none
Windows Server 2003 event ID 1030 and 1058 error

    Question

  • Dear All,

    Recently I installed my domain controler and have a seprate file server. I applied some user invironment policies. but I have been experiencing problem with network resources like shared folders and printers. and users take long time to login.. the below are the event ID which are appears both in DC and File server.

    vent Type: Error
    Event Source: Userenv
    Event Category: None
    Event ID: 1058
    Date:  2/17/2010
    Time:  1:11:59 PM
    User:  NT AUTHORITY\SYSTEM
    Computer: OPASR-02
    Description:
    Windows cannot access the file gpt.ini for GPO CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=OPA,DC=GOV,DC=AF. The file must be present at the location <
    \\OPA.GOV.AF\sysvol\OPA.GOV.AF\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}\gpt.ini>. (Configuration information could not be read from the domain controller, either because the machine is unavailable, or access has been denied. ). Group Policy processing aborted.

    For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

    Event Type: Error
    Event Source: Userenv
    Event Category: None
    Event ID: 1030
    Date:  2/17/2010
    Time:  1:11:59 PM
    User:  NT AUTHORITY\SYSTEM
    Computer: OPASR-02
    Description:
    Windows cannot query for the list of Group Policy objects. Check the event log for possible messages previously logged by the policy engine that describes the reason for this.

    For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

     

    Monday, June 07, 2010 4:31 AM

All replies

  • Dear All,

    Recently I installed my domain controler and have a seprate file server. I applied some user invironment policies. but I have been experiencing problem with network resources like shared folders and printers. and users take long time to login.. the below are the event ID which are appears both in DC and File server.

    vent Type: Error
    Event Source: Userenv
    Event Category: None
    Event ID: 1058
    Date:  2/17/2010
    Time:  1:11:59 PM
    User:  NT AUTHORITY\SYSTEM
    Computer: OPASR-02
    Description:
    Windows cannot access the file gpt.ini for GPO CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=OPA,DC=GOV,DC=AF. The file must be present at the location <
    \\OPA.GOV.AF\sysvol\OPA.GOV.AF\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}\gpt.ini>. (Configuration information could not be read from the domain controller, either because the machine is unavailable, or access has been denied. ). Group Policy processing aborted.

    For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

    Event Type: Error
    Event Source: Userenv
    Event Category: None
    Event ID: 1030
    Date:  2/17/2010
    Time:  1:11:59 PM
    User:  NT AUTHORITY\SYSTEM
    Computer: OPASR-02
    Description:
    Windows cannot query for the list of Group Policy objects. Check the event log for possible messages previously logged by the policy engine that describes the reason for this.

    For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

     

     

    Hello Sharifi,

    This appears to be a classic DNS issue. This means that if there is an ISP's DNS address, or you are using your peripheral firewall/router as a DNS address in any of the DCs, servers and clients, the error you are seeing, as well as others, may appear.

    It could also be caused due to one of the following, which is basically a blurb on AD & DNS requirements, and things to follow, and things to lookout for. If none of the citieria are correct or true, expect problems.

    1. 1. AD's DNS name can't be a single label name
    2. The AD DNS name MUST match the name of the zone in DNS
    3. Dynamic Updates must be allowed in the zone properties
    4. The Primary DNS Suffix MUST match the zone name and the AD DNS name
    5. You must ONLY use the DNS servers that host a copy of the AD zone name or have a reference to get to them. Do not use your ISP's, an external DNS adddress, your router as a DNS address, or any other DNS that does not have a copy of the AD zone. Internet resolution for your machines will be accomplished by the Root servers (Root Hints). It is recommended to configure a forwarder for efficient Internet resolution. When you attempt to configure a forwader and the forwarding option is grayed out, you need to delete the Root zone (looks like a period), refresh the console and try again.
    6. The domain controller is multihomed (which means it has more than one unteamed, active NIC, more than one IP address, and/or RRAS is installed on the DC).

    To better assist, if you can post an ipconfig /all of the DC, the file server, and a sample workstation, that will help us diagnose this for you. The ipconfig /all has numerous info that can help us.

    Thank you,

    Ace


     


    Ace Fekay, MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003, Microsoft Certified Trainer, Microsoft MVP - Directory Services. This posting is provided AS-IS with no warranties or guarantees and confers no rights.
    Monday, June 07, 2010 6:30 AM
  • Hi,

    Thanks for the post.

