Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 379
  • Last Modified:

Why workstation cannot create a domain list?

origin: single network single domain (Windows 2003):
default gateway: 10.0.1.1
svr-dc-dns1: 10.0.1.11
svr-dc-dns2: 10.0.1.12
svr-exch: 10.0.1.13; dns = 10.0.1.11/12
workstations use dhcp.
pc1: xp joined to domain 'mydomain'.
pc2: xp joined to domain 'mydomain'
all servers and workstations are in the same network.

Changes made:
segment workstations from servers as follow:
servers stay the same
workstations are put in 10.0.2.0/24 network
use dhcp to dispatch ip (10.0.2.x) and dns (10.0.1.11/12);
workstations are able to ping servers by ip and host name;
There are no dc in 10.0.2.x network.
pc1: ip=10.0.2.101, dns=10.0.1.11, able to ping servers by ip and host names.

remove pc1 from 'mydomain': ok
join pc1 back into 'mydomain': ok
when user logon to 'mydomain' from pc1 for the first time, a window pop up saying 'Please wait while the domain list is created'. it never finishes.
Q#1. What is really going on when the first user logon from a newly joined workstation? What networking protocols are required for this procedure? For example, is it unicast/multicast/broadcast?
Q#2. If a new domain controller is put in the same network as the workstation, will that resovle the issue?

Thanks a lot.

Thanks.

0
richtree
Asked:
richtree
4 Solutions
 
Krzysztof PytkoActive Directory EngineerCommented:
Check if these ports are opened on your router/firewall

TCP/UDP 135
TCP/UDP 137 (NetBIOS) -> NetBIOS Domain Name uses it
UDP/138
TCP/139
and other necessary ports. Check this list
http://technet.microsoft.com/en-us/library/bb727063.aspx

I know that is for AD replication but some of them are used also by clients to get authentication

Regards,
Krzysztof
0
 
Paul SDesktop Support Manager / Network AdministratorCommented:
You can press ctrl alt del while it builds the list to cancel early. also, did you add the new subnet to the AD site in "AD sites and services" ??

0
 
richtreeAuthor Commented:
All ports are open.
The new subnet is not added to the AD site.
Is it required? Why?
Do I also need to add a DC in the new subnet?
If ok, please comment on Q#1.
Thanks.
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
Krzysztof PytkoActive Directory EngineerCommented:
OK, one more thing. Check on your client PC if in NIC properties under advanced properties on "WINS" tab you have enabled "NetBIOS over TCP/IP"? If not, enable it and re-try

Krzysztof
0
 
richtreeAuthor Commented:
I will check and update here.
0
 
SandeshdubeyCommented:
1- Press CTRL+ALT+Del Twice to skip the domain list creation

2- Login to the system and check if the NIC DNS address is pointed to the internal DNS server , because External DNS servers does not know our internal DNS servers and so the computer can not make the domain list because it can not find any domain ( Domain list creation depends on the DNS )

3-Try to preset your logon domain under HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\DefaultDomainName (REG_SZ) before rebooting

4-Go to Network Connections and in "Advanced TCP/IP Settings" under "DNS" Tab  and Make sure that the  "Use this connection's DNS Suffix in DNS registration" is checked and you can ping the server using its FQDN.

5- Login to the computer locally and also check if the windows firewall is not turned on.

6-In the command prompt enter  " Ipconfig /Flushdns and Ipconfig /Registerdns " to renew your DNS configuration .
 

0
 
richtreeAuthor Commented:
thanks.
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

Tackle projects and never again get stuck behind a technical roadblock.
Join Now