Environment: two servers running windows 2008 R2 64 bit standard edition Clients: A mix of XP, 7 32-bit and 64 bit professional edition Two remote locations Problem, logon script maps three drives for the users and all three drives map with no problem and users are able to access all mapped drives except from one computer. The mapped drive gives an access denied error, this occurs for all users on this one computer, but on the other computers it is not a problem. Event viewer is showing an event id 502 for redirection, that is the only significant error in the log. Curiously, if I map another drive using \\10.10.10.10\shared the share is accessible, but if mapped by FQDN, or NETBIOS we get the access denied error. Though problem might be corrupt computer account, so I removed from domain and added it back in a few hours later. No Joy.

Since you are facing issue with single PC it seems to be dns name resolution issue. -->> IP configuration on clients and member servers: 1. Each workstation/member server should point to local DNS server as primary DNS and other remote DNS servers as secondary. 2. Do not set public DNS server in TCP/IP setting of client/member server. 3.Also ensure that Register this connection's address in DNS is checked in the TCPIP setting of DNS tab. 4.Disable unrequired NIC if multiple NIC is present on the Clent PC. 5.Enable Netbios over TCPIP setting in NIC setting in Wins tab. --Check the DNS console for duplicate record for the host machine and remove the same. --Check whether the Firewall service is ON of OFF? Refer link this to diable the firewall:http://technet.microsoft.com/en-us/library/cc766337(WS.10).aspx --Check the status of the machines account in the AD?(It may be disabled) If the Machine account is disable enable the same. Hope this helps Regards, Sandesh Dubey. ------------------------------- MCSE|MCSA:Messaging|MCTS|MCITP:Enterprise Adminitrator My Blog: http://sandeshdubey.wordpress.com This posting is provided AS IS with no warranties, and confers no rights.

Hi, I would like to suggest you perform the following troubleshooting suggestions: 1. Create a new sharing folder, add and assign Everyone group the Full Control NTFS and Sharing permissions. 2. Disable SMB Signing by navigating to HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters and modifying the EnableSecuritySignature value to 0. 3. Disable Restrictanonymous by navigating to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa and modifying the RestrictAnonymous value to 0. What are the results? If it does not work, please also try the following steps and check the result. 1. Run ncpa.cpl. 2. Right click on Local Area Connection and select Properties. 3. Highlight Internet Protocol Version 4 (TCP/IPv4) and click Properties. 4. Click Advanced… button and switch to DNS tab. 5. To resolve an unqualified name by appending the primary DNS suffix and the DNS suffix of each connection, click Append primary and connection specific DNS suffixes. To do this, each connection must be configured. If you also want to search the parent suffixes of the primary DNS suffix up to the second-level domain, click to select the Append parent suffixes of the primary DNS suffix check box. 6. To resolve an unqualified name by appending the suffixes from a list of configured suffixes, click Append these DNS suffixes (in order), and then click Add to add suffixes to the list. 7. To configure a connection-specific DNS suffix, type the DNS suffix in the DNS suffix for this connection box. For more information, please refer to the following Microsoft KB article: How to configure TCP/IP to use DNS in Windows XP http://support.microsoft.com/kb/305553 Regards,Arthur Li TechNet Community Support

Hi, I would like to suggest you perform the following troubleshooting suggestions: 1. Create a new sharing folder, add and assign Everyone group the Full Control NTFS and Sharing permissions. 2. Disable SMB Signing by navigating to HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters and modifying the EnableSecuritySignature value to 0. 3. Disable Restrictanonymous by navigating to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa and modifying the RestrictAnonymous value to 0. What are the results? If it does not work, please also try the following steps and check the result. 1. Run ncpa.cpl. 2. Right click on Local Area Connection and select Properties. 3. Highlight Internet Protocol Version 4 (TCP/IPv4) and click Properties. 4. Click Advanced… button and switch to DNS tab. 5. To resolve an unqualified name by appending the primary DNS suffix and the DNS suffix of each connection, click Append primary and connection specific DNS suffixes. To do this, each connection must be configured. If you also want to search the parent suffixes of the primary DNS suffix up to the second-level domain, click to select the Append parent suffixes of the primary DNS suffix check box. 6. To resolve an unqualified name by appending the suffixes from a list of configured suffixes, click Append these DNS suffixes (in order), and then click Add to add suffixes to the list. 7. To configure a connection-specific DNS suffix, type the DNS suffix in the DNS suffix for this connection box. For more information, please refer to the following Microsoft KB article: How to configure TCP/IP to use DNS in Windows XP http://support.microsoft.com/kb/305553 Regards,Arthur Li TechNet Community Support