JSI Tip 6322. Only domain controllers get group policy applied?

When anyone logs on to a member computer, the site, domain and Organizational Unit group policies are NOT applied. When a domain administrator logs on to the console of a domain controller, the policies are applied. You may have the following event in the Application event log:

Event Type: Warning
Event Source: NETLOGON
Event Category: None
Event ID: 5773
Date: <date>
Time: <time>
User: N/A
Computer: <ComputerName>
Description: The DNS server for this DC does not support dynamic DNS. Add the DNS records from the file '%SystemRoot%\System32\Config\netlogon.dns' to the DNS server serving the domain referenced in that file.

If your domain controller uses a DNS server that does NOT support dynamic updates, you will experience this behavior.

To resolve this problem, your domain controller must use a DNS server that supports dynamic updates or SRV records.

See 255913 - Integrating Windows 2000 DNS into an Existing BIND or Windows NT 4.0-Based DNS Namespace.

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.