none
application servers on Domain controller help

    Question

  • Hi

    im setting up a domain contrller and application server on one machine for for project purpose

    i know its not the best method but its only for own project not for a business

    network diagram

    Domain controller ------------switch---------------Router-------------Switch------------PC normal (or on domain)

    i installed sever 2008

    set it as domain contrller abc.com

    create user in AD

    installed wamp server

    now here is my issue

    when i connect a normal pc on router on network and type abc.com i get access to website on server

    but when i connect pc to router and add the pc to domain login with user and type abc.com it does not acess website

    can any one please help

    should  i follow this guide

    http://www.petri.co.il/using-globalnames-zone-window-server-2008.htm

    Tuesday, May 01, 2012 11:59 AM

Answers

  • AND WHATS WWW RECORD YOU HVNT TOLD ME WHATS HOST HEADERS

    A hostheader is basically and simply the URL that you configure in the website properties in the webserver. For example, I can set a hostheader for www.abc.com and abc.com for a single IP address. Then I can create another website called xyz.com, then in DNS create the xyz.com, then create a www entry under xyz.com. Then in that website properties in the webserver, I would create two hostheaders, www.xyz.com and xyz.com using the same exact IP address.

    This is how virtual hosting works where all websites use the same exact IP address. This is how web hosting companies have hundreds or thousands of websites under a single IP address. The hostheader is used to differentiate and identify the incoming web request and send it to the cooresponding website.

    I don't think this is the cause of what's going on in your machine, but it's usually a defacto that website operators configure. ANd I do NOT know how to do that in WAMP.

    ANd I'm not even sure why you're using WAMP when you can use IIS, which has more rich features than WAMP.

    Maybe WAMP has some sort of setting to accept or not accept requests based on the IP address. I know IIS has that setting to block/allow based on IP, IP subnet, domain suffixes, etc. For that you must ask your WAMP support team.

    .


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This post is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    Wednesday, May 02, 2012 5:36 PM
  • HI

    CAN I HAVE DOMAIN CONTROLLER IN ONE SUBNET AND HAVE DOMAIN PC'S IN ANOTHER SUBNET

    Yes, you have a domain controller in another part of the world, if you like, with VPN connections, as long as there are NO firewall blocks. Blocking a single port will thwart AD communications.

    Besides, and this is one point that I did not make earlier, the rule of thumb for domain controllers:

    • Do not install web services (IIS, FTP, SMTP, etc)
    • Do not install Exchange, SQL, and many other apps.
    • DO NOT multihome a domain controller. A multihomed DC is one that has more than one NIC, more than one IP address, RRAS installed, and/or iSCSI interface.. So this means the DC should ONLY have one NIC and ONE IP address. If there are two NICs or more, or
    • Ideally a domain controller should only host DHCP, DNS, and WINS.

    .


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This post is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    Wednesday, May 02, 2012 5:40 PM
  • Hi,

    Given this situation, you may try the following KB article to troubleshooting if the issue was caused by IE.

    "Internet Explorer cannot display the webpage" error in Internet Explorer

    http://support.microsoft.com/kb/956196

    If other browsers also cannot open this webpage, as Ace mentioned, you need to contact the WAMP support team. Your understanding is appreciated.


    Best Regards,

    Aiden


    Aiden Cao

    TechNet Community Support

    Thursday, May 03, 2012 1:26 AM
    Moderator

All replies

  • You mean to say PC which are in workgroup are able to access the website and as soon as you join them to the domain they will be able to access it?

    If yes Please post the exact error message which you are encoutering and also post unedited ipconfig /all here

    Just give a try by running nslookup abc.com and the post the result here.

    Regards,

    _Prashant_


    MCSA|MCITP SA|Microsoft Exchange 2003 Blog - http://prashant1987.wordpress.com Disclaimer: This posting is provided AS-IS with no warranties/guarantees and confers no rights.

    Tuesday, May 01, 2012 12:23 PM
  • What is wamp?

    Are you saying the website domain name is the same name you've chosen for your AD DNS domain name?

    What server is the website being hosted on? Is it that server that you promoted to a DC, or is it an external webserver?

