Advertisement
Hi All,<\/p>\n
Background: We have 4 domain controllers in our organisation. 2 of which are in one site and the other two is defined in another site. Our HQ’s logonserver is say DC2. And our remote site uses DC4 as their logon server.<\/p>\n
When a user logs in to a computer in our HQ it applies all our GPOs<\/p>\n
But when on the remote site, the same user logs in to a different computer. No GPO is being applied.<\/p>\n
The same computer when brought to HQ when logged on with the same user applies the GPO<\/p>\n
I am unsure as what might be the problem<\/p>\n
Checked eventlog on the machine and other new machine, and it seems to have event ID 1058 error<\/p>\n
The processing of Group Policy failed. Windows attempted to read the file \\\\domain.domain\\SysVol\\domain.domain\\Policies\\{GUID}\\gpt.ini from a domain controller and was not successful. Group Policy settings may not be applied until this event is resolved. This issue may be transient and could be caused by one or more of the following: \na) Name Resolution/Network Connectivity to the current domain controller. \nb) File Replication Service Latency (a file created on another domain controller has not replicated to the current domain controller). \nc) The Distributed File System (DFS) client has been disabled.\n<\/code><\/pre>\nAny help or guidance would be appreciated<\/p>\n
Many thanks<\/p>\n
Ace.<\/p>","upvoteCount":3,"answerCount":5,"datePublished":"2018-06-01T05:00:25.000Z","author":{"@type":"Person","name":"aceelsheik","url":"https://community.spiceworks.com/u/aceelsheik"},"suggestedAnswer":[{"@type":"Answer","text":"
Hi All,<\/p>\n
Background: We have 4 domain controllers in our organisation. 2 of which are in one site and the other two is defined in another site. Our HQ’s logonserver is say DC2. And our remote site uses DC4 as their logon server.<\/p>\n
When a user logs in to a computer in our HQ it applies all our GPOs<\/p>\n
But when on the remote site, the same user logs in to a different computer. No GPO is being applied.<\/p>\n
The same computer when brought to HQ when logged on with the same user applies the GPO<\/p>\n
I am unsure as what might be the problem<\/p>\n
Checked eventlog on the machine and other new machine, and it seems to have event ID 1058 error<\/p>\n
The processing of Group Policy failed. Windows attempted to read the file \\\\domain.domain\\SysVol\\domain.domain\\Policies\\{GUID}\\gpt.ini from a domain controller and was not successful. Group Policy settings may not be applied until this event is resolved. This issue may be transient and could be caused by one or more of the following: \na) Name Resolution/Network Connectivity to the current domain controller. \nb) File Replication Service Latency (a file created on another domain controller has not replicated to the current domain controller). \nc) The Distributed File System (DFS) client has been disabled.\n<\/code><\/pre>\nAny help or guidance would be appreciated<\/p>\n
Many thanks<\/p>\n
Ace.<\/p>","upvoteCount":3,"datePublished":"2018-06-01T05:00:25.000Z","url":"https://community.spiceworks.com/t/all-group-policy-not-applying-to-new-computers/654738/1","author":{"@type":"Person","name":"aceelsheik","url":"https://community.spiceworks.com/u/aceelsheik"}},{"@type":"Answer","text":"
Sounds like an issue with sysvol replication.<\/p>\n
See if you can actually browse to \\domain.domain\\SysVol\\domain.domain\\Policies from your remote DC’s. If you can, browse to the same location on your HQ DCs and compare GPOs. Are any missing for example?<\/p>\n
Sounds like a classic journal wrap issue. Either that or there is no replication at all between DCs. Run a repadmin /showrepl command to check replication status.<\/p>","upvoteCount":2,"datePublished":"2018-06-01T07:20:42.000Z","url":"https://community.spiceworks.com/t/all-group-policy-not-applying-to-new-computers/654738/2","author":{"@type":"Person","name":"Cookie-Master","url":"https://community.spiceworks.com/u/Cookie-Master"}},{"@type":"Answer","text":"
Also something simple to check that can give you these issues:<\/p>\n
What are the primary and secondary DNS servers set as for the client PCs? They should be pointing to AD DNS servers only - not their router or something like 8.8.8.8. Otherwise they may have issues resolving the DC or domain name.<\/p>","upvoteCount":1,"datePublished":"2018-06-01T09:15:48.000Z","url":"https://community.spiceworks.com/t/all-group-policy-not-applying-to-new-computers/654738/3","author":{"@type":"Person","name":"big-green-man","url":"https://community.spiceworks.com/u/big-green-man"}},{"@type":"Answer","text":"
Hi CookieMaster,<\/p>\n
Yes I have browsed to the above location and found that there are GPOs missing.<\/p>\n
I have also checked the sysvol healthcheck report and it seems to suggest that there are no issues with the replication.<\/p>\n
Is there anyway to find when the replicaton broke?<\/p>","upvoteCount":0,"datePublished":"2018-06-11T20:40:24.000Z","url":"https://community.spiceworks.com/t/all-group-policy-not-applying-to-new-computers/654738/4","author":{"@type":"Person","name":"aceelsheik","url":"https://community.spiceworks.com/u/aceelsheik"}},{"@type":"Answer","text":"
Hi BigGreenMan,<\/p>\n
I have checked the DNS servers and they seem to just the AD Servers<\/p>\n
No issues there<\/p>\n
Regards,<\/p>\n
Ace.<\/p>","upvoteCount":0,"datePublished":"2018-06-11T20:41:17.000Z","url":"https://community.spiceworks.com/t/all-group-policy-not-applying-to-new-computers/654738/5","author":{"@type":"Person","name":"aceelsheik","url":"https://community.spiceworks.com/u/aceelsheik"}}]}}
