Group Policy processing on Clustered Servers

Posted on 2011-05-13
Medium Priority
Last Modified: 2012-05-11
We have 2 windows 2003 servers which are added to the domain and are clustered. Those 2 servers are multi-homed(Dual NIC cards) as required by Clustering. We are facing the issue while logging to the Servers as the logging is very slow it is taking 15-20 mins. When I run gpupdate /force it hangs and after a long time it gives GP processing aborted as time expired. we are getting USERENV 1054, 1038 etc in the App log of the servers.
I am able to ping the domain name
I am able to connet to sysvol folder from server
Subnet is associated to proper site.
cheked the network card binding order
DNS is fine and is pinging
No issue in DC logs

Is there amything special which we have to do for clustered servers. How to get the policies applied.
Question by:Neo_78
  • 2
  • 2
LVL 10

Expert Comment

ID: 35753429
Are the secondary NICs on their own dedicated network or are they pushing through the rest of the LAN with everyone else?
What else do the servers do?

Author Comment

ID: 35753558
Secondary NICs are having their own network for heartbeat. There is not other role on the server.
LVL 10

Expert Comment

ID: 35758233
The DNS server that the clients are reaching during logon holds the Domain records?
1054 is a DC timeout, failure to contact the DC during logon to process Group Policy

Do any of your GPOs disable SMB signing? I found this Blog post linking to a KB regarding USERENV 1038 and 1050 series errors.

Accepted Solution

Neo_78 earned 0 total points
ID: 35829339
The issue got resolved after we have created the computer account for the cluster name of the servers.
LVL 74

Expert Comment

by:Glen Knight
ID: 37485347
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microsoft Office 365 is a subscriptions based service which includes services like Exchange Online and Skype for business Online. These services integrate with Microsoft's online version of Active Directory called Azure Active Directory.
I’m willing to make a bet that your organization stores sensitive data in your Windows File Servers; files and folders that you really don’t want making it into the wrong hands.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

612 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question