Solved

Active directory users cannot logon to remote desktop when hamachi connection is down

Posted on 2013-01-07
4
747 Views
Last Modified: 2013-04-13
We have 2 domain controllers (Server A and Server B) connected and replicating over a LogMeIn Hamachi VPN connection.  Both servers are running Terminal Services.  We want to turn Server A off and decommission it.  When we turn server A off users cannot log in to remote desktop on server B.  They get an error that no logon server are available.  How do I force Server B to serve logins for remote desktop on Server B without Server A being available?
0
Comment
Question by:ciosystems
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38751956
check the DNS settings on the client /Server/DC follow below link and make currections accordingly

Best practices for DNS client settings on DC and domain members
http://abhijitw.wordpress.com/2012/03/03/best-practices-for-dns-client-settings-on-domain-controller/
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38752141
You say both are terminal servers but is server A also a domain controller?
0
 

Author Comment

by:ciosystems
ID: 38752197
Yes. Both are DC's. We used Hamachi to help migrate from office to colo.
0
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 38755870
Firstly it is most definitely not recommended to run terminal services on a domain controller for security reasons.
"Installing a terminal server on an Active Directory domain controller is not recommended. Allowing users to run programs on a domain controller could create security risks and performance issues."
http://technet.microsoft.com/en-us/library/cc742817(v=ws.10).aspx

However, that was not the question.  You will need to move all 5 FSMO roles from the server at site A to site B.  Has this been done?
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question