    You could also refer to the following KB articles:

    Client computers record Event ID 1030 and Event ID 1058 when DFS is not started on a Windows 2000-based domain controller

    http://support.microsoft.com/kb/834649

    Userenv errors occur and events are logged after you apply Group Policy to computers that are running Windows Server 2003, Windows XP, or Windows 2000

    http://support.microsoft.com/kb/887303

    Hope this helps.

    Miles

     

    Monday, June 07, 2010 7:20 AM
    Moderator
  • On Mon, 7 Jun 2010 07:20:35 +0000, Miles Zhang wrote:
     
    >
    >
    >Hi,
    >
    >Thanks for the post.
    >
    >You could also refer to the following KB articles:
    >
    >Client computers record Event ID 1030 and Event ID 1058 when DFS is not started on a Windows 2000-based domain controller
    >
    >
    >Userenv errors occur and events are logged after you apply Group Policy to computers that are running Windows Server 2003, Windows XP, or Windows 2000
    >
    >
    >Hope this helps.
    >
    >Miles
    >
    >
     
    I meant to prrovide articles on the 1058 & 1030 EventIDs. Thanks,
    Miles!
     
    In addition, I can provide the following links for more info on these
    events.
     
    Event ID 1030 Source Userenv;
     
    Event ID 1058 Source Userenv
     
    Cheers!
     
    Ace
     

    Ace Fekay, MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003, Microsoft Certified Trainer, Microsoft MVP - Directory Services. This posting is provided AS-IS with no warranties or guarantees and confers no rights.
    Tuesday, June 08, 2010 3:24 AM
  • Dear Mr. Ace,

    below are the IPconfig results of both DC and W/S

    Domain Controler

    Microsoft Windows [Version 5.2.3790]
    (C) Copyright 1985-2003 Microsoft Corp.

    C:\Documents and Settings\Administrator.OPASR-01.000>ipconfig /all

    Windows IP Configuration

       Host Name . . . . . . . . . . . . : OPASR-01
       Primary Dns Suffix  . . . . . . . : osmpa.gov.af
       Node Type . . . . . . . . . . . . : Unknown
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : osmpa.gov.af
                                           gov.af

    Ethernet adapter Local Area Connection 2:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS
     VBD Client) #2
       Physical Address. . . . . . . . . : 00-1E-C9-F7-07-DD
       DHCP Enabled. . . . . . . . . . . : No
       IP Address. . . . . . . . . . . . : 192.168.5.3
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 192.168.5.1
       DNS Servers . . . . . . . . . . . : 192.168.5.3

    C:\Documents and Settings\Administrator.OPASR-01.000>

    Work Station

    C:\Documents and Settings\rsharifi.OSMPA>ipconfig /all

    Windows IP Configuration

            Host Name . . . . . . . . . . . . : omspa-16f660f6e
            Primary Dns Suffix  . . . . . . . : osmpa.gov.af
            Node Type . . . . . . . . . . . . : Hybrid
            IP Routing Enabled. . . . . . . . : No
            WINS Proxy Enabled. . . . . . . . : No
            DNS Suffix Search List. . . . . . : osmpa.gov.af
                                                gov.af

    Ethernet adapter Local Area Connection:

            Connection-specific DNS Suffix  . :
            Description . . . . . . . . . . . : Intel(R) 82567LM Gigabit Network Con
    nection
            Physical Address. . . . . . . . . : 00-21-70-F2-78-01
            Dhcp Enabled. . . . . . . . . . . : Yes
            Autoconfiguration Enabled . . . . : Yes
            IP Address. . . . . . . . . . . . : 192.168.5.57
            Subnet Mask . . . . . . . . . . . : 255.255.255.0
            Default Gateway . . . . . . . . . : 192.168.5.1
            DHCP Server . . . . . . . . . . . : 192.168.5.3
            DNS Servers . . . . . . . . . . . : 192.168.5.3
            Lease Obtained. . . . . . . . . . : Tuesday, June 08, 2010 8:23:29 AM
            Lease Expires . . . . . . . . . . : Wednesday, June 16, 2010 8:23:29 AM

     

    Best

    Sharifi

    Tuesday, June 08, 2010 4:45 AM
  • Dear Mr. Ace,

    below are the IPconfig results of both DC and W/S

    Domain Controler

    Microsoft Windows [Version 5.2.3790]
    (C) Copyright 1985-2003 Microsoft Corp.