    The ipconfig /all from all your machines, as Prashant asked for, will be extremely helpful to troubleshoot this. 


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This post is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    Tuesday, May 01, 2012 2:48 PM
  • hi il make it clear

    i hav  pc1 as domain controller which abc.com and ive installed wamp appache web server on the same pc1

    and when connect the PC2 thats  in workgroup itd able to access the website and as soon as i join PC2 to  domain they cant access the web server

    all i want is the pc's on domain  to access the web server


    • Edited by usman2007 Tuesday, May 01, 2012 4:56 PM
    Tuesday, May 01, 2012 4:50 PM
  • basically i have one pc as domain controller and a web server i am using wamp apache web server

    and yes i used the same name or ip address of domain controller to access webserver

    when i use it on workgroup it can access as soon as i add pc to domain contrller it stops accessing it 

    Tuesday, May 01, 2012 4:53 PM
  • Ok, thanks for the clarification.

    Can you provide the following, please?

    1. Assuming you've properly configured DNS for Active Directory, did you create a WWW record under abc.com?
    2. What URL were you using to access the website before the join? Is it www.abc.com, http://abc.com (without the WWW), or http://computername ?
    3. Have hostheaders been configured for the WAMP website?
    4. IPCONFIG /ALL of the DC, and the two clients, please. I will assume that the ipconfig /all are after the join.
    5. Are there any firewall rules or restrictions? If you disable the firewall, does that help?

    .

    Note: we are asking for the ipconfigs to better understand the way the machiens are configured and what they're using to resolve names, and comparing that to the URL you are using.

    One thing is if you are conencting without the WWW, such as http://abc.com, then that is the Active Directory LdapIpAddress record and will ALWAYS resolve to the domain controller.

    The LdapIpAddress can't be changed, but there is a workaround, but we need to know your configuration before we can ascertain if this is a factor or not.

    This is why we are asking for configuration information to better understand your configuration, how you're connecting, etc, so we can provide you specific help for your specific environment.

    .


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This post is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    Tuesday, May 01, 2012 6:20 PM
  • hi

    sorry for before

    i can access using domain name etc on the domain controller only for example i can use following abc, abc.com, 192.168.1.2, localhost to access website

    but on pc i used ip address of server 192.168.1.2:80 before joining but when i join domain it stops working

    1 dns configured for AD but no www record

    2 sorry my mistake before joining  i used the domain controllers ip address (192.168.1.2) to access site  but as soon as i join pc to the domain controller   the ip add  doesnt work

    3.no

    4.server address

    • ip 192.168.1.2
    • sm 255.255.255.0
    • dg 192.168.1.1
    • dns 127.0.0.1

    pc on work group (this works when i acces the site)

    • 192.168.2.2
    • 255.255.255.0
    • 192.168.2.1

    pc on domain (this doesnt get access )

    • ip 192.168.1.3
    • sm 255.255.255.0
    • dg 192.168.1.1
    • dns 192.168.1.2

    5. is fine


    all i want is pc on dc  to access the website ftp


    • Edited by usman2007 Tuesday, May 01, 2012 6:59 PM
    Tuesday, May 01, 2012 6:52 PM
  • Your ipconfigs are all over the place, with incorrect IPs, etc. At first glance, it appears the PC in the workgroup is on a different IP subnet. I need to see concrete data without typos from the command output.

    I also need to see the suffixes configuration, etc.

    .

    Threfore, PLEASE run the command using the following method on each machine, then copy and paste the text files to your response"

    • ipconfig /all > c:\ipconfigDomainController.txt
    • ipconfig /all > c:\ipconfigPCInWorkgroup.txt
    • ipconfig /all > c:\ipconfigPcJoinedToDomain.txt

    .

    Thank you!!

    .

    Also, are you using hostheaders in WAMP?

    .

    Note: accessing it by "abc" without the .com, or accessing "abc.com" without the WWW is not supported, due to the fact that these two names will be the AD DNS Domain Name, and the AD NetBIOS names.

    .


