GPO question after using rendom.exe

Tutorials Win: Microsoft Windows Forum

I=92m renaming a domain, which is managed by two W2K3 R2 domain
controllers, with the rendom utility.

In Microsoft=92s step by step guide to renaming a domain, it says to
enter this command:

gpfixup /olddns:oas.local /newdns:oas-backup.local /oldnb:oas /
newnb:oas-backup 2>&1 >gpfixup.log

This command fails and the resulting popup window has this error
message:

=93The procedure entry point CryptUnprotectMemory could not be located
in the dynamic link library CRYPT32.dll=94

Also, this is probably related but when I try to run gpmc.msc, I
experience the following trouble:

There is a problem when clicking on either the domain controller
policy or the domain policy. In fact, a window is displayed asking to
change the current domain controller. On this form there is a
combobox, which is greyed out, and it says, =93look in this domain=94.
And the domain reflected in the un-editable control is =93oas.local=94 =96
which is the old domain!!!

Any attempts to select any of the four radio buttons (the domain
control which is the PDC emulator, any domain controller, and
available domain controller running Windows 2003, or specifying a
domain controller) fails.

Just about everything worked using rendom =96 except for being able to
access the GPO for the domain and the domain controllers. Any
suggestions on how to get the gpfixup command or the gpmc.msc working
is greatly appreciated.

Thanks!
Top

Re: GPO question after using rendom.exe by Florian

Florian
Tue May 06 23:06:31 PDT 2008

Howdie!

Adam Sandler schrieb:
> ?The procedure entry point CryptUnprotectMemory could not be located
> in the dynamic link library CRYPT32.dll?

That doesn't sound like it's related to Group Policy. It merely sound
like a broken DLL.

>
> Also, this is probably related but when I try to run gpmc.msc, I
> experience the following trouble:
>
> There is a problem when clicking on either the domain controller
> policy or the domain policy. In fact, a window is displayed asking to
> change the current domain controller. On this form there is a
> combobox, which is greyed out, and it says, ?look in this domain?.
> And the domain reflected in the un-editable control is ?oas.local? ?
> which is the old domain!!!

That looks like a DNS issue to me. Can you actually ping the domain and
get a response?

cheers,

Florian
--
Microsoft MVP - Windows Server - Group Policy.
eMail: prename [at] frickelsoft [dot] net.
blog: http://www.frickelsoft.net/blog.
Use a newsreader! http://www.frickelsoft.net/news.html
Top

Re: GPO question after using rendom.exe by Adam

Adam
Fri May 09 07:14:56 PDT 2008

On May 7, 6:06 am, "Florian Frommherz [MVP]"
<flor...@frickelsoft.DELETETHIS.net> wrote:

> > There is a problem when clicking on either the domain controller
> > policy or the domain policy. In fact, a window is displayed asking to
> > change the current domain controller. On this form there is a
> > combobox, which is greyed out, and it says, =93look in this domain=94.
> > And the domain reflected in the un-editable control is =93oas.local=94 =
=96
> > which is the old domain!!!
>
> That looks like a DNS issue to me. Can you actually ping the domain and
> get a response?

Perhaps it is a DNS issue but I don't have any entries in DNS with the
domain oas.local. Recall that I used the domain rename procedure to
rename the domain to oas-backup.local. But when I go to the group
policy editor, it's looking for a domain controller in oas.local <--
the old and no longer existing domain name.

I can ping oas-backup.local just fine. I do not get a response from
oas.local.

Just about everything worked using rendom =96 except for being able to
access the GPO for the domain and the domain controllers. Any
suggestions on how to get the gpfixup command or the gpmc.msc working
is greatly appreciated.

Thanks!
Top