    C:\Documents and Settings\Administrator.OPASR-01.000>ipconfig /all

    Windows IP Configuration

       Host Name . . . . . . . . . . . . : OPASR-01
       Primary Dns Suffix  . . . . . . . : osmpa.gov.af
       Node Type . . . . . . . . . . . . : Unknown
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : osmpa.gov.af
                                           gov.af

    Ethernet adapter Local Area Connection 2:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS
     VBD Client) #2
       Physical Address. . . . . . . . . : 00-1E-C9-F7-07-DD
       DHCP Enabled. . . . . . . . . . . : No
       IP Address. . . . . . . . . . . . : 192.168.5.3
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 192.168.5.1
       DNS Servers . . . . . . . . . . . : 192.168.5.3

    C:\Documents and Settings\Administrator.OPASR-01.000>

    Work Station

    C:\Documents and Settings\rsharifi.OSMPA>ipconfig /all

    Windows IP Configuration

            Host Name . . . . . . . . . . . . : omspa-16f660f6e
            Primary Dns Suffix  . . . . . . . : osmpa.gov.af
            Node Type . . . . . . . . . . . . : Hybrid
            IP Routing Enabled. . . . . . . . : No
            WINS Proxy Enabled. . . . . . . . : No
            DNS Suffix Search List. . . . . . : osmpa.gov.af
                                                gov.af

    Ethernet adapter Local Area Connection:

            Connection-specific DNS Suffix  . :
            Description . . . . . . . . . . . : Intel(R) 82567LM Gigabit Network Con
    nection
            Physical Address. . . . . . . . . : 00-21-70-F2-78-01
            Dhcp Enabled. . . . . . . . . . . : Yes
            Autoconfiguration Enabled . . . . : Yes
            IP Address. . . . . . . . . . . . : 192.168.5.57
            Subnet Mask . . . . . . . . . . . : 255.255.255.0
            Default Gateway . . . . . . . . . : 192.168.5.1
            DHCP Server . . . . . . . . . . . : 192.168.5.3
            DNS Servers . . . . . . . . . . . : 192.168.5.3
            Lease Obtained. . . . . . . . . . : Tuesday, June 08, 2010 8:23:29 AM
            Lease Expires . . . . . . . . . . : Wednesday, June 16, 2010 8:23:29 AM

     

    Best

    Sharifi


    Hello Sharifi,

    Thanks for posting the ipconfigs. The ipconfigs actually look good.

    Have you looked at the links Miles provided? One of them (http://support.microsoft.com/kb/834649) states to make sure the DFS service is running. Please check to insure it is set to Automatic and it's started.

    If the DFS service is running, then let's take a look at the next KB article Miles provided (http://support.microsoft.com/kb/887303). It states a series of items to look for at the top of the article. Namely, there's one command you can run (stated in the article) to try and straighten this out:

    Run the dfsutil /purgemupcache command

    The other Services we need to make sure are running on both the DC and workstation are the following:

    • DHCP Client Service
    • TCP/IP NetBIOS Helper service 
    • DFS

    It could also be caused by an antivirus, anti-malware and/or security application installed on the DC and workstations. Which vendor and version is installed on the DC and clients?

    Is there plenty of freespace on the DC? If not, do you see an EventID 1505?

    In DNS, look at the osmpa.gov.af zone. Do you see a "(same as parent)" entry? If so, or if there are more than one, please post them. If you only have one DC, it should only show as "(same as parent)  A  192.168.5.3." This is the record that GPOs and DFS use to access a domain controller and find GPOs, among other things.

    Have any permissions been altered on the DC's C: drive?

    Has the Default Domain GPO been altered?

    Has anything else been possibly altered, or installed on the DC?

    Ace

     


    Ace Fekay, MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003, Microsoft Certified Trainer, Microsoft MVP - Directory Services. This posting is provided AS-IS with no warranties or guarantees and confers no rights.
    Tuesday, June 08, 2010 5:14 AM
  • In addition to other I will list Typical catalysts responsible for the issue.

    incorrect ACL’s on Sysvol on the DC
    filter drivers (antivirus or backup apps) that keep locks on the
    target objects in Sysvol
    network issues that prevent the client from accessing Sysvol on the DC
    inorrect security settings on the DC the client is accessing Sysvol on
    DNS resolution issues
    DFS problems


    http://www.virmansec.com/blogs/skhairuddin
    Tuesday, June 08, 2010 7:37 AM
  • I tried those tasks lets see what would be the resul. I'll update you.

