Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Windows 2k domain doesn't have an account in the domain

Status
Not open for further replies.
jlong515

jlong515

IS-IT--Management
Apr 4, 2003
111
0
0
US
I manage a Windows 2K domain with AD, and just in the past week the few (3) windows NT4 workstations are failing to login with the error, "computer doesn't have an account in this domain or the password is incorrect". The rest of the machines are Win 2K Pro and have no problems logging in. The servers/workstations are fully patched. Removing and re-adding the NT4 workstations to the domain does not resolve the problem. Any suggestions or help with this matter would be appreciated. Thanks in advance.



JLong


 
Sort by date Sort by votes
The exact error message I am receiving on the NT4 workstations is...

"The system cannot log you on to this domain because the system's computer account in it's primary domain is missing or the password on that account is incorrect"

Again, removing and re-adding these computers has not resolved the issue. Thanks for any assistance anyone can provide.

JLong


 
Upvote 0 Downvote
Read the Microsoft Knowledge Base Article 32785 having to do with MaxTokenSize. This has solved many similiar problems for us. But of course we are not dealing with WinNT4 PCs. You probably have to make the registry hack on the Win2k domain server. Just a thought.
 
Upvote 0 Downvote
After running the latest hotfixes (long list as usual!), the NT 4.0 machines on the SBS 2000 network couldn't connect. We tried heaps of things like uninstalling the hotfixes, restoring a previous System State ...

The last things tried before a reboot was, and that worked was either:

1. Open the [Properties] for the local network adapter on the server. Select the [Authentication] tab and uncheck the [Enable network access control using IEEE 802.1X] ...

or:

2. Patch the registry per a problem resolution in the Microsoft KDB in respect of NT 4.0 BDC authentication via LSA on a Windows 2000 PDC as follows:

1. Start Registry Editor (Regedt32.exe).

2. Locate the RestrictAnonymous value under the following key in the registry:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\restrictanonymous

3. On the Edit menu, click DWORD, type 0 in the data field, and then click OK.

4. Quit Registry Editor.

Restart the Windows 2000 domain controller.

** I checked some other server installations, and the value was usually 0 (one of them had 0x1).

If this works for you, please let me know, especially if you are able to try "one at a time" ...
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

goombawaho
  • Locked
  • Question
Domain join from wifi connected laptop
Replies
4
Views
181
goombawaho
goombawaho
Aquiles Vidal
  • Locked
  • Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
117
Aquiles Vidal
Aquiles Vidal
MattM1975
  • Locked
  • Question
Domain Admin Logon 1
Replies
2
Views
78
ADB100
ADB100
mangentle
  • Locked
  • Question
What are the key advantages of using Microsoft Windows Servers for businesses?
Replies
1
Views
132
gbaughma
gbaughma
ravalos
  • Question
Problem with PDFs in IIS
Replies
1
Views
239
gbaughma
gbaughma

Part and Inventory Search

Sponsor

Back
Top