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This post is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    Tuesday, May 01, 2012 7:24 PM
  • the workgroup pc is on different subnet

    ive got router and switches configured

    routing works fine ip addresses are fine  all connectivity works

    work group is ok its the pc on domain i want to fix

    i have no hostheaders in wamp what are they

    what you said in note works  on domain controller  only

    please forget workgroup group pc

    Domain controller


    Windows IP Configuration

       Host Name . . . . . . . . . . . . : SERVER
       Primary Dns Suffix  . . . . . . . : abc.com
       Node Type . . . . . . . . . . . . : Hybrid
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : abc.com

    Ethernet adapter Local Area Connection:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connection
       Physical Address. . . . . . . . . : 00-0C-29-D4-58-32
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
       IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 192.168.1.1
       DNS Servers . . . . . . . . . . . : 127.0.0.1
       NetBIOS over Tcpip. . . . . . . . : Enabled

    Tunnel adapter isatap.{C6CB1103-1B60-49A4-833D-AA34D58845E7}:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter Local Area Connection* 9:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes

    PC on Domain

    Windows IP Configuration

            Host Name . . . . . . . . . . . . : Lab-PC

            Primary Dns Suffix  . . . . . . . : abc.com

            Node Type . . . . . . . . . . . . : Unknown

            IP Routing Enabled. . . . . . . . : No

            WINS Proxy Enabled. . . . . . . . : No

            DNS Suffix Search List. . . . . . : abc.com

    Ethernet adapter Local Area Connection:

            Connection-specific DNS Suffix  . :

            Description . . . . . . . . . . . : VMware Accelerated AMD PCNet Adapter

            Physical Address. . . . . . . . . : 00-0C-29-A6-A1-2C

            Dhcp Enabled. . . . . . . . . . . : No

            IP Address. . . . . . . . . . . . : 192.168.1.3

            Subnet Mask . . . . . . . . . . . : 255.255.255.0

            Default Gateway . . . . . . . . . : 192.168.1.1

            DNS Servers . . . . . . . . . . . : 192.168.1.2

    like i said please forget workgroup pc

    i want domain pc to access website from wamp server


    • Edited by usman2007 Tuesday, May 01, 2012 9:01 PM
    Tuesday, May 01, 2012 8:59 PM
  • Thank you for posting that.

    So the WAMP webserver is 192.168.1.2:80, which is the domain controller, correct?

    Can you provide the exact error message you are receiving when you connect by:

    • http://192.168.1.2:80
    • http://www.abc.com
    • http://abc.com

    .

    Thank you.

    .


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This post is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    Tuesday, May 01, 2012 9:05 PM
  • thats correct

    • localhost
    • http://192.168.1.2:80
    • http://www.abc.com this doesnt work i got no www record
    • http://abc.com

    the above  work on Server fine get access to site

    when i type them on domain pc they get blank page or

    the following info

     The webpage cannot be displayed
      
       Most likely cause:
    •Some content or files on this webpage require a program that you don't have installed.
     
       What you can try:
         Search online for a program you can use to view this web content. 
     
         Retype the address. 
     
         Go back to the previous page.
     



    • Edited by usman2007 Tuesday, May 01, 2012 9:17 PM
    Tuesday, May 01, 2012 9:16 PM
  • Does WAMP have some sort of configuration that you have to enable access to other than local host?

    Is there an antivirus on the server? If so, if you disable it, does it work?

    Is IIS installed on the server?

    Is the local WIndows Firewall enabled? If you disable it, and you disable AV, does it work?

    .


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This post is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    Tuesday, May 01, 2012 10:19 PM
  • wamp is apache server and appche had httpconfig.txt file

    antivirus yes no difference when disable or not

    firewall dosnt make any difference when disable or not

    no iis installed im using apache instead of iis2

    i have no WWW record under abc.com? whats thi

  • Have hostheaders been configured for the WAMP website? whats this

  • Edited by usman2007 Tuesday, May 01, 2012 10:39 PM
Tuesday, May 01, 2012 10:38 PM
  • USMAN,

    Apparently if it works locally, but not from anywhere else, something is blocking it. Are there any security settings? THis server is not SBS, is it?

