Windows XP logon fails - domain not available
|
From: Dabbler on 13 Jan 2010 03:12 I have just done a clean install of a plagued Widows XP laptop at a remote location. After creating VPN connection and confirming logon I set the pc to domain instead of workgroup. Now it won't let me login to domain while I am remote saying there is no connection. Obviously I can't start VPN till I get to desktop. What am I missing here? I had this working before I wiped the system and reinstalled XP. Thanks for any help.
From: Cliff Galiher - MVP on 13 Jan 2010 04:02 NT-based versions of windows from 2000 on, including XP, will cache credentials by default once you've logged on successfully once. You can log back into a machine even if it can't authenticate against the domain controller because it can now use those cached credentials. So, very likely, what happened before you wiped the machine was that you had logged in at least once with a wired connection, thus establishing and caching the credentials. Now that the laptop has been wiped though, there are no credentials, so the system can neither use the cache nor contact the DC, so the error you are seeing is expected. Unfortunately I only have Vista and Win7 machines in front of me at the moment, so I can't confirm this exactly, but as I recall, the login screen for XP has an "options" button that presents some extra settings beyond just the username/password box. One of those settings was to use a dial-up connection to log in. In XP, VPN connections are considered dial-up connections, so you could actually create the VPN tunnel as part of the login process and thus properly authenticate. Otherwise you'll have to take the laptop to the LAN and perform a login to get things cached properly. -Cliff "Dabbler" <Dabbler(a)discussions.microsoft.com> wrote in message news:1C9FA4C9-A3B0-402F-AE86-9F46C6B2612D(a)microsoft.com... > I have just done a clean install of a plagued Widows XP laptop at a remote > location. After creating VPN connection and confirming logon I set the pc > to > domain instead of workgroup. Now it won't let me login to domain while I > am > remote saying there is no connection. Obviously I can't start VPN till I > get > to desktop. What am I missing here? I had this working before I wiped the > system and reinstalled XP. > > Thanks for any help.
From: Dabbler on 13 Jan 2010 09:11 Wow, thanks for those details! Having used these OSs all these years I never had a clue about this. Thanks much! "Cliff Galiher - MVP" wrote: > NT-based versions of windows from 2000 on, including XP, will cache > credentials by default once you've logged on successfully once. You can log > back into a machine even if it can't authenticate against the domain > controller because it can now use those cached credentials. So, very > likely, what happened before you wiped the machine was that you had logged > in at least once with a wired connection, thus establishing and caching the > credentials. Now that the laptop has been wiped though, there are no > credentials, so the system can neither use the cache nor contact the DC, so > the error you are seeing is expected. > > Unfortunately I only have Vista and Win7 machines in front of me at the > moment, so I can't confirm this exactly, but as I recall, the login screen > for XP has an "options" button that presents some extra settings beyond just > the username/password box. One of those settings was to use a dial-up > connection to log in. In XP, VPN connections are considered dial-up > connections, so you could actually create the VPN tunnel as part of the > login process and thus properly authenticate. > > Otherwise you'll have to take the laptop to the LAN and perform a login to > get things cached properly. > > -Cliff > > "Dabbler" <Dabbler(a)discussions.microsoft.com> wrote in message > news:1C9FA4C9-A3B0-402F-AE86-9F46C6B2612D(a)microsoft.com... > > I have just done a clean install of a plagued Widows XP laptop at a remote > > location. After creating VPN connection and confirming logon I set the pc > > to > > domain instead of workgroup. Now it won't let me login to domain while I > > am > > remote saying there is no connection. Obviously I can't start VPN till I > > get > > to desktop. What am I missing here? I had this working before I wiped the > > system and reinstalled XP. > > > > Thanks for any help. > > . >
From: "Robbin Meng [MSFT]" on 14 Jan 2010 04:05 Hi, Thanks for your post and Cliff's good explanation. In addition to Cliff's input, a user can log on using a dial-up connection (including a Connection Manager connection) only if the computer is a member of a domain. If the computer is not a member of a domain, the Log on using dial-up connection check box does not appear. In the Log On to Windows dialog box, the user can select the Log on using dial-up connection check box. After clicking OK, the user is prompted to choose a network connection. After the user chooses a connection, the Connection Manager logon screen appears. Connection Manager starts the connection process when the user clicks Connect. If you are interested in this topic, please click on the following links to find more: Cached domain logon information http://support.microsoft.com/kb/172931 How Interactive Logon Works http://technet.microsoft.com/en-us/library/cc780332(WS.10).aspx You cannot log on after you correctly change your logon credentials http://support.microsoft.com/kb/829652 Incorporating Connection Manager with logon security http://technet.microsoft.com/en-us/library/cc787562(WS.10).aspx Hope this helps. Best regards, Robbin Meng(MSFT) Microsoft Online Newsgroup Support ================================================================== Please post your SBS 2008 related questions to the SBS newsgroup on Connect website: https://connect.microsoft.com/sbs08/community/discussion/richui/default.aspx Please post your EBS related questions to the EBS newsgroup on Connect website: https://connect.microsoft.com/ebs08/community/discussion/richui/default.aspx If you want to use a newsreader other than a web forum to access these newsgroups, please refer to the following blog to apply NNTP password and configure a newsreader: http://msmvps.com/blogs/bradley/archive/2008/11/02/signing-up-for-the-sbs-2008-newsgroups.aspx ================================================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue. ================================================================== This posting is provided "AS IS" with no warranties, and confers no rights. ==================================================================
|
Pages: 1 Prev: Users - can not access internet Next: WMI Error migrating from SBS 2003 to SBS 2008 |