[ActiveDir] Missing Sysvol and Netlogon
Title: Missing Sysvol and Netlogon I am hoping that you guys could share some light on the following problem I encountered. Doing my usual Administrative Task I had to disable an option in the Domain Policy and I experienced errors opening the policies. Had a look at the "sysvol and netlogon" contents and picked up that the entire content was removed and this had been replicated throughout the domain. So after brain storming we figured that we would just copy the contents we had from a previous backup and hey presto everything started working and the changes were replicated back to all the DC's. So my questions are these: § What level of access does one require to be able to delete the contents of the "Sysvol and Netlogon"? § Was the copying of the contents the right move that was made? § I know that the FRS service and Active Directory replication work independently can someone tell me where I can read up slightly more information for FRS. § I am having errors currently opening my "Default Domain Policy" where it reports errors on certain lines and after selecting "Ok" I have access to the policy but the question is do I just copy a "default Adm" file and apply the changes or is there an alternative method. __ For information about the Standard Bank group visit our web site__ Disclaimer and confidentiality note Everything in this e-mail and any attachments relating to the official business of Standard Bank Group Limited is proprietary to the group. It is confidential, legally privileged and protected by law. Standard Bank does not own and endorse any other content. Views and opinions are those of the sender unless clearly stated as being that of the group. The person addressed in the e-mail is the sole authorised recipient. Please notify the sender immediately if it has unintentionally reached you and do not read, disclose or use the content in any way.Standard Bank can not assure that the integrity of this communication has been maintained nor that it is free of errors, virus, interception or interference.___
RE: [ActiveDir] Missing Sysvol and Netlogon
Title: Missing Sysvol and Netlogon Yusuf, Minimal time, so this will be quick - I'll let the other good folks fill in more detail. 1. Domain Admin and above to delete the files 2. It's one step in the process, but may not be enough - it sure isn't going to hurt in a crisis 3. Lots of FRS white papers on www.microsoft.com/windows in the Server technical downloads section, or my new personal favorite book, "Inside Active Directory" 4. Default Domain Policy and Default Domain Controller POlicy are both unique and tied to unique GUIDs. I'm not sure as referenced by "may not be enough" in #2, that simply copying will restore these two properly. An Authoritative restore in DS Restore mode would be a better route. These two are not easily 'copied' Sorry I don't have more time Rick Kingslan MCSE, MCSA, MCTMicrosoft MVP - Active DirectoryAssociate ExpertExpert Zone - www.microsoft.com/windowsxp/expertzone From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mayet, Yusuf YSent: Thursday, July 03, 2003 7:41 AMTo: '[EMAIL PROTECTED]'Subject: [ActiveDir] Missing Sysvol and Netlogon I am hoping that you guys could share some light on the following problem I encountered. Doing my usual Administrative Task I had to disable an option in the Domain Policy and I experienced errors opening the policies. Had a look at the "sysvol and netlogon" contents and picked up that the entire content was removed and this had been replicated throughout the domain. So after brain storming we figured that we would just copy the contents we had from a previous backup and hey presto everything started working and the changes were replicated back to all the DC's. So my questions are these: § What level of access does one require to be able to delete the contents of the "Sysvol and Netlogon"? § Was the copying of the contents the right move that was made? § I know that the FRS service and Active Directory replication work independently can someone tell me where I can read up slightly more information for FRS. § I am having errors currently opening my "Default Domain Policy" where it reports errors on certain lines and after selecting "Ok" I have access to the policy but the question is do I just copy a "default Adm" file and apply the changes or is there an alternative method. __ For information about the Standard Bank group visit our web site <www.standardbank.co.za>__ Disclaimer and confidentiality note Everything in this e-mail and any attachments relating to the official business of Standard Bank Group Limited is proprietary to the group. It is confidential, legally privileged and protected by law. Standard Bank does not own and endorse any other content. Views and opinions are those of the sender unless clearly stated as being that of the group. The person addressed in the e-mail is the sole authorised recipient. Please notify the sender immediately if it has unintentionally reached you and do not read, disclose or use the content in any way.Standard Bank can not assure that the integrity of this communication has been maintained nor that it is free of errors, virus, interception or interference.___
