none
DirectAccess Server 2012 Configuration cannot be retrieved from domain controller

    Pergunta

  • Hi everyone,

    We are using DirectAccess over Server 2012. There is just one server, no load balancing.

    Everything works fine, all clients can connect successfully and operations status page shows all in green. Nevertheless on the dashboard page in the configuration status section it say “Configuration for server [servername] cannot be retrieved from the domain controller.”

    I found a few hints what could cause this problem:

    In my case, the RAConfigTask, a scheduled task, was not enabled on the affected WS2012 server (DA entry point in a multisite deployment). After just enabling it, the errors has gone." http://blog.gocloud-security.ch/2013/01/11/ws2012-directaccess-and-the-configuration-for-server-server-name-retrieved-from-the-domain-controller-cannot-be-applied-error/

    Group Policy was filtering out my DA server from the GPO object for some reason. To fix, I opened up Group Policy Management on the domain controller and made sure that my DA server was a part of the group."http://www.joedissmeyer.com/2012/12/more-issues-and-solutions-for.html

    Server has no connectivity to the domain in order to update the policies. Run “gpupdate /force” on the server to force policy update. GPO replication might be required in order to retrieve the updated configuration.  This could be because there is no writable domain controller in the Active Directory site of the Remote Access server. http://social.technet.microsoft.com/Forums/en-US/winserverNIS/thread/56fedb17-1274-4e1a-b2d0-fea809f0bc45

    I checked everything. Task is enabled and completed successfully, GPO is not filtered out, run gpupdate without any errors, could connect to domain controller, no errors on domain controller, domain controller is writable.

    So, I have no idea what could cause this error. Any ideas or hints?

    Thanks

    Regards

    Sebastian


    • Editado skrueck quinta-feira, 13 de junho de 2013 13:48
    quinta-feira, 13 de junho de 2013 13:47

Todas as Respostas

  • i have the exact same problem i figured out that there was a problem with the logon as a service

    secpol.msc --> Local Policies --> User Rights Assignement, Logon as a service i have NT Service\All Services

    i can acces the group policy via the cpnsole just fine i have not connectivity issues what so ever.

    i decided to open a call with microsoft, their suggestion .... we dont know reinstall so i did and here we are same problem and no solution. it is getting frustrating...

    quarta-feira, 30 de abril de 2014 08:08
  • Exact  same problems here. Anyone find a solution please post.

    Ken

    terça-feira, 10 de junho de 2014 14:14