win 7 cannot logon to domain via cisco 2950 switch and vlans

Posted on 2014-07-13
Last Modified: 2014-07-21

task 1

I am running a win 2008 local single domain network and I am using a cisco 2950 with no configurations just as a hub and my win 7 desktop can logon to the domain successfully.

task 2

I have now linked & configure 3 switches to provide fault tolerance as below:

vtp server (primary root bridge)
 - master dc/ad/dns/dhcp - plugged into primary root bridge
- fileprintwds server

- vtp server (secondary root bridge)

vtp client (access switch)
-  win 7 desktop - when I logon to the domain my desktop logs on with the temporary profile  ?


I am currently only using the default 'vlan 1' using same subnet: 192.168.0.x/24 on network and I can ping: master dc from access switch successfully.

note: all root ports & designated ports & altn/blk ports show as expected
Question by:mikey250
    LVL 10

    Expert Comment

    Just to clarify a few things:  
    What are these additional switches providing fault tolerance against, the internet going down, or against internal issues?

    You mentioned you can ping the master DC from the switch, do you mean using some config interface on the switch itself, or do you mean using your PC on the switch?  (I'd like to know results of both)

    If you can ping the server from the PC, then the network is setup properly, and something else is going on:  I would probably start with DNS issues.  What happens if you ping by NAME rather than IP (from the PC)?

    Accepted Solution

    hi kobus,

    I can now logon from my access switch via win 7 desktop without the (temporary profile) using default vlan 1 so all should be good now.  there was obviously something wrong with my domain user account, as I created a new domain user account... so problem solved.

    - the secondary root bridge is to guard against internal issues, ie loss of the primary root bridge.

    - as I am currently using 'layer 2' switches, I was going to bolt on my 'router' for the layer 3 aspect and at the other end of the router my virgin media connected to the internet is also set to: 'modem' enable that provides me with the 'public ip address'......on the router I was going to configure the 'cbac' for the firewall part and I was going to plug to cables from the virgin media box to my router via 'int fa0/0 & int fa0/1' and configure 'hsrp'.

    note: the above is due to what I currently have.
    LVL 10

    Expert Comment

    >>... so problem solved.

    Great, so it wasn't a networking issue at all! Using another account was a good test.

    >>- the secondary root bridge is to guard against internal issues, ie loss of the primary root bridge.
    Wow, I've never even heard of this.  Or perhaps I misunderstand what these bridges are doing; Are they simply acting as LAN switches, or are they going to another office via dedicated T1, or something like that (In which case fail-over, and the term "bridge" makes a lot more sense)?

    >>- as I am currently using 'layer 2' switches, I was going to bolt on my 'router' for the layer 3 aspect
    Since it sounds like you are trying to improve redundancy, I should mention: it sounds like you will still have a single point of failure for the internet, the router.

    Author Comment

    hi korbus,

    well that's what I was taught, however out of date, due to 'rstp' instead but I am using standard stp.  you can have multiple 'vtp server' but there are 2 methods to set them up depending on how old or what ios you have.  but yeah if my primary root bridge goes down then the secondary root bridge activates and traffic is sent in the other direction.  I am though talking from a local position anyway but as far as I know it is the same if remotely connected switches, but if not then I presume 'rstp' is used instead of 'standard stp'

    with 'rstp' each vlan has its own root bridge per vlan so it also provides some sort of load-balancing to.

    regarding my layer 3 aspect as you mentioned above well yes I only have 1 isp connection, just as a test so if it works I would then know what to do when I get a 2nd isp connection for fault tolerance if I was to do this or even required.

    Author Comment

    regarding the primary and secondary switching you have to know what: root ports, designated ports, alternate/block, via show span and when you unplug cables to test, you will see the go through the election process and change, ie

    - blocking, listening, learning, forwarding or whatever.
    LVL 10

    Expert Comment

    Thanks for the feedback :)
    Since you got it working, may I suggest you select your post about the domain accounts, as the solution.

    Author Closing Comment

    there was an issue with my domain accounts, so I created a new one which solved the problem.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Suggested Solutions

    The worst thing when starting a new job is when the previous Network Administrator left behind no documentation. How do you get into the devices? If you've been in this situation or just accidently mistyped your password, this article will hopefully…
    This tutorial will go through the steps required to write a script that will back up the configuration settings of a HP-ProCurve switch. You will need to get the following things to follow this tutorial: Telnet Scripting Tool e.g. TST10.exe …
    In this sixth video of the Xpdf series, we discuss and demonstrate the PDFtoPNG utility, which converts a multi-page PDF file to separate color, grayscale, or monochrome PNG files, creating one PNG file for each page in the PDF. It does this via a c…
    Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    10 Experts available now in Live!

    Get 1:1 Help Now