Announcement

Collapse
No announcement yet.

Server 2003 Password Reset Slow

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Server 2003 Password Reset Slow

    I am running 2 domain controllers (Server 2003, SP2, latest hotfixes). I configured a GPO to enable the Windows Firewall according to the MS article(Including the registry edits):

    http://support.microsoft.com/kb/555381

    Whenever I use the administrator Tools on a XP workstation, resetting a password takes about 30 seconds. With the DC's firewall turned off, this only takes about 1 second. From the actual DC's, it only takes about 1 second to reset a PW. Logins, AD replications, login scripts, etc all function normally.

    In addition, I also have the following port exceptions defined in my Windows Firewall GPO

    123:udp:*:enabled:NTP
    135:tcp:*:enabled:RPC
    2535:upd:*:enabled:MADCAP
    3269:tcp:*:enabled:GC
    4500:udp:*:enabled:NAT-T
    500:udp:*:enabled:IPsec ISAKMP
    53:udp:*:enabled: DNS
    53:tcp:*:enabled: DNS
    636:udp:*:enabled:LDAP SSL
    636:tcp:*:enabled:LDAP SSL
    67:udp:*:enabled: DHCP
    88:udp:*:enabled:Kerberos
    88:tcp:*:enabled:Kerberos

    Has anyone ran into this before, or have any suggestions?

  • #2
    Re: Server 2003 Password Reset Slow

    I would suggest to place a sniffer on you're desktop and see what's going wrong.
    Marcel
    Technical Consultant
    Netherlands
    http://www.phetios.com
    http://blog.nessus.nl

    MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
    "No matter how secure, there is always the human factor."

    "Enjoy life today, tomorrow may never come."
    "If you're going through hell, keep going. ~Winston Churchill"

    Comment

    Working...
    X