Microsoft KB Archive/281733

= NT 4.0 Backup Domain Controllers Unable to Replicate from Windows 2000 Primary Domain Controller =

Article ID: 281733

Article Last Modified on 3/2/2007

-

APPLIES TO


 * Microsoft Windows 2000 Server
 * Microsoft Windows 2000 Advanced Server
 * Microsoft Windows NT Server 4.0 Standard Edition

-



This article was previously published under Q281733



SYMPTOMS
On Windows NT 4.0 backup domain controllers (BDCs), the Netlogon service did not start. The System log in the Windows Event Viewer may record the following event:

Event ID: 3210 Source: Netlogon Type: Error Description: Failed to authenticate with, a Windows NT domain controller for domain. Data word: c0000022

The Event Viewer on the primary domain controller (PDC) may not reveal any corresponding events. However, no replication is occurring between the BDCs and the PDC.



CAUSE
This may occur if &quot;Restrict Anonymous&quot; was set through Group Policy.



RESOLUTION
To verify if this option was set:
 * 1) Click Start, point to Programs, point to Administrative Tools, and then click Local Security Policy.

Note If you cannot do this step because Administrative Tools does not appear on the Programs menu, click Start, point to Settings, point to Control Panel, click Administrative Tools, and then click Local Security Policy. Go to step 2.
 * 1) Under Security Settings, double-click Local Policies, and then click Security Options.
 * 2) Double-click Additional restrictions for anonymous connections, and then click Not defined or None. Rely on default permissions.
 * 3) Restart the primary domain controller to make the change take effect.



STATUS
Microsoft has confirmed this to be a problem in Microsoft Windows 2000.

Keywords: kbprb KB281733

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.