M
MaximVG
Hi,
For the sake of testing I'm fiddling around with Server 8's IPAM features and I'm trying to make it talk to my DHCP.
I added the DHCP server and set it to Managed. Provisioned via the GPO and ran a gpupdate /force on the DHCP (S2008R2). After the reboot of the DHCP the IPAM Access Status remains "Blocked", when I look down in the details I see that the DHCP RPC Access status is blocked. The other two, "DHCP Audit share access status" and "Event log Access status" are both UnBlocked.
I figured firewalling to be an issue first so disabled the windows firewall on both machines to no avail. Checked if the RPC service is running on the DHCP server. I manually ran the script that the GPO provides on the DHCP server and it gave me the following output.
Fetching the DHCP params from registry
Creating the network share
The name has already been shared.
More help is available by typing NET HELPMSG 2118.
Add IPAMUG to the DHCP Users group name: DHCP Users
System error 1378 has occurred.
The specified account name is already a member of the group.
Fetching SDDL for dhcpserver
IPAMUG is already a member of the Service ACL
So, according to that, all the access rights should be ok and when I check the dhcpserver service's ACL it's in there.
SID for DOMAIN\IPAMUG:
S-1-5-21-484763869-706699826-839522115-2851
sc sdshow dhcpserver D
A;;CCLCSWLOCRRC;;;S-1-5-21-484763869-706699826-839522115-2851)
Any help would be greatly appriciated!
Continue reading...
For the sake of testing I'm fiddling around with Server 8's IPAM features and I'm trying to make it talk to my DHCP.
I added the DHCP server and set it to Managed. Provisioned via the GPO and ran a gpupdate /force on the DHCP (S2008R2). After the reboot of the DHCP the IPAM Access Status remains "Blocked", when I look down in the details I see that the DHCP RPC Access status is blocked. The other two, "DHCP Audit share access status" and "Event log Access status" are both UnBlocked.
I figured firewalling to be an issue first so disabled the windows firewall on both machines to no avail. Checked if the RPC service is running on the DHCP server. I manually ran the script that the GPO provides on the DHCP server and it gave me the following output.
Fetching the DHCP params from registry
Creating the network share
The name has already been shared.
More help is available by typing NET HELPMSG 2118.
Add IPAMUG to the DHCP Users group name: DHCP Users
System error 1378 has occurred.
The specified account name is already a member of the group.
Fetching SDDL for dhcpserver
IPAMUG is already a member of the Service ACL
So, according to that, all the access rights should be ok and when I check the dhcpserver service's ACL it's in there.
SID for DOMAIN\IPAMUG:
S-1-5-21-484763869-706699826-839522115-2851
sc sdshow dhcpserver D
A;;CCLCSWLOCRRC;;;S-1-5-21-484763869-706699826-839522115-2851)Any help would be greatly appriciated!
Continue reading...