• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 81
  • Last Modified:

GPO problem

Group Policy
In a regional office we have RODC on win 2K8 R2 since last few days I am trying to push a GPO to install a .MSI on client’s workstation but it doesn’t work.
1.      Today I added test machine in primary site to this GPO and installed the .MSI but still not working on reginal office.
2.      I am able to NSLOOKUP on client machine, ping host machines, Domain controllers , I can remotely to that machine with IP address not host name? This might be the issue or something else?
3.      In reverse lookup zone there is no entry for this site’s machines only few static.
4.      None of this site machines are accessible by host name but I can ping host names everything but can’t access with RDP, I am not sure what is the main issue with this site.
5.      .MSI file is placed in computer configuration and for computer accounts and all permission are ok for folders and .msi
Please help.
on clients machine i have saw event ID 1055 and 1058 source GPO.....

Regards
Ghairat
0
Abdul Wahid
Asked:
Abdul Wahid
1 Solution
 
yo_beeDirector of ITCommented:
1: Have to you run RSOP on the computer or user the Group Policy Result Wizard in GPMC?
2: Do you have Sites and Service properly configured?


Before going any further this information will be very helpful for people to give a more accurate solution.
1
 
Gene BlakeSenior Systems Engineer IIICommented:
You're correct, you are having some DNS issues.

Check that the DNS servers are properly configured to same servers.

Check the domains, Gateways, and Subnets are configured to the same settings
1
 
Ganesamoorthy STech LeadCommented:
0
The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

 
Abdul WahidAuthor Commented:
Yes The Site and services are working fine, i tested and syncing all client information with primary server.....

i checked all DNS and gateways everything is ok..
0
 
Abdul WahidAuthor Commented:
I left the GPO for a while and after few 2 days it works fine nothing changed
0
 
Abdul WahidAuthor Commented:
So it mean some RODC users need more time get updates from GPO
0
 
yo_beeDirector of ITCommented:
I find that RODC are really a waste of time.  There is no cost difference and I have never heard of someone just walking out with a DC under their arm.  

I think many others will agree with me.
1

Featured Post

The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now