RE: [ActiveDir] Missing Sysvol and Netlogon
Title: Message Yusuf- With respect to your Default Domain Policy problems, recopying the SYSVOL files should have been enough if that's all that was damaged on your GPOs. Keep in mind that a GPO has two parts--the part in SYSVOL and the part in AD under \System\Policies. Its possible that the AD part of your GPOs got "whacked" (technical term) too. Check out the MS Group Policy Management Console--its got some good tools for doing basic backup and restore of your GPOs--for future use. In terms of your last question on errors in Default Domain Policy, if the errors you're getting are in Administrative Template policy, then the settings you created there are stored in the registry.pol file under SYSVOL\\\Policies\[GUID]\Machine or User and, as you've probably noticed, the adms used by that GPO are stored in the ADM folder. You can just copy the .adms from another GPO to that one if you suspect there are problems with the .adms. You might want to also double-check the permissions of these files within SYSVOL, since inconsistent permissions can cause weird problems editing the GPOs. -Original Message-From: Rick Kingslan [mailto:[EMAIL PROTECTED] Sent: Thursday, July 03, 2003 5:55 AMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] Missing Sysvol and Netlogon Yusuf, Minimal time, so this will be quick - I'll let the other good folks fill in more detail. 1. Domain Admin and above to delete the files 2. It's one step in the process, but may not be enough - it sure isn't going to hurt in a crisis 3. Lots of FRS white papers on www.microsoft.com/windows in the Server technical downloads section, or my new personal favorite book, "Inside Active Directory" 4. Default Domain Policy and Default Domain Controller POlicy are both unique and tied to unique GUIDs. I'm not sure as referenced by "may not be enough" in #2, that simply copying will restore these two properly. An Authoritative restore in DS Restore mode would be a better route. These two are not easily 'copied' Sorry I don't have more time Rick Kingslan MCSE, MCSA, MCTMicrosoft MVP - Active DirectoryAssociate ExpertExpert Zone - www.microsoft.com/windowsxp/expertzone From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mayet, Yusuf YSent: Thursday, July 03, 2003 7:41 AMTo: '[EMAIL PROTECTED]'Subject: [ActiveDir] Missing Sysvol and Netlogon I am hoping that you guys could share some light on the following problem I encountered. Doing my usual Administrative Task I had to disable an option in the Domain Policy and I experienced errors opening the policies. Had a look at the "sysvol and netlogon" contents and picked up that the entire content was removed and this had been replicated throughout the domain. So after brain storming we figured that we would just copy the contents we had from a previous backup and hey presto everything started working and the changes were replicated back to all the DC's. So my questions are these: § What level of access does one require to be able to delete the contents of the "Sysvol and Netlogon"? § Was the copying of the contents the right move that was made? § I know that the FRS service and Active Directory replication work independently can someone tell me where I can read up slightly more information for FRS. § I am having errors currently opening my "Default Domain Policy" where it reports errors on certain lines and after selecting "Ok" I have access to the policy but the question is do I just copy a "default Adm" file and apply the changes or is there an alternative method. __ For information about the Standard Bank group visit our web site <www.standardbank.co.za>__ Disclaimer and confidentiality note Everything in this e-mail and any attachments relating to the official business of Standard Bank Group Limited is proprietary to the group. It is confidential, legally privileged and protected by law. Standard Bank does not own and endorse any other content. Views and opinions are those of the sender unless clearly stated as being that of the group. The person addressed in the e-mail is the sole authorised recipient. Please notify the sender immediately if it has unintentionally reached you and do not read, disclose or use the content in any way.Standard Bank can not assure that the integrity of this communication has been maintained nor that it is free of errors, virus, interception or interference.___ �
