User Principal Name Suffix List Includes Incorrect and Not Valid Domain Names (320712)
The information in this article applies to:
- Microsoft Windows 2000 Server
- Microsoft Windows 2000 Advanced Server
This article was previously published under Q320712 SYMPTOMS
When you use Active Directory Users and Computers to add new users, domain names that should not be there or that are not valid may be visible in the user principal name (UPN) suffix combination box. This occurs only if the current domain name ends with the name of a root domain. For example, this would occur if the current domain name is abcxyz.com, and the Active Directory forest included root domains such as xyz.com, or cxyz.com.
CAUSE
This problem may occur because the condition that is used to determine if a domain name is the root domain for the current domain is incorrect, and the code that is used to determine the root domain name for the current domain name is wrong.
RESOLUTION
You can use the forest-wide UPN suffix list (when it is filled in) to prevent root domains that are not valid from appearing in the list.
STATUSMicrosoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article. MORE INFORMATION
The UPN suffix combination box for adding a new user or editing an existing one should be filled in with either the current domain name and its root domain name (if there is one) or with the UPN suffix list that is specified for the forest.
UPN suffixes are specified in the Active Directory Domains and Trusts. To edit the list, select the Active Directory Domains and Trusts root node of the tree view, and then click Properties on the Action menu.
| Modification Type: | Major | Last Reviewed: | 10/30/2003 |
|---|
| Keywords: | kbenv kbnetwork kbprb kbui KB320712 |
|---|
|