Od user cannot log in

Similar Messages

• SAPJSF user cannot log-on to the User Management Engine.

  We have a newly installed PI 7.0 system.
  SLDCHECK is succussful but if we go to the http://hostname:50100/sld - we are redirected to http://hostname:50100/logon/logonServlet?redirectURL=%2Fwebdynpro%2Fdispatcher%2Fsap.com%2Ftc%7Esld%7Ewd%7Emain%2FMain
  When we check the default.trc file, we see the error: User "SAPJSF" is the communication user for the connection between User Management Engine and the ABAP backend system SIDCLNTxyz. This user cannot log-on to the User Management Engine.
  The SAPJSF user is not locked in SU01.  This user is used by the JCO providers to connect to the gateway service.
  We opened Visual Administrator and navigated to Server0 -> Services -> UM Provider
  We changed the password  property at ume.r3.connection.master.passwd
  We then restarted the ABAP and J2EE engine.  But we still see this error.
  Any help to solve this issue is appreciate.
  Jay Malla

  Hi,
  Please, refer the link below. It says you cannot logon with SAPJSF user to J2EE engine for security reasons.
  http://help.sap.com/saphelp_nw2004s/helpdata/en/4e/225b42eeb66255e10000000a155106/frameset.htm
  Thanks
  R.Murali

• OD users cannot log on without server home directory

  I am new to OD and am trying to configure a working setup for a few Macs on the network. The server is set up as an OD master, and while we are running Active Directory, the Mac server is not integrated into the AD network. DHCP and DNS are handled by the server that provides AD.
  I have set up a few test users and bound a Mac to the OD server for testing. I've found that if I don't specify a home directory for a particular user in workgroup manager (i.e. I just leave it at (none)), the user cannot log on to the bound Mac. The log in window begins to slide as if it is accepting the password, then stops and shakes and brings me back to the login window without any error message. If I specify a home directory on the server, it will then accept the username and password, show that I am logging in as said user, then display the message, "You are unable to log in to the user account [user] at this time. Logging into the account failed because an error occurred."
  I'm guessing the error message relates to a permissions issue with the way the home directories are set up. But honestly, I'd rather the users just have their home directories stored locally rather than on the server. How do I configure it so that the users are able to log on and their home directories are stored locally?
  Thanks in advance for any assistance that can be provided!

  After playing around with the system some more, I found that I had to explicitly specify the local home directory. I set it to /Users/ and everything seems to be working now.

• User cannot log into ZCM Agent 11.3.1

  We just went through a domain migration. All PCs were unregistered from the old ZCM 11.2 server in the old domain before they were migrated. When we went to re-register them to the 11.3.1 ZCM server, we ran into 2 issues. Some of the systems successfully upgraded to 11.3.1 BUT users cannot log onto the ZCM 11.3.1 Agent. It's giving an error of "unable to log into the network because the login credentials or the server certificate is incorrect". The PCs that didn't not upgraded to ZCM 11.3.1 and are running 11.2.0 do not have this problem. They get authenticated appropriately. The User configuration is set to eDirectory (just like on the ZCM 11.2 server in the old domain).
  I ran "zac ci" and noticed there are old certificates from ZENworks servers that are no longer around. How do you get rid of these old references? It's picking up the new server's certificates. I ran this on my PC ZCM Agent 11.2 (won't upgrade and can authenticate into the ZCM 11.2 agent just fine) and I do not see the old certificates. I'm only seeing certificates for the new ZCM 11.3.1 server in the new domain and the eDirectory master server that the ZCM server is referencing.

