Re: Mangage XP Firewall centrally
From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 04/28/05
- Previous message: Durby Groy: "Re: Mangage XP Firewall centrally"
- In reply to: Durby Groy: "Re: Mangage XP Firewall centrally"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 27 Apr 2005 21:59:24 -0500
I did a search on Google and found the links below that may relate to your
problem. The second link is for Small Business Server if that is what your
server is. If you are not using Small Business Server make sure you read the
"cause" section of the article for other possible causes such as ---
However, there are several other scenarios that may also cause this problem.
Make sure that the following components are started and correctly configured
before you apply this hotfix: . Netlogon and DFS services are started.
. Domain controllers have the read and apply rights to the Domain
Controllers Policy.
. NTFS file system permissions and share permissions are set correctly
on the Sysvol share.
. DNS entries are correct for the domain controllers.
http://support.microsoft.com/?kbid=842804
http://support.microsoft.com/default.aspx?scid=kb;en-us;888943
As the cause states, dns is often a caused of Group Policy problems. Review
the link below to make sure your dns is configured correctly for your
domain. A common problem is that domain controllers are not pointing to
themselves or the pdc fsmo domain controller as their preferred dns server
and that domain computers are not pointing to ONLY [ never an ISP dns
server] domain controllers running dns as their preferred dns server. Since
you are experiencing problems, run the support tools netdiag and dcdiag on
the domain controllers and netdiag on problem domain computer/servers to
check for problems such as dc discovery, dns, kerberos, and trust/secure
channel. Support tools are on the install disk of the operating system in
the support/tools folder where you will need to run the setup program to
install the set. Failed tests/errors/warnings can help pinpoint the problem
and what may need to be fixed. --- Steve
http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B291382 --- AD
dns FAQ
http://www.windowsnetworking.com/articles_tutorials/Windows_2003_Support_Tools.html
--- support tools
"Durby Groy" <someone@microsoft.com> wrote in message
news:OSzt5g5SFHA.1044@TK2MSFTNGP10.phx.gbl...
> Thanks steven,
>
> but i cannot open my GPO from my server.
> it show "Failed to open the Group Pilicy Object. You may not
> have appropriate rights"
>
> I log in using server's administrator account. when i check server's
> event log.
> it show a lot of error event ID : 1058 & 1030.
> seems like this things have happen so some times.
>
> Pls help....
>
>
> "Steven L Umbach" <n9rou@nospam-comcast.net> wrote in message
> news:u4FjjtsSFHA.3056@TK2MSFTNGP14.phx.gbl...
>> Sure. You will need to upgrade to the XP SP2 administrative templates to
>> do such OR manage Group Policy from a known secure administrative XP Pro
>> SP2 workstation while logged on as a domain admin using the mmc snapin
>> for Group Policy. Then you will have more firewall options under computer
>> configuration/administrative templates/network/network
>> connections/Windows Firewall. The domain profile is in effect when a
>> domain computer is connected to the domain. --- Steve
>>
>> http://support.microsoft.com/default.aspx?scid=kb;en-us;816662
>>
>> "Durby Groy" <someone@microsoft.com> wrote in message
>> news:eFDuHisSFHA.1896@TK2MSFTNGP14.phx.gbl...
>>> How can open certain firewall port on XP Pro SP2 centrally
>>> through GPO from server 2003 ?
>>>
>>
>>
>
>
- Previous message: Durby Groy: "Re: Mangage XP Firewall centrally"
- In reply to: Durby Groy: "Re: Mangage XP Firewall centrally"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
