<div>
Is the gpo supposed to apply?<br />
Check the GPO to make sure it has no errors that prevented its writeout .<br />
<br />
In gpmc make sure the ad and sysvol counters for user and computer entries are the same.<br />
<br />
If eithe user or computer have different counters for ad vs sysvol, it would suggest an error in the respective GPO section.
</div>


<div>
Hi,<br />
<br />
Its the &quot;Default domain policy&quot; (31B2F340-016D-11D2-945F-0<wbr />0C04FB984F<wbr />9)...<br />
<br />
1) Are you getting this error on the DC? <br />
2) How many Dcs are in the network? Are you getting the same error on all DCs? Is the replication between the DCs correct?<br />
3) When did you start getting this error?<br />
4) Check the permission of the gpt.ini<br />
5) Check “TCP/IP Netbios Helper” service is started and set to automatic.<br />
6) Check if there any dns issue? (RUN this on the DC dcdiag /test:dns).<br />
7) If DNS and, AD replication and File replication is working fine, reboot the DCs first and check before going further.<br />
<br />
Thanks,
</div>


<div>
Dear Abhi<br />
<br />
I have applied your suggestions &amp;&nbsp;done as per your guidance but it's still not working .please help me out from these issues &nbsp; Answer of your question as per given below..<br />
<br />
1) Are you getting this error on the DC? :-yes right now we have only 1 DC<br />
2) How many Dcs are in the network? Are you getting the same error on all DCs? Is the replication between the DCs correct?:- only 1 DC in my Domain<br />
3) When did you start getting this error?: 60 days ago...I'm tried to fix but unfortunately unsuccessful in all attempt<br />
4) Check the permission of the gpt.ini:-set Everyone permission to Hidden GroupPolicy folder <br />
5) Check “TCP/IP Netbios Helper” service is started and set to automatic.:-running<br />
6) Check if there any dns issue? (RUN this on the DC dcdiag /test:dns).:-Succeed <br />
7) If DNS and, AD replication and File replication is working fine, reboot the DCs first and check before going further.<br />
<br />
Thanks,
</div>


<div>
Hi,<br />
<br />
Seems like the sysvol share is corrupted. Could you check the below:-<br />
<br />
1) Check if SYSVOL and NETLOGON share exists on the server? Run the command &quot;net share&quot; ..... You can output this to a text file (net share &gt;&nbsp;share.txt) and refer the text file to find.<br />
<br />
2) Check which file replication is using (FRS or DFS)? --&gt; Refer:-<a href="http://www.itprocentral.com/how-to-identify-the-replication-technology-in-use-by-active-directory/" rel="ugc">http://www.itprocentral.com/how-to-identify-the-replication-technology-in-use-by-active-directory/</a><br />
<br />
3) Can you provide me the error messages you are seeing in the File replication &nbsp;or DFS EVENTLOGS?<br />
<br />
4) Take a backup of the SYSVOL (C:\Windows\SYSVOL) folder (as a best practice) before performing any further tasks.<br />
<br />
5) Do you have any valid backup before the time of the issue? Atleast the SYSVOL folder, in case if it had corrupted and not present now?<br />
<br />
I hope you have to refer the article (<a href="https://community.spiceworks.com/topic/1892613-event-id-4012-failed-sysvol-replication-on-a-standalone-dc" rel="ugc">https://community.spiceworks.com/topic/1892613-event-id-4012-failed-sysvol-replication-on-a-standalone-dc</a>) to fix the SYSVOL replication issue, if you verify the SYSVOL is broken and it is using DFS as the file replication method.<br />
<br />
Let me know the results and I will check further...<br />
<br />
Thanks,
</div>


<div>
Dear Abhi <br />
<br />
1.According to you last suggestions, i have done changes &amp;&nbsp;verifications on my DC.there I can see my Netlogon&amp;Sysvol folders are already shares<br />
2. By running the ADSIdit.msc successfully checked whether replication running or not .Replication is running on my DC__ CN=DFSR-GlobalSetting &gt;&nbsp;&quot;msDFSR-flags &nbsp; 48&quot; all set .<a href="https://filedb.experts-exchange.com/incoming/2017/10_w44/1202277/ADSIdit.png" target="_blank" title="ADSIdit.msc snap shot (96 KB)"><img alt="ADSIdit.msc snap shot" class="file-block lazyload" style="max-width: 800px;" data-src="https://filedb.experts-exchange.com/incoming/2017/10_w44/800_1202277/ADSIdit.png" /></a><br />
3.here is the snap of my DFS eventlogs <a href="https://filedb.experts-exchange.com/incoming/2017/10_w44/1202282/DFSreplication-snap.PNG" target="_blank" title="DFSreplication-snap.PNG (373 KB)"><img alt="DFSreplication-snap.PNG" class="file-block lazyload" style="max-width: 759px;" data-src="https://filedb.experts-exchange.com/incoming/2017/10_w44/1202282/DFSreplication-snap.PNG" /></a>4.I have no any previous backup but right now i takes the backup of my sysvol folder<br />
<br />
Thanks for Your Responce
</div>


DFSreplication-snap.PNG

ADSIdit.png

<div>
Since you only have one DC, checking whether the GPO has an error, or the GPO does not apply, I.e. A computer GPO at the top of the domain, has an empty user section that is not disabled for the user.<br />
The warning occurs at the GPO refresh interval, once every 30 minutes?<br />
Use gpmc, to see whether there is a user or computer setting, if it shoukd not apply to either, disable the option.....<br />
<br />
The configuration of the GPO, if using wmi filters.
</div>


<div>
<div class="content wysiwyg-content">
The processing of Group Policy failed. Windows attempted to read the file \\DOMAIN NAME\sysvol\DOMAIN NAME\Policies\{31B2F340-01<wbr />6D-11D2-94<wbr />5F-00C04FB<wbr />984F9}\gpt<wbr />.ini from a domain controller and was not successful. Group Policy settings may not be applied until this event is resolved. This issue may be transient and could be caused by one or more of the following: <br />
a) Name Resolution/Network Connectivity to the current domain controller. <br />
b) File Replication Service Latency (a file created on another domain controller has not replicated to the current domain controller). <br />
c) The Distributed File System (DFS) client has been disabled.
</div>
</div>


The processing of Group Policy failed. Windows attempted to read the file \\DOMAIN NAME\sysvol\DOMAIN NAME\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}\gpt.ini from a domain controller and was not successful. Group Policy settings may not be applied until this event is resolved. This issue may be transient and could be caused by one or more of the following: 
a) Name Resolution/Network Connectivity to the current domain controller. 
b) File Replication Service Latency (a file created on another domain controller has not replicated to the current domain controller). 
c) The Distributed File System (DFS) client has been disabled.

Event ID 1096 How to resolve it?

The Microsoft Server topic includes all of the legacy versions of the operating system, including the Windows NT 3.1, NT 3.5, NT 4.0 and Windows 2000 and Windows Home Server versions.

Microsoft Server OS

This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.

Windows OS

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.