DeepTii

C:\Documents and Settings\Administrator>gpotool Validating DCs... Available DCs: orion.vastluck.com Searching for policies... Found 2 policies ============================================================ Policy {31B2F340-016D-11D2-945F-00C04FB984F9} Friendly name: Default Domain Policy Policy OK ============================================================ Policy {6AC1786C-016F-11D2-945F-00C04FB984F9} Friendly name: Default Domain Controllers Policy Policy OK ============================================================ Policies OK C:\Documents and Settings\Administrator>nslookup *** Can't find server name for address 127.0.0.1: No response from server Default Server: UnKnown Address: 127.0.0.1 > exit C:\Documents and Settings\Administrator>dcdiag Domain Controller Diagnosis Performing initial setup: Done gathering initial info. Doing initial required tests Testing server: Vastluck\ORION Starting test: Connectivity ......................... ORION passed test Connectivity Doing primary tests Testing server: Vastluck\ORION Starting test: Replications ......................... ORION passed test Replications Starting test: NCSecDesc ......................... ORION passed test NCSecDesc Starting test: NetLogons ......................... ORION passed test NetLogons Starting test: Advertising Warning: ORION is not advertising as a time server. ......................... ORION failed test Advertising Starting test: KnowsOfRoleHolders ......................... ORION passed test KnowsOfRoleHolders Starting test: RidManager ......................... ORION passed test RidManager Starting test: MachineAccount ......................... ORION passed test MachineAccount Starting test: Services w32time Service is stopped on [ORION] ......................... ORION failed test Services Starting test: ObjectsReplicated ......................... ORION passed test ObjectsReplicated Starting test: frssysvol ......................... ORION passed test frssysvol Starting test: frsevent ......................... ORION passed test frsevent Starting test: kccevent ......................... ORION passed test kccevent Starting test: systemlog ......................... ORION passed test systemlog Starting test: VerifyReferences ......................... ORION passed test VerifyReferences Running partition tests on : ForestDnsZones Starting test: CrossRefValidation ......................... ForestDnsZones passed test CrossRefValidation Starting test: CheckSDRefDom ......................... ForestDnsZones passed test CheckSDRefDom Running partition tests on : DomainDnsZones Starting test: CrossRefValidation ......................... DomainDnsZones passed test CrossRefValidation Starting test: CheckSDRefDom ......................... DomainDnsZones passed test CheckSDRefDom Running partition tests on : Schema Starting test: CrossRefValidation ......................... Schema passed test CrossRefValidation Starting test: CheckSDRefDom ......................... Schema passed test CheckSDRefDom Running partition tests on : Configuration Starting test: CrossRefValidation ......................... Configuration passed test CrossRefValidation Starting test: CheckSDRefDom ......................... Configuration passed test CheckSDRefDom Running partition tests on : vastluck Starting test: CrossRefValidation ......................... vastluck passed test CrossRefValidation Starting test: CheckSDRefDom ......................... vastluck passed test CheckSDRefDom Running enterprise tests on : vastluck.com Starting test: Intersite ......................... vastluck.com passed test Intersite Starting test: FsmoCheck Warning: DcGetDcName(TIME_SERVER) call failed, error 1355 A Time Server could not be located. The server holding the PDC role is down. Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error 135 5 A Good Time Server could not be located. ......................... vastluck.com failed test FsmoCheck

lemme see... i am using Windows 2003 server enterprise i ran dcpromo to install AD and DC. i have only 1 domain controller, which is a server that connects to the internet. it runs sygate home network to share internet with the rest of its subnet... i dont want to use it, but for some reason the internet sharing has conflict with my database's webpublishing and works fine with sygate. in Network Services... i have only DNS installed... the DNS name is orion.vastluck.com, and it is not registered on Internet. 2 NICs. To LAN: 192.168.0.8 255.255.255.0 DNS - 127.0.0.1 To Internet: 192.168.0.2 255.255.255.0 DNS - 127.0.0.1 Then this is the info from the client machine... Windows 2000 IP Configuration Host Name . . . . . . . . . . . . : LEE Primary DNS Suffix . . . . . . . : vastluck.com Node Type . . . . . . . . . . . . : Mixed IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : vastluck.com Ethernet adapter LAN: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : D-Link DFE-530TX PCI Fast Ethernet Adapter (Rev B) Physical Address. . . . . . . . . : 00-50-BA-24-2D-47 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.0.11 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.0.8 DHCP Server . . . . . . . . . . . : 192.168.0.8 DNS Servers . . . . . . . . . . . : 192.168.0.8 Lease Obtained. . . . . . . . . . : 2004-8-23 22:38:03 Lease Expires . . . . . . . . . . : 2038-1-19 11:14:07 Then the errors in my event viewer... (I am trying to translate from a different language) Application - there are just way too many errors... mostly are... (Userenv) 1. Windows finished applying GPO.... (or something like that, and yes, it's an error) (Userenv) 2. Windows didn't apply ... IP security/Software Installation/etc. ... because of .. already deleted group or changed..... (something like that... ) (Userenv) 3. to be applied GPO Security has no error messages System - warnings and infos... (LsaSrv) 1. Security system cannot establish a secure connection with DNS/dns.guangzhou.gd.cn, there is no applicable authentication certificate.... (something like that) AD Service - has no errors or warnings... only messages like finished clustering.. blah blah blah DNS Server - mostly messages and a recurring warning 1. DNS server received invalid domain name packet from 127.0.0.1.. packet will be rejected.... (something like that) 2. DNS met many running events... to make sure ... these events.... ID higher than 3000..... (something like that) Replication service - seems to have no problem.. very old messages from a few days ago... sorry i am on a machine with a different language so the above messages may be a little off.... but i am quite lost here... don't know what to do. i can't find where i got wrong~ please help~ and i don't have WINS server installed.... i'm installing now....

i am having problem with applying GPO to clients. i have checked for several days for resources to fix the problem but nothing seems to help.. the problem is that the Windows Settings under Computer Configurations don't apply to my clients whileas other settings all do... does anyone know of a solution? and i am having problem joining WinXP SP1 to server as well... loads of new settings... for some reason WinXP is extremely slow on Win 2003 network! or is it my LAN problem?? doesn't seem like so... takes a wait of 5 minutes to browse AD's folder!