NT 4.0 Backup Domain Controllers Unable to Replicate from Windows 2000 Primary Domain Controller (281733)
The information in this article applies to:
- Microsoft Windows 2000 Server
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows NT Server 4.0
This article was previously published under Q281733 SYMPTOMS On Windows NT 4.0 backup domain controllers (BDCs), the
Netlogon service did not start. The System log in the Windows Event Viewer may
record the following event:
Event ID: 3210 Source:
Netlogon Type: Error Description: Failed to authenticate with
computer name, a Windows NT domain controller for
domain domain name. Data word: c0000022The
Event Viewer on the primary domain controller (PDC) may not reveal any
corresponding events. However, no replication is occurring between the BDCs and
the PDC.CAUSEThis may occur if "Restrict Anonymous" was set through Group
Policy. RESOLUTIONTo verify if this option was set:
- Click Start, point to
Programs, point to Administrative Tools, and
then click Local Security Policy.
Note If you cannot do this step because Administrative
Tools does not appear on the Programs menu, click
Start, point to Settings, point to
Control Panel, click Administrative Tools,
and then click Local Security Policy. Go to step 2. - Under Security Settings, double-click
Local Policies, and then click Security
Options.
- Double-click Additional restrictions for anonymous
connections, and then click Not defined or
None. Rely on default permissions.
- Restart the primary domain controller to make the change
take effect.
STATUS Microsoft has confirmed this to be a problem in Microsoft
Windows 2000.
| Modification Type: | Minor | Last Reviewed: | 5/23/2003 |
|---|
| Keywords: | kbprb KB281733 |
|---|
|