Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Issue with Group policy

Status
Not open for further replies.
r8j8t

r8j8t

IS-IT--Management
May 11, 2007
51
GB
Hello
I am facing issues with name resolution when applied GPO on my web servers.
I have two web servers both running win2003R2. Both the web servers were standalone machines and had specfic secuirty configurtions on them.
I joined the two web server into our domain which had less restrcitve domain policy on it.
In order to keep the policies on the web server intact I placed the web server in diff OU, created diff GPO called web policy for them and enforced that policy on the web servers. The dafault domain policy was also linked to the web servers by deafult.
Problem:
I can't RDP to the web servers using names but can do using IP address
When I try to run ipconfig/registerdns on my web servers i get error"cannot register DNS , default RPC server unavailable"
Troubleshooting steps I have done:
Able to resolve DNS server with nslookup on my web servers
Even log and DNS log does not report any errors
Started netlogon and DS client on web servers which were disabled due to secuirty policies
Ran netdiagon web servers with no errors
Ran dc diag on my DC's and failed the KCC event test
Both the web servers have register this primary suffix in DNS checkbox checked on their pvt NIC.
Tested other server which is getting default domain policy do not have any of these issues

I think its some GPO on web servers which is causing this issue as DNS seemed to be working fine. I can compare my web server polcy with default domain policy, however i was hoping that anyone here might have faced this issue or have seen soemthing similar. This will save lot of my time.
Any help will be highly appreciated.
Thanks in advance.



 
Sort by date Sort by votes
It looks like your web servers are not registering with DNS. I assume that your ip configuration is correct and the correct DNS server address specified.
It doesnt look like its the default Domain policy as this does not affect other servers in the same way.
Could be your web GPO. Have you tried temporarily disabling it ? Have you tried adding the DNS server to the hosts file just to prove it is a DNS issue ? You could try adding the web servers addresses to the DNS zone manually.
Have you tried generating an RSOP query in logging mode ?
 
Upvote 0 Downvote
Hello Paul
Thanks for your reply
I have been able to register my dns now on the web servers. The DHCP client serice was disabled on the web servers due to the web policy, which was stopping the DNS to be registered.
Howvever even when I register the DNS i do not see any DNS records of my web servers in DNS.
I restarted the DNS service, cleared DNS server cache.
As you said i will try to add those records manualy to the DNs to see if it is DNS issue.
Meantime I am also running few GPO tests using RSOP specialy on secuirty polcies as ther might be something disabled
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

ravalos
  • Locked
  • Question
Problem with PDFs in IIS
Replies
1
Views
519
gbaughma
gbaughma
techbrain1
  • Locked
  • Question
Trust relationship issue 1
Replies
3
Views
295
araheusaff
araheusaff
pomazip
  • Locked
  • Question
Windows Server 2019 mac address issue
Replies
2
Views
348
pomazip
pomazip
DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
305
DrB0b
DrB0b
DrB0b
  • Locked
  • Question
Hybrid on prem AD with Azure AD
Replies
2
Views
152
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top