Cluster setup may not work when you add nodes

Symptoms From cluster setup log(ClCfgSrv.log) 2008-10-14 16:11:38.873 [ERR ] S01: 正在檢查所有節點都可以存取仲裁資源… (hr=0x800713de, {EBC8AEFF-10C3-4D5B-AC17-FC0F4C3871B7}, {B8C4066E-0246-4358-9DE5-25603EDD0CA0}, 0, 3, 3), (null) 2008-10-14 16:11:38.952 [ERR ] S01: (null) (hr=0x800713de, {FDC75680-7DBB-42CA-8003-E4CDB01FF062}, {EBC8AEFF-10C3-4D5B-AC17-FC0F4C3871B7}, 0, 8, 8), (null) From UI Solution︰ Use Advanced (minimum) configuration to pass the verification Cluster setup may not work when you add nodes <http://support.microsoft.com/kb/331801/en-us>


Remote Assistance does not allow control – Imaged machines only

Issue: ====== Remote Assistance does not allow control – Imaged machines only Not able to remote control a remote assistance session. PROBLEM: ======= You were unable to “Take Control” of a Remote Assistance machine, after establishing a connection to the Windows XP SP2 machine. This issue only occurs on Windows XP machines that were part…


Cache file is occupying all available space

PROBLEM: ======== Cache file is occupying all available space CAUSE: ====== Momcache.mdb file is growing up without control for any of the users that uses your OpsMgr console. RESOLUTION: ========== workaround Try start the console with the /clearcache switch  or Delete C:\Documents and Settings\<user>\Local Settings\Application Data\Microsoft\Microsoft.Mom.UI.Console\momcache.mdb


User cannot create accounts on Active User and computer

發生原因 :可能為大量建立帳號或是使用非正常方式還原DC導致,原來RID pool序號應該每台是根據RID Master發出的序號 如何看DC RID Pool是否正常可以由Dcdiag /v log找到以下 客戶在在AD2上是可以建立帳號的,因為pool ID 正確 Starting test: RidManager          * Available RID Pool for the Domain is 5111 to 1073741823          * ads.pglamer.com.tw is the RID Master          * DsBind with RID Master was successful          * rIDAllocationPool is 4611 to 5110          * rIDPreviousAllocationPool is 4611 to…


Domain user cannot change account password

症狀 User無法變更密碼,該無法變更密碼的帳號ACL list裡沒有變更密碼權限,並非所有的帳號都會發生,並且這些帳號分布在各個OU,無法變更帳號本身安全性設定,變更後大約1個小時內恢復未變更的狀態 發生原因 當您委派使用權限使用委派的控制項精靈, 依賴這些使用權限從父容器, 繼承使用權限使用者物件。 不會的受保護的群組的成員從父容器繼承使用權限。 因此, 如果您設定使用的 委派控制精靈, 權限這些使用權限是不適用於的受保護的群組的成員。 請注意 受保護的群組中的成員資格定義為直接成員資格或使用一或多個安全性或發佈群組成員資格可轉移的。 通訊群組是包含的, 因為它們可以轉換成安全性群組。 無法變更密碼可能是adminSDHolder權限不正確所導致 請在PDC安裝support tools然後在命令提示字元移動到DSACLs所在的路徑下執行以下指令 dsacls CN=ADMINSDHOLDER,CN=system,DC=Domain,DC=com,DC=tw /G Everyone:CA;”Change Password” dsacls CN=ADMINSDHOLDER,CN=system, DC=Domain,DC=com,DC=tw /G Self:CA;”Change Password” DC=Domain,DC=com,DC=tw : 請根據實際環境設置 參考資訊 Delegated permissions are not available and inheritance is automatically disabled http://support.microsoft.com/kb/817433/en-us


AD – 修復/還原已遺失的 FRS 成員物件

請您用 ADSIEdit.msc 檢視 CN=Domain System Volume (SYSVOL share) 下面的複寫 Member 物件是否不見了。如果物件遺失,就會導致 DC 無法進行 FRS 抄寫。請您跟著以下步驟操作,手動把 FRS Member 物件建置回來。 參考 KB 文件: Recovering missing FRS objects and FRS attributes in Active Directory http://support.microsoft.com/kb/312862/en-us Recovering deleted FRS member objects (此段文章擷取於部份 KB 312862 內容)===============================================In the following procedure, you are using ADSIedit to re-create a deleted member object for…


AD 資料庫檔案 (NTDS.dit) 的一致性檢查

  有的時候您會遇到 NTBackup 無法備份 DC 的 System State 或是你在系統日誌裡發現: Event Type:          ErrorEvent Source:      NTBackupEvent Category:  NoneEvent ID:               8012Description:The ‘Active Directory’ returned ‘發生讀取驗證錯誤。‘ from a call to ‘BackupRead()’ additional data ‘-‘ Event Type:          ErrorEvent Source:      ESENTEvent Category:  Logging/Recovery Event ID:               474Description:lsass (504) The database page read from the file “C:\WINDOWS\NTDS\ntds.dit” at offset 77594624 (0x0000000004a00000) for 8192…