GP errors

Posted on 2012-04-10
Medium Priority
Last Modified: 2012-07-21
I seem to be having issue with some of our servers within our domiain generating these errors on a regular basis:

Windows cannot access the file gpt.ini for GPO CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=ldc,DC=*domainname*,DC=co,DC=uk. The file must be present at the location <\\*DOMAINNAME*\sysvol\*DOMAINNAME*\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}\gpt.ini>. (The format of the specified network name is invalid. ). Group Policy processing aborted.

and then we would recieve the error:

Windows cannot query for the list of Group Policy objects. Check the event log for possible messages previously logged by the policy engine that describes the reason for this.

We have recently added 2 new windows server 2008 R2 Domain controllers to the domain using forest functional level of Windows server 2003.

Does anyone know a way I can stop these errors from being generated.

Question by:ccfcfc
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 8
  • 4
  • 2
LVL 10

Expert Comment

ID: 37827172
Is this the DC in which FRS service is running and you are getting the errors?

Upload "repadmin /showrepl dc* /verbose /all /intersite >c:\replication.txt"

And also

dcdiag /v /c /d /e /s:dcname >c:\dcdiag.txt
LVL 59

Expert Comment

by:Darius Ghassem
ID: 37827567
Post a plain dcdiag without switches. Seems like the Windows 2008 Server aren't fully replicated which we can fix pretty easy but I need to make sure that is the problem

Author Comment

ID: 37828142
here you go

see attached

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

LVL 59

Expert Comment

by:Darius Ghassem
ID: 37828159
Check your DNS settings you should be only pointing to internal DNS servers only in the TCP\IP properties
LVL 10

Expert Comment

ID: 37828378
Check the Primary DNS servers configured .  Point it to local host and to the Secondary DNS server to the  nearest available DC .

Author Comment

ID: 37831492
We seem to be getting entries in a few member servers in the domain with the following :-

Windows cannot access the file gpt.ini for GPO CN={31B2F340-016D-11D2-945F-00C04FB984F9},
CN=Policies,CN=System,DC=ldc,DC=intamac,DC=co,DC=uk. The file must be present at the
location <\\ldc.intamac.co.uk\sysvol\ldc.intamac.co.uk\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}\gpt.ini>.
(The format of the specified network name is invalid. ). Group Policy processing aborted.

Source: userenv
EventID : 1058
Type error
LVL 59

Expert Comment

by:Darius Ghassem
ID: 37832486
Please post ipconfig /all

Are these happening on all clients or servers?

Author Comment

ID: 37832521
here you go:

Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.

C:\Documents and Settings\*******>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : LDC-DC-01
   Primary Dns Suffix  . . . . . . . : ldc.intamac.co.uk
   Node Type . . . . . . . . . . . . : Unknown
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : ldc.intamac.co.uk

Ethernet adapter NIC Team 1:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : BASP Virtual Adapt
   Physical Address. . . . . . . . . : 00-19-B9-EE-48-1F
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . :
   Subnet Mask . . . . . . . . . . . :
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . :

C:\Documents and Settings\*(((****>

No this network only hosts servers and NO workstations.


Author Comment

ID: 37833109
These errors are only happening on a few member servers in the domain
LVL 59

Expert Comment

by:Darius Ghassem
ID: 37833893
Have you run dfsutil /purgemupcache

Author Comment

ID: 37923341
IT seems possibly that a "non microsoft" service is the issue so, running "start msconfig" and disabling these services and waitng to see if GP repliactions occurs.
Problem then is, working out what services is creating the problem.

Author Comment

ID: 38182390
I've requested that this question be closed as follows:

Accepted answer: 0 points for ccfcfc's comment #37923341

for the following reason:

no other solution has been found.

Accepted Solution

ccfcfc earned 0 total points
ID: 38189763
All it seems after long discussions with Microsoft and our Anti-Virus provider, Kaspersky, we seem to have found the solution.

It seems that the the Primary DC was the only server which was having the issue with the group policy as other servers which was using the secondary DC on our network were all downloading the group policy OK. Also the affected clients, I moved over to the secondary server, and seems to be working OK.

Therefore having a look at the config, our primary DC has Symatec Endpoint Installed and running which i believe is causing the issue as the secodnary DC has Kaspersky Endpoint installed and works fine. Removed AV and seems to be working OK again.

Author Closing Comment

ID: 38209868
This is the solution after many investigations with Kaspersky and Microsoft.

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question