Im trying to connect this laptop to the server and it just doesnt want to let me in.
What Ive done so far is to create a user account in AD, and add this computer to AD also under the Computer folder. No joy.
I try to connect to the domain.
I go through System Properties, Joina Domain, I enter the user name and password that iset up in AD, and the domain name. username : abcd1234!@#$ : nickserverco
It says there is no account for me on the domain. So I have to type in the Computer Name : Asus and and COmputer Domain : nickserverco I click next and get a box wanting a username, password and domain. In this window, ive tried Adminstrator : abcd1234!@#$ : nickserverco, as well as other users that ive made in AD
But then it says Access Denied and thats it, I cant get past it.
I think DNS isnt set up properly...and im not pointing to the right DNS server from the laptop....how can i find the DNS address of the domain, and where do I need to set it in my laptop.....aaaahhh this is driving me nuts.
Really hoping someine can point me in the right direction.
PS - just got another error this time: Multiple connections are not allowed, please disconnect all other sessions and try again. - Does that mean its conencted....cos it doesnt look like :/
You don't create the computer object, the process of domain joining the PC does that for you.
You need to get the domain joining working first. When you enter the domain name in the 'join domain' box, you can enter either the Netbios domain name, or the FQDN domain. If it found the domain, you'll get the credentials box - this is so that you can provide credentials to the PC so it can connect to the domain controller and do the necessary changes in AD (such as creating the computer object, and assigning a SID and associated permissions. It'll then make some changes to the local registry, and ask you to reboot.
The Credentials you enter should be a domain user with rights to add computers - typically just the Domain Administrator. You should enter this as the username: "NETBIOSDOMAINNAME\Administrator", and then the domain admin password. If you don't enter it like that, the dialog will assume you're referring to the local PC administrator account, which doesn't exist in the domain, and will have no rights.
Once you reboot, you'll be presented with the "press C-A-D to log in" dialog. Once you do that, you'll be able to enter a username and password. (if it's XP or earlier, you'll get a domain box too). You'll see at the bottom that vista says 'Log on to: NETBIOSNAME' which could be the PC, or the domain. You enter your login details as 'DOMAIN\username', and that field will change.
I should add that the netbios domain name and the FQDN domain name are two very different things, but they both refer to the same thing. 99% of the time, the netbios domain will be the first part of the FQDN domain, but that's not always the case. e.g.:
NICKSERVERCO ===> nickserverco.local
but some companies/places end up with something like:
COMPANY ===> internal.company.co.nz .
So be sure you know what they both are for you domain. This was asked of you during the Domain Controller promotion procedure.
but it wasnt havnt a bar of it. when it goes on to the computer details and domain, i try the same things again and i get parameter incorrect error. not as close as the access denied.....
I can see shared folders in the Network Places, just cant access them...so the connection is there.
im scratching my head at what im doing wrong. :(
im wondering if my network connection settings are wrong..... IP/DNS all that stuff on the notebook is set to Auto, and I think is being set by the wireless router in the house. Perhaps I need to put in exact IPs and DNS for server instead......or can a connection be reached without it.
If you have a local user on the laptop already, then that user won't exist as a domain user - when logged in as that you will not be able to access domain resources. the User Profile (in c:\Users) will also not be available unless you do some careful adjustment to the NTFS permissions on the profile and registry, or by copying the profile for a domain user to use.
When you get to that point, I can help you, but to start with you should just use a fresh profile with a fresh domain user for a little bit till you get a handle on things.
Finally, when logged into the PC to a *local* account ( that is, one that exists on the PC only, not on the domain ), you will have to provide credentials to the domain every time you want to query AD for a username to assign rights or whatnot.. with that dialog, you can enter any domain user - they all have read permission on the domain for that purpose. The primary reason you'll come across this is when you're logged into the PC as the local administrator, and want to assign NTFS rights on a folder to a domain user...