I have a server in the domain that doesnt seem to be getting GPO data correctly
I have a 2008 R2 server on the domain and I went to create a share from one of its directories and when I tried to add users to the security permission for the share the server only will recognize local accounts not domain accounts when I change the location where its getting the users from it doesnt give me any other option besides the local server I cant point it to the domain. I did a gpresult and it shows its getting its GP rules from a old DC server that is still on the network but no longer has the role of DC. I tried to do a gpupdate but it failed I also did a reboot and no changes took place. How can I get it not only to see the domain for folder permissions but also change to get its GPO info from a valid DC on the network?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Hi,
Is ping enablad between the server and the Domain Controllers?
- gurutc
Is ping enablad between the server and the Domain Controllers?
- gurutc
ASKER
Thanks removing and adding it back to the domain worked
Is this server located in a remote site? Are you sure you don't have any stale DC records on your network. Make sure the old server is not in Active Directory Site and Services.
What roles, features and applications is it running? It can't be that important of a server because the old server was demoted sometime ago.
My recommendation (only if its not a critical server example Exchange) would be to remove this server from the domain reboot, and add it back in.
DirkMare