792 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question