  The old Trusts can be cleared using IE to managed the Trusted Root
  Stores. There are some other ways too.
  However, Having old ones should not be an issue unless the old and new
  Servers have the same name. Not 100% sure matching will cause an issue,
  but I think I have seen that before.
  It may be possible to automate the removal of the old trusts, but I
  would not worry about that until you verify it is an issue by manually
  fixing a couple and see if resolves your issue.
  Your issue may be something else.
  Reinstalling CASA is something else to try.
  On 10/9/2014 5:16 AM, hfr63 wrote:
  >
  > We just went through a domain migration. All PCs were unregistered from
  > the old ZCM 11.2 server in the old domain before they were migrated.
  > When we went to re-register them to the 11.3.1 ZCM server, we ran into 2
  > issues. Some of the systems successfully upgraded to 11.3.1 BUT users
  > cannot log onto the ZCM 11.3.1 Agent. It's giving an error of "unable
  > to log into the network because the login credentials or the server
  > certificate is incorrect". The PCs that didn't not upgraded to ZCM
  > 11.3.1 and are running 11.2.0 do not have this problem. They get
  > authenticated appropriately. The User configuration is set to
  > eDirectory (just like on the ZCM 11.2 server in the old domain).
  >
  > I ran "zac ci" and noticed there are old certificates from ZENworks
  > servers that are no longer around. How do you get rid of these old
  > references? It's picking up the new server's certificates. I ran this
  > on my PC ZCM Agent 11.2 (won't upgrade and can authenticate into the ZCM
  > 11.2 agent just fine) and I do not see the old certificates. I'm only
  > seeing certificates for the new ZCM 11.3.1 server in the new domain and
  > the eDirectory master server that the ZCM server is referencing.
  >
  >
  Going to Brainshare 2014?
  http://www.brainshare.com
  Use Registration Code "nvlcwilson" for $300 off!
  Craig Wilson - MCNE, MCSE, CCNA
  Novell Technical Support Engineer
  Novell does not officially monitor these forums.
  Suggestions/Opinions/Statements made by me are solely my own.
  These thoughts may not be shared by either Novell or any rational human.

• Network users cannot log in to server

  I have set up a new server from scratch on a new Macmini.  In the main, it works absolutely fine.  Users can log into the sever from client device as registered user and can share the screen with no problem.
  The users are set up as local network users and are in a local group and a network group. I set them up using Workgroup manager after setting up Open directory.  All users cn be seen from OD and WM.  However, they cannot log in to the server directly - only the server adminstrator can do that.  Home drives etc are all set up fine.
  Any help will be greatly appreciated.
  F

  Administrators always have access, you may have blocked Network Users from having access using Workgroup Manager 10.8.
  Open Workgroup Manager 10.8
  Authenticate to the local directory as an administrator.
  Go to the machines section and select the server where users cannot log in.
  Click the preferences icon to see the preferences for that computer set through WM 10.8
  From the overview choose Login.
  Choose the Access tab and set Manage: to Never.
  Message was edited by: Mark23

• HELP NEEDED - 530 user cannot log in

  I'm using CS5.5 and would desperately like some advice over a very odd problem.
  For some reason I have a duplicate website  showing in DW. It is not on the desktop and doesn't appear in any search.
  The original - Cumbria Dog Training, ha sbeen joined by Cumbria Dog Training 2.
  I have no idea how this has happened.
  I have been validating two items today, one a simple js item and the other is renaming an.htaccess file without the .txt
  At the moment, when I try to upload anything from the original, I have the message
  FTP error occurred - cannot make connection to host etc.
  530 user cannot log in
  What does all this mean and what can I do about it.
  Many thanks for any advice.
  Paul
  btw - I also upgraded my server plan today.

  Thanks SnakEyez
  You're right and I've sorted it out, to the point that I can now upload stuff.
  It may sound a dumb question but how - safely - do I remove the duplicate copy, which is showing under "manage sites".
  Many thanks
  Paul

• End Users cannot log in to the ccmuser web page.

  Greetings,
  I have a Call Manager Business Edition that was synched with a customer's AD directory. However, the end users cannot log in to the ccmuser web page with either their AD password or the Call Manager end user PIN.
  Any suggestions?
  Thanks
  George

  Thanks for your reply, Aaron.
  All users are in the end user group.. I even created a new role/user group that gives users complete read/write access to all end user features. Still no go. I think it is an LDAP issue, but I'm confused because everything else works.

