Submit My Question - Recent Questions - Recent Answer
Msdn Tech >> Visual Studio Team System >> Team Foundation Server - Setup

Can't add domain user to TFS groups

When I select "Add Windows Users or Groups", it only shows the local machine, I can't browse to the domain, and can't add user in the form "Domain Name\User Name". The machine has already joined to the domain and the current user is the TFS administrator (also Domain Admin).

How can I add domain user to TFS groups? Thanks!

[335 byte] By [LeiJiang] at [2008-2-8]
«« Can't open Office projects with VS 2005 beta 2
»» General Crystal Question
# 1
I found a message in my Event Log from NetLogon that states :

--
This computer was not able to set up a secure session with a domain controller in domain DWM due to the following:

The domain controller is not available.

This may lead to authentication problems. Make sure that this computer is connected to the network. If the problem persists, please contact your domain administrator.

ADDITIONAL INFO
If this computer is a domain controller for the specified domain, it sets up the secure session to the primary domain controller emulator in the specified domain. Otherwise, this computer sets up the secure session to any domain controller in the specified domain.

-

However, the domain controller do works, I logged on as Domain Admin in this client machine successfully.

The TFS is installed on the Domain controller, I am wondering if the TFS caused this problem.

LeiJiang at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 2
What domain does the computer live on? Is it the same as the domain controller?
BruceTaimanaMSFT at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 3
Yes, it's in the same domain as the domain controller.
LeiJiang at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 4
Since the TFS and the domain controller is the same machine(I setup the domain controller just because TFS requires a Windows 2003 Active Directory), so I install Team Foundation Client on that machine, and after that on that machine I could select domain users....
LeiJiang at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 5
So just that I get this right.

Scenario 1:
AD and Single Server Setup on one machine
Client on another machine.
- Client cannot add users to TFS using the dialogs

Scenario 2:
AD and Single *BOX* on one machine (client is on the server)
- Everything is okay.
Did I describe the scenarios correctly above?

Thanks

BruceTaimanaMSFT at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 6
Yes, it right.

But my machine may also has some other problems. Besides the problems found in the event log, my machine can only select users from local machine when I share some folders. I can't not select domain users. When I try to select user in the form : "Domain Name\user name", or "user name@domain name", a dialog will shown to let me check if the name is correct.

However, I do can log to the domain on this machine and access other machines in this domain from Network Neighbors.

LeiJiang at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 7
This problem disappeared mysteriously today!!

I can now select domain users. I don't know why. Maybe because I have reboot several times.

LeiJiang at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 8
I have seen exactly the same thing, with the same scenarios in our test domain.

We cannot add users or do things with users and groups from a client but it works on the server (and AD controller)

/Elisabet

ElisabetdW at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 9

I've had a problem similar to what you described for NetLogon. I got around this by disabling the firewall. This was on Windows Server 2003 SP1.

AndrewNiemann at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 10
Yes, our system is Windows 2003 SP1(both the client machine and AD controller). But there is no firewall installed(neither on client machine nor AD controller).

After it works yesterday, it doesn't work again today! I don't know why!!

LeiJiang at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 11
It may be due to trust issues between domains. A post was made where there was a one way trust and this error occurred.
BruceTaimanaMSFT at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 12
No. All users are in the same domain. I setup a standalone Windows 2003 Active Directory Domain for using VSTS and join all machines(and users) to this domain. There is no two domains.
LeiJiang at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 13
The only thing I do is that I reboot the Domain Controller last night, is this will affect it?
LeiJiang at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
# 14
While this may not specifically be your issue, since you have your dc on the same box as the AT I wanted to make sure you were aware that we've seen issues reported where AD was installed AFTER IIS, etc. We've posted some documentation that says that you should install AD right after the Windows install.

marc

MarcKuperstein-MSFT at 2007-9-8 > top of Msdn Tech,Visual Studio Team System,Team Foundation Server - Setup...
Visual Studio Team System
Team Foundation Server - Setup

Visual Studio Team System Hot Topic

Visual Studio Team System New Topic

Visual Studio Team System

Java / MSDN / Linux Tech / PHP Tech / MSDN