FIT-SS
asked on
windows 2008 server test lab problem with domain admin user
I have created a test lab according to the microsoft test lab documentation. TEST LAB DOC
I have created DC1.
Created Domain Admin User1 in ADUC.
Created App1 and had it join the domain with user1 credentials.
Now whenever I log into App1 as User1 I have no rights whatsoever.
I can't make any changes, I can't ping anything (unable to contact ip driver).
If i log in with local admin acct, everything works fine.
what am I missing?
I have created DC1.
Created Domain Admin User1 in ADUC.
Created App1 and had it join the domain with user1 credentials.
Now whenever I log into App1 as User1 I have no rights whatsoever.
I can't make any changes, I can't ping anything (unable to contact ip driver).
If i log in with local admin acct, everything works fine.
what am I missing?
Andy M
Check the local administrators group on App1 - see if domain admins are listed as members of that group.
ASKER
when i try to add it says "domain admins" is already of member of group admin
pls check if there is local user with named "User1".
ASKER
there is no local user1.
login with local admin and try to rename the user1 profile.
ASKER
I deleted the user1 and user2 profiles. Now when I login I get the error:
"you have been logged on with a temporary profile" with both of these users.
"you have been logged on with a temporary profile" with both of these users.
ok, got it.
Go to registry
HKEY_LOCAL_MACHINE \ SOFTWARE\ Microsoft\ Windows NT \ CurrentVersion \ ProfileList
and delete all keys end with .bak
Go to registry
HKEY_LOCAL_MACHINE \ SOFTWARE\ Microsoft\ Windows NT \ CurrentVersion \ ProfileList
and delete all keys end with .bak
ASKER
Thanks. did that and now I don't get logged in with Temp profile but still do not have admin rights.
try remove and rejoin the domain.
if still it not works, login as local admin and remove the "domain admin" group from "local administrator" group and readd.
if still it not works, login as local admin and remove the "domain admin" group from "local administrator" group and readd.
ASKER
rejoined and same issue.
Domain admin does not show up in local admin, even though when I try to add it says it is there already.
Domain admin does not show up in local admin, even though when I try to add it says it is there already.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Can you post a screenshot of APP1 logon screen with User1 as a username
ASKER
Ugg. I can't believe i forgot to sysprep. This completely resolved the issue.
Thanks.
Thanks.