• User cannot log in using Opendirectory password but can log in using Crypt

  Hi,
  We have an Xsan environment with Opendirectory authentication. Most of the users are created in Workgroup manager and home folders are stored on an Xsan volume.
  We have noticed (this has happened to two users recently) that sometimes user cannot log in using his password stored in Opendirectory Password server. This is permanent to some specific User/Workstation combination. Other users can log in to the same workstation and this user can log in to other workstations.
  Also, if I change password type to Crypt in Workgroup manager, user can log in to this workstation. In past this happened to another user/workstation combination.
  I tried to create a new Opendirectory password (password ID has changed in WM), with no success.
  Any ideas?
  Thanks,
  Darius

  You say you can log in the web browser right? You can find your username in the following url: https://play.spotify.com/user

• After software update, users cannot log into Xserve

  We have an Xserve running 10.6.7.  We just did an software update and rebooted the server.  Something broke and at this point, only local users can log in, such as the administrator account.  None of the users in the LDAP db can log in.  I cannot access their accounts from Workgroup Manager, either, because it posts an LDAP error.
  We do have a full backup of that drive from 24 hours ago, but don't want to just blindly overwrite the whole drive.  Are there specific files I could restore?
  Or, is there a way to correct what's wrong with LDAP?

  Sadly we are currently having problems with ldap and directoryservices after the 10.6.7 update. It is not the same thing you are seeing but none the less.
  My advice would be to get that backup up and running.  You could copy the backup to an external drive and try and boot off of it and see how that works if its ok I would revert back and hold off on updates.

• Workspace User cannot log into workspace

  Hello Everyone,
  When I try to log into workspace as a user with Workspace User role, I get the following message "Access permission has not been granted to this user." and cannot log in.
  I have already added the user to principles with "INVOKE_PERM" permission for the specific application. But I still cannot log in as that user of Workspace User role. 
  Any help or suggestions for resolving this problem will be greatly appreciated.
  Thank you very much!

  Hi,
  you have given access to the user to invoke all operations on a service. You need to give login access.
  There are following ways to chieve this:-
  1:-In livecycle few default roles are created one of them is 'LiveCycle Workspace User'(Can log in to the     Workspace end-user application), assign this role to user.
  2:-Add the permission 'PERM_WORKSPACE_USER'(Log in to the Workspace end-user application) in your role and assign that role to user.
  Thanks
  Message was edited by: aks@lc

• Network users cannot log in to account on server

  Here's the situation.
  1) X-Server running 10.6
  2) Workstation running 10.5 or 10.4
  3) Created user accounts using WGM (from a machine other than the server)
  4) Bound workstation to server ('green-light' and message Network Accounts Available - shows up on workstation.
  5) When test account user name and password are entered, password shakes - we get the message 'Cannot log in due to an error'.
  What gives???!!!???

  If the error you're getting is 'You are unable to log in to the user account "suchandso" at this time. Logging in to the account failed because an error occurred', that usually indicates that there was a problem mounting the user's home folder. My standard approach to narrowing down where errors like this are coming from is to test the critical parts of a network login (user info lookup, authentication, and home directory mount) by hand and watch for informative errors:
  Log in as a local user on a client computer, and open the Terminal utility.
  Run the command "id suchandso" (where "suchandso" is the short name of a network user). It should reply with something like "uid=1025(suchandso), gid=20(staff)," etc. If it instead replies with "id: suchandso: no such user", you either have the wrong username or the client is having trouble looking up user info on the server over LDAP. (Note: if this isn't working, you generally don't get as far as the error message, just a shake of the login window.)
  Get a network authentication ticket with the command "kinit suchandso" (enter the user's password when prompted). If this works, it'll just come back with another shell prompt. If something goes wrong, you'll generally get an informative error message about what the problem is (e.g. if it says "Kerberos Login Failed: Clock skew too big", that means the client's clock is too far out of sync with the server's and one or both of them needs to be corrected).
  Now, use the Finder's Connect to Server (Command-K) feature to try to connect to the server; enter the server's full domain name in the Server Address field. You should not be prompted for a name and password (Kerberos authentication should be automatic after the "kinit" command; if not, something's wrong with the file service's Kerberos setup). You should get a "Select the volumes to mount" dialog including the Users folder (or whatever folder your user homes are under). Note that the user's actual home folder will also be listed, but that's not what you want; select the Users volume instead. If the Users folder isn't listed, or you get an error trying to mount it, troubleshoot that.
  If none of that shows any problem, you've got something more obscure going wrong. A couple of random things to try:
  Enable guest access to the Users folder (shouldn't be necessary, but I've seen reports that it sometimes avoids trouble).
  Make sure the user's home folder settings are configured correctly: use WGM to switch the user's home folder to "(None)", save, then set it back and save again.