     

    best

    R

    Saturday, June 12, 2010 5:49 AM
  • Any Updates on the Issue ? Do you need any Assistance ?

    Thanks


    http://www.virmansec.com/blogs/skhairuddin
    Sunday, June 13, 2010 6:45 AM
  • Dear Ace and Syed Khairuddin,

                 FYI: I have tried the up instraction on the DC. I noticed there is no error log in DC as before so far. but in my file server still the log of 1030 and 1058 is apearing and I have problem with accessing my shares resources. any other help to sort out this in my files server. Do I need to reinstall it.  the below is the ipconfig resutl

    C:\Documents and Settings\opaadmin.OSMPA>ipconfig /all

    Windows IP Configuration

       Host Name . . . . . . . . . . . . : OPASR-02
       Primary Dns Suffix  . . . . . . . : osmpa.gov.af
       Node Type . . . . . . . . . . . . : Unknown
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : osmpa.gov.af
                                           gov.af

    Ethernet adapter Local Area Connection:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Broadcom BCM570
     VBD Client)
       Physical Address. . . . . . . . . : 00-1E-C9-F7-6A-
       DHCP Enabled. . . . . . . . . . . : No
       IP Address. . . . . . . . . . . . : 192.168.5.4
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 192.168.5.1
       DNS Servers . . . . . . . . . . . : 192.168.5.3

    Thanks

    Roohullah

    Sunday, June 13, 2010 7:49 AM
  • Dear Ace and Syed Khairuddin,

                 FYI: I have tried the up instraction on the DC. I noticed there is no error log in DC as before so far. but in my file server still the log of 1030 and 1058 is apearing and I have problem with accessing my shares resources. any other help to sort out this in my files server. Do I need to reinstall it.  the below is the ipconfig resutl

    C:\Documents and Settings\opaadmin.OSMPA>ipconfig /all

    Windows IP Configuration

       Host Name . . . . . . . . . . . . : OPASR-02
       Primary Dns Suffix  . . . . . . . : osmpa.gov.af
       Node Type . . . . . . . . . . . . : Unknown
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : osmpa.gov.af
                                           gov.af

    Ethernet adapter Local Area Connection:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Broadcom BCM570
     VBD Client)
       Physical Address. . . . . . . . . : 00-1E-C9-F7-6A-
       DHCP Enabled. . . . . . . . . . . : No
       IP Address. . . . . . . . . . . . : 192.168.5.4
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 192.168.5.1
       DNS Servers . . . . . . . . . . . : 192.168.5.3

    Thanks

    Roohullah


    Hello Roohullah,

    Good to hear the DCs no longer show the event log errors.

    For the file server, try the following.

    dfsutil /purgemupcache (dfsutil.exe is in the Windows 2003 Support Tools)

    I'm not sure if you've read through the articles provided, but the above is suggested based on the following article that Miles Zhang provided:

    Userenv errors occur and events are logged after you apply Group Policy to computers that are running Windows Server 2003, Windows XP, or Windows 2000
    http://support.microsoft.com/kb/887303

    Ace


    Ace Fekay, MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003, Microsoft Certified Trainer, Microsoft MVP - Directory Services. This posting is provided AS-IS with no warranties or guarantees and confers no rights.
    Sunday, June 13, 2010 3:47 PM
  • Dear Ace,

              I have tried those recomended commands but none worked out. any other solution for this?

    Best

    Roohullah

    Tuesday, June 15, 2010 8:54 AM
  • Dear Ace,

              I have tried those recomended commands but none worked out. any other solution for this?

    Best

    Roohullah


    Hello Roohullah,

    Unfortunate to hear that nothing's worked so far. Was the article helpful in understanding what may possibly be going on?

    Also, please read the following links to see if they help. There are various solutions provided depending on your scenario. See if any of them apply to your scenario or may work.

    EventID 1030
    http://eventid.net/display.asp?eventid=1030&eventno=1542&source=Userenv&phase=1

    EventID 1058
    http://eventid.net/display.asp?eventid=1058&eventno=1752&source=Userenv&phase=1

    Ace


    Ace Fekay, MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003, Microsoft Certified Trainer, Microsoft MVP - Directory Services. This posting is provided AS-IS with no warranties or guarantees and confers no rights.
    Tuesday, June 15, 2010 12:48 PM