Important This article contains information that shows you how to help lower security settings or how to turn off security features on a computer. You can make these changes to work around a specific problem. Before you make these changes, we recommend that you evaluate the risks that are associated with implementing this workaround in your particular environment. If you implement this workaround, take any appropriate additional steps to help protect your system.
SYMPTOMS
When you install Norton Internet Security 2002, you have the
option to install Norton AntiVirus during the installation. When you finish installing, connectivity issues may occur between the client computer and the domain controller if you do not configure the Norton software to permit communication between the client and the domain controller. You typically receive error messages on the client when the domain controller tries to initiate communication because the client is blocking inbound communication. When this issue occurs, you may experience any of the following symptoms:
- When you try to join a Microsoft Windows 2000-based domain, you receive a "The specified domain either does not exist or could not be
contacted" error message.
- You cannot ping the client from the domain
controller (you receive a "Request timed out" error message). You can ping the domain controller from
the client.
- It takes more than 15 minutes to log on to the domain.
Events that may appear in Event Viewer
include:
- Event ID: 1000
Source: Userenv
Description:
Windows cannot determine the user or computer name. Return value
(1908) - Event ID: 54
Source: w32time
Description: The
windows Time Service was not able to find a domain controller. A time and date
update was not possible. - Event ID: 3034
Source: MRxSmb
Description: The
redirector was unable to initialize security context or query context
attributes. - Event ID: 11
Source: w32time
Description: The NTP
DCName.domain_name.com didn't respond. - Event ID: 5783
Source: NETLOGON
Description: The
session setup to the Windows NT or Windows 2000 domain controller DCName.domain_name.com for the domain Domain is not responsive. The current RPC call
from Netlogon on Workstation to DCName has been canceled.
WORKAROUND
Warning This workaround may make your computer or your network more vulnerable to attack by malicious users or by malicious software such as viruses. We do not recommend this workaround but are providing this information so that you can implement this workaround at your own discretion. Use this workaround at your own risk.
Note An antivirus program is designed to help protect your computer from viruses. You must not download or open files from sources that you do not trust, visit Web sites that you do not trust, or open e-mail attachments when your antivirus program is disabled.
For additional information about computer viruses, click the following article number to view the article in the Microsoft Knowledge Base:
129972
Computer viruses: description, prevention, and recovery
Disable the Norton AntiVirus Auto-Protect service in the
Services snap-in. You may also have to remove Norton Internet Security 2002
to restore communication. Contact Norton for information about how to correctly install and configure the Auto-Protect feature.
The third-party products that are discussed in this article are manufactured by
companies that are independent of Microsoft. Microsoft makes no warranty,
implied or otherwise, regarding the performance or reliability of these
products.