• Users cannot log into Remote Desktop after 3/11/2015 update!

  I have a simple network where users can log into a Windows SBS 2008 server with Remote Desktop to access various applications.  This worked quite smoothly until this morning, after the updates of last evening. (3/11/2015)
  When users tried to log into the Remote Desktop this morning their credentials were rejected, as if their username and/or password were incorrect.  Even I (as the administrator) could not log in remotely.  Finally I connected a monitor and keyboard
  directly to the server and was able to log in without an issue.  After logging in directly I was able to connect through remote desktop.
  This method worked for my other users as well - after I logged them in directly they were able to use remote desktop no problem.
  The trouble is that I have a couple dozen users, and this is an issue that should not be occurring.  What happened in the last update to cause remote desktop to reject users credentials?  Why does it only work after the user logs in directly? 
  And most importantly, how do I fix this?
  A few notes:
  Simply browsing for files on the server also asks for the user's name and password, and this works as well.  This is only a remote desktop issue.
  I have already checked to make sure the domain was correct.  It was.
  I have already checked to make sure the usernames and passwords were correct.  They were.
  I have already checked to make sure this was not a unique issue for a single (or limited number) of users.  This issue effected
  all users all the network.
  Thank you very much for your help,
  Dustin

  I'm curious here...  If the server is rebooted, does it put the RDS users back into a "credentials failed" situation?  If so, could you please have them log in with credentials:
  domain.local\username    (I suspect they may be currently using domain\username)
  and see if that fixes the RDS problem without having to first log into the server directly.
   The ".local" may be ".lan" or ".somethingelse" depending on how you initially configured your domain, but the default for SBS 2008 is ".local"
  Merv Porter
  =========================
  That's a good question - the server will auto-reboot this evening and I'll test again in the morning. 
  You are correct that we've been using domain\username.  I tried domain.local\username (which is the way we've set up), and that did not work either.
  I'll let you know how things turn out tomorrow morning.  I don't want to mess with my users anymore today. :P
  Dustin

• Remote users cannot log on to a computer that is using cached credentials following password policy expiration

  Hi, we are currently having issues with remote users when their AD account flags that their password needs to be changed.
  This happens when GPO enforces the user to change their password whilst they are not connected via a 3rd party VPN (OVPN Connect) which relies upon LDAP Authentication. When they next login, LDAP authentication knows that the password should have been changed
  and therefore will not allow users to connect securely. Because they cannot connect, they cannot get the Windows prompt to tell them that they need to change their password.
  Bit of a vicious circle. Can anyone suggest a work around or tweak for this?
  Thanks in advance
  I did come across an article but it applies to Windows 2000 http://support.microsoft.com/kb/818088/en-gb any updated versions of this for Windows 7?

  > they are not connected via a 3rd party VPN (OVPN Connect) which relies
  > upon LDAP Authentication. When they next login, LDAP authentication
  > knows that the password should have been changed and therefore will not
  You need to use a solution that can handle this situation within the VPN
  client (wich yours seemingly cannot)...
  Martin
  Mal ein
  GUTES Buch über GPOs lesen?
  NO THEY ARE NOT EVIL, if you know what you are doing:
  Good or bad GPOs?
  And if IT bothers me - coke bottle design refreshment :))

• Network users cannot log in to Wiki

  I am managing an OS X Server 10.6 at work. As far as I can tell only local users on the server (i.e, those created through the server's Accounts preference pane) can log in to the Wiki (e.g., to "My Page"). Our user accounts are managed through the server's Open Directory LDAP. We don't have an Active Directory server (though we do have a mix of PCs and Macs). All SSL checkboxes are off, if that makes a difference. How do I enable Wiki login for Open Directory accounts?
  Message was edited by: MLModel

  Thanks for your reply. My concern is with users who don't have local accounts on the server machine. It seems to me that local accounts on the server machine are generally inappropriate, as well as imposing a maintenance burden that duplicates the maintenance of the Open Directory user entries.
  Am I correct that for users with no local server account I need to have "WebDAV-Digest" turned on in Server Admin > Open Directory > Settings > Policies > Authentication? Is it a bad idea to have that policy on? (I don't remember whether it is on by default when the server is installed, but it was off when I was having the Wiki problems and turning it on seemed to enable login by anyone in Open Directory.)