    Please download and run PortQry from Microsoft, then run the utility from your client machine to query if TCP 80 is listening :

    PortQryUI - GUI - Version 2.0 8/2/2004
    http://www.microsoft.com/download/en/details.aspx?id=24009

    .


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This post is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    Wednesday, May 02, 2012 6:37 AM
  • this what what port query say

    =============================================

     Starting portqry.exe -n 192.168.1.2 -e 80 -p TCP ...


    Querying target system called:

     192.168.1.2

    Attempting to resolve IP address to a name...


    IP address resolved to SERVER

    querying...

    TCP port 80 (http service): LISTENING
    portqry.exe -n 192.168.1.2 -e 80 -p TCP exits with return code 0x00000000.

    but when i type 192.168.1.2:80 on DOMAIN PC IT SHOWS THE ABOVE ERROR I MENTIONED YESTERDAY

    • Edited by usman2007 Wednesday, May 02, 2012 3:38 PM
    Wednesday, May 02, 2012 3:37 PM
  • AND WHATS WWW RECORD YOU HVNT TOLD ME WHATS HOST HEADERS
    Wednesday, May 02, 2012 3:42 PM
  • HI

    CAN I HAVE DOMAIN CONTROLLER IN ONE SUBNET AND HAVE DOMAIN PC'S IN ANOTHER SUBNET

    Wednesday, May 02, 2012 4:01 PM
  • AND WHATS WWW RECORD YOU HVNT TOLD ME WHATS HOST HEADERS

    A hostheader is basically and simply the URL that you configure in the website properties in the webserver. For example, I can set a hostheader for www.abc.com and abc.com for a single IP address. Then I can create another website called xyz.com, then in DNS create the xyz.com, then create a www entry under xyz.com. Then in that website properties in the webserver, I would create two hostheaders, www.xyz.com and xyz.com using the same exact IP address.

    This is how virtual hosting works where all websites use the same exact IP address. This is how web hosting companies have hundreds or thousands of websites under a single IP address. The hostheader is used to differentiate and identify the incoming web request and send it to the cooresponding website.

    I don't think this is the cause of what's going on in your machine, but it's usually a defacto that website operators configure. ANd I do NOT know how to do that in WAMP.

    ANd I'm not even sure why you're using WAMP when you can use IIS, which has more rich features than WAMP.

    Maybe WAMP has some sort of setting to accept or not accept requests based on the IP address. I know IIS has that setting to block/allow based on IP, IP subnet, domain suffixes, etc. For that you must ask your WAMP support team.

    .


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This post is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    Wednesday, May 02, 2012 5:36 PM
  • HI

    CAN I HAVE DOMAIN CONTROLLER IN ONE SUBNET AND HAVE DOMAIN PC'S IN ANOTHER SUBNET

    Yes, you have a domain controller in another part of the world, if you like, with VPN connections, as long as there are NO firewall blocks. Blocking a single port will thwart AD communications.

    Besides, and this is one point that I did not make earlier, the rule of thumb for domain controllers:

    • Do not install web services (IIS, FTP, SMTP, etc)
    • Do not install Exchange, SQL, and many other apps.
    • DO NOT multihome a domain controller. A multihomed DC is one that has more than one NIC, more than one IP address, RRAS installed, and/or iSCSI interface.. So this means the DC should ONLY have one NIC and ONE IP address. If there are two NICs or more, or
    • Ideally a domain controller should only host DHCP, DNS, and WINS.

    .


    Ace Fekay
    MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This post is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    Wednesday, May 02, 2012 5:40 PM
  • Hi,

    Given this situation, you may try the following KB article to troubleshooting if the issue was caused by IE.

    "Internet Explorer cannot display the webpage" error in Internet Explorer

    http://support.microsoft.com/kb/956196

    If other browsers also cannot open this webpage, as Ace mentioned, you need to contact the WAMP support team. Your understanding is appreciated.


    Best Regards,

    Aiden


    Aiden Cao

    TechNet Community Support

    Thursday, May 03, 2012 1:26 AM
    Moderator