The landlord Published in: 2016-01-26 11:01:12
It has the password in the AD, the same login.
#1 Score: 0 Reply to: 2016-01-26 19:31:36
What is the use of desktop cloud what version?
The first time this phenomenon still before landing, appear now?
#2 Score: 0 Reply to: 2016-01-26 19:34:18
1 Q1, the client could not be joined to the domain
If you want a computer is joined to a domain, this computer must be a local administrator (default administrator) login, ensure management control permissions on this computer.
When using the common domain member can be added up to 10 computers, more than 10 units will be rejected, the same computer will be rejected. The use of domain management will not have the above problems
2, network problems
(1) Ping domain controller IP
(2) Ping domain name
(3) DNS: /flushdns to remove the machine DNS cache.
(4) Ipconfig/all query DNS configuration is correct
(5) a _ldap._tcp.dc._msdcs.DNSDomainName SRV record must exist in DNS.
(6) the above records specified by DC in DNS, there must be a corresponding record to the host (A).
3, the component is not installed
(1): Microsft network client client
(2) the server (domain controller): Microsoft network file and print sharing did not choose,
4, whether to open the firewall? Port TCP, UDP 53
You can try to use telnet IP 53
5, the following services are open?
Remote Procedure Call (RPC)
TCP/IP NetBIOS Helper
6, check the Group Policy
The design of IPSEC strategy
User rights assignment: add workstation domain
Security options: Microsoft network client: digital signature (always)
2 Q2, bureau for third party AD our problems
AD domain group policy 1, check the customer, including the password length requirement, check the network password is a tool to meet the complexity requirements, including (SA code)
2, check whether AD users open Kerberos service, if not open, please modify the ITA authentication method for non Kerberos certification.
3, planning the computer name AD computer users do not duplicate.
4, check the length of the domain name administration is consistent, if not consistent, do not set the SupportMultipleForest to 1.
5, to build the environment, must remember to clean the forward and reverse DNS analysis, if you modify the computer name or IP
6, the user account CN, userPrincipalName (@ first half) and sAMAccountName are the same
7, check the computer name (Computer+$) is located on the domain of virtual machine programming in the computer's OU (the default virtual machine is added to the computers group) have read permission.
We should 8.nslookup the user login domain view user virtual machine Ping the future, these IP can pass?