• DC on VM Restored after crash - Does Not allow PCs to Join Domain, or Domain Users to Log in

  We currently had a RAID array crash and rebuilt our main server which housed VMs for our Web and DC.
  The main server was restored from a bare-metal backup from 6 months prior to the latest backup of the VMs (not sure if pertinent)
  Since the Restore, Domain computers cannot access file shares on the main server or VMs - "unspecified network error
  0x80004005
  Removed the main server from the Domain to re-join it due to some issues with logging in (even with a Domain Admin account) - Found that any PC removed from the domain was no longer able
  to rejoin - Receive (Network path was not found error)
  Domain Users cannot log in to their computers - Error reads "The trust relationship between this computer and the domain has been lost" - Domain Admin accounts can log in without
  problem.
  Have been working on it for two weeks and tried most of the things that I have found in others questions for related 
  DCDIAG results (run on DC VM) - More errors appear if run on the Server (Locator DcGetDcName(GC_Server_Required) call failed, error 1722 (same for PDC, TIME, GOOD_TIME, and KDC)
  Directory Server Diagnosis
  Performing initial setup:
     Trying to find home server...
     Home Server = DC1
     * Identified AD Forest. 
     Done gathering initial info.
  Doing initial required tests
     Testing server: Default-First-Site-Name\DC1
        Starting test: Connectivity
           ......................... DC1 passed test Connectivity
  Doing primary tests
     Testing server: Default-First-Site-Name\DC1
        Starting test: Advertising
           ......................... DC1 passed test Advertising
        Starting test: FrsEvent
           There are warning or error events within the last 24 hours after the
           SYSVOL has been shared.  Failing SYSVOL replication problems may cause
           Group Policy problems. 
           ......................... DC1 failed test FrsEvent
        Starting test: DFSREvent
           ......................... DC1 passed test DFSREvent
        Starting test: SysVolCheck
           ......................... DC1 passed test SysVolCheck
        Starting test: KccEvent
           ......................... DC1 passed test KccEvent
        Starting test: KnowsOfRoleHolders
           ......................... DC1 passed test KnowsOfRoleHolders
        Starting test: MachineAccount
           ......................... DC1 passed test MachineAccount
        Starting test: NCSecDesc
           ......................... DC1 passed test NCSecDesc
        Starting test: NetLogons
           ......................... DC1 passed test NetLogons
        Starting test: ObjectsReplicated
           ......................... DC1 passed test ObjectsReplicated
        Starting test: Replications
           ......................... DC1 passed test Replications
        Starting test: RidManager
           ......................... DC1 passed test RidManager
        Starting test: Services
           ......................... DC1 passed test Services
        Starting test: SystemLog
           A warning event occurred.  EventID: 0x80040022
              Time Generated: 01/15/2015   19:32:28
              Event String:
              The driver disabled the write cache on device \Device\Harddisk0\DR0.
           A warning event occurred.  EventID: 0x80040022
              Time Generated: 01/15/2015   19:32:28
              Event String:
              The driver disabled the write cache on device \Device\Harddisk0\DR0.
           A warning event occurred.  EventID: 0x80040022
              Time Generated: 01/15/2015   19:32:28
              Event String:
              The driver disabled the write cache on device \Device\Harddisk0\DR0.
           A warning event occurred.  EventID: 0x000003F6
              Time Generated: 01/15/2015   19:32:52
              Event String:
              Name resolution for the name DC1.Home.xxx.com timed out after none of the configured DNS servers responded.
           An error event occurred.  EventID: 0xC00038D6
              Time Generated: 01/15/2015   19:33:25
              Event String:
              The DFS Namespace service could not initialize cross forest trust information on this domain controller, but it will periodically retry the operation. The return code is in the record data.
           A warning event occurred.  EventID: 0x00000420
              Time Generated: 01/15/2015   19:33:29
              Event String:
              The DHCP service has detected that it is running on a DC and has no credentials configured for use with Dynamic DNS registrations initiated by the DHCP service.   This is not a recommended security configuration.
   Credentials for Dynamic DNS registrations may be configured using the command line "netsh dhcp server set dnscredentials" or via the DHCP Administrative tool.
           A warning event occurred.  EventID: 0x00002724
              Time Generated: 01/15/2015   19:33:33
              Event String:
              This computer has at least one dynamically assigned IPv6 address.For reliable DHCPv6 server operation, you should use only static IPv6 addresses.
