none
GPO error "Network path was not found" Win2k3R2

    Question

  • This is a relatively new installation of WIN2k3R2 with Exchange 2003.  The environment includes a Windows 2000 server that was the PDC.  ADPREP was used on the 2000 box to bring it up to Windows 2003 domain controller level.  The Win2k3R2 box was joined to the domain and became an additional domain controller. Two other servers were given basic AD roles.  GC and Operations Master RID and PDC roles were given to Win2k3R2 box (from the Win2k box). WSUS 3.0 SP1 was installed and required a group policy to incorporate workstations ...  Click on the Domain Security Policy applet and you get a window titled Group Policy Error "Failed to open the Group Policy Object. You may not have appropriate rights. The network path was not found."

    Can't create Domain Security Policy on Win2k box either.

    This was while logged in as Administrator. I verified that Enterprise Admins membership was present.

    Server is fairly current on updates, service packs, etc.

    Screen shots and diagnostic log at: http://cid-662ad2164062224c.skydrive.live.com/browse.aspx/.Public?uc=2

    Assistance would be highly appreciated. TIA

    Friday, July 24, 2009 4:30 PM

Answers

  • Hello,

    hawk4 is multihomed which is a bad decision and should be avoided on domain controllers. So remove it and use only one ip address on the server instead of 2. RRAS should run on member servers.

    Also you have listed a DNS server x.x.x.6 on hawk1, which one is it? Not listed on hawk4, neither hawk1 is listed on hawk4.

    During promotion of a new DC/DNS the machine that becomes DC should only use as preferred DNS the existing DC/DNS so in your case hawk1 as preferred on the NIC and when replication is completed then you change it to itself as preferred and the other DC/DNS as secondary and if there is a 3rd DNS server x.x.x.6 in your case, this as 3rd DNS under Avanced NIC properties.
    Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
    Thursday, July 30, 2009 12:50 AM

All replies

  • Hello,

    please post an unedited ipconfig /all from the old and new DC.
    Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
    Friday, July 24, 2009 8:37 PM
  • I've uploaded screen shots of the old and new DC's ipconfig /all output.  Same path as above.
    Wednesday, July 29, 2009 2:23 PM
  • Hello,

    hawk4 is multihomed which is a bad decision and should be avoided on domain controllers. So remove it and use only one ip address on the server instead of 2. RRAS should run on member servers.

    Also you have listed a DNS server x.x.x.6 on hawk1, which one is it? Not listed on hawk4, neither hawk1 is listed on hawk4.

    During promotion of a new DC/DNS the machine that becomes DC should only use as preferred DNS the existing DC/DNS so in your case hawk1 as preferred on the NIC and when replication is completed then you change it to itself as preferred and the other DC/DNS as secondary and if there is a 3rd DNS server x.x.x.6 in your case, this as 3rd DNS under Avanced NIC properties.
    Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
    Thursday, July 30, 2009 12:50 AM