           A warning event occurred.  EventID: 0x000727AA
              Time Generated: 01/15/2015   19:36:34
              Event String:
              The WinRM service failed to create the following SPNs: WSMAN/DC1.Home.xxx.com; WSMAN/DC1. 
           A warning event occurred.  EventID: 0x00001695
              Time Generated: 01/15/2015   19:59:52
              Event String:
              Dynamic registration or deletion of one or more DNS records associated with DNS domain 'Home.xxx.com.' failed.  These records are used by other computers to locate this server as a domain controller (if the specified
  domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).  
           A warning event occurred.  EventID: 0x00001695
              Time Generated: 01/15/2015   19:59:52
              Event String:
              Dynamic registration or deletion of one or more DNS records associated with DNS domain 'DomainDnsZones.Home.xxx.com.' failed.  These records are used by other computers to locate this server as a domain controller
  (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).  
           A warning event occurred.  EventID: 0x00001695
              Time Generated: 01/15/2015   19:59:52
              Event String:
              Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ForestDnsZones.Home.xxx.com.' failed.  These records are used by other computers to locate this server as a domain controller
  (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).  
           A warning event occurred.  EventID: 0x00000420
              Time Generated: 01/15/2015   20:20:21
              Event String:
              The DHCP service has detected that it is running on a DC and has no credentials configured for use with Dynamic DNS registrations initiated by the DHCP service.   This is not a recommended security configuration.
   Credentials for Dynamic DNS registrations may be configured using the command line "netsh dhcp server set dnscredentials" or via the DHCP Administrative tool.
           A warning event occurred.  EventID: 0x00002724
              Time Generated: 01/15/2015   20:20:25
              Event String:
              This computer has at least one dynamically assigned IPv6 address.For reliable DHCPv6 server operation, you should use only static IPv6 addresses.
           ......................... DC1 failed test SystemLog
        Starting test: VerifyReferences
           ......................... DC1 passed test VerifyReferences
     Running partition tests on : ForestDnsZones
        Starting test: CheckSDRefDom
           ......................... ForestDnsZones passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... ForestDnsZones passed test
           CrossRefValidation
     Running partition tests on : DomainDnsZones
        Starting test: CheckSDRefDom
           ......................... DomainDnsZones passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... DomainDnsZones passed test
           CrossRefValidation
     Running partition tests on : Schema
        Starting test: CheckSDRefDom
           ......................... Schema passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... Schema passed test CrossRefValidation
     Running partition tests on : Configuration
        Starting test: CheckSDRefDom
           ......................... Configuration passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... Configuration passed test CrossRefValidation
     Running partition tests on : Home
        Starting test: CheckSDRefDom
           ......................... Home passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... Home passed test CrossRefValidation
     Running enterprise tests on : Home.xxx.com
        Starting test: LocatorCheck
           ......................... Home.xxx.com passed test LocatorCheck
        Starting test: Intersite
           ......................... Home.xxx.com passed test Intersite
  All PCs can ping the DC, and get name resolution.  Checked IPs, DNS on both WS and DC (DC points to its own IP address with no other DNS), Forwarders for DNS appear to be working,
  as normal DNS name resolution and internet access works on all PCs.  Have tried disabling NIC card and installing another NIC.  All searches keep pointing back at the same things that I have tried.  I feel like I am missing something stupid.
   Please help

  The backup you used is too old. That is why your clients are experiencing trust relationship failures: the computer passwords are no longer matching so they are failing to connect to AD. You need to disjoin and join them again.
  I understand that this is the only DC you have so please make sure that the DC is not multihomed, that it points to its private IP address as primary DNS server and 127.0.0.1 as secondary one. Also, you might need to rebuild your SYSVOL folder if you keep
  getting the SYSVOL errors: https://support.microsoft.com/kb/315457?wa=wsignin1.0
  This posting is provided AS IS with no warranties or guarantees , and confers no rights.
  Ahmed MALEK
  My Website Link
  My Linkedin Profile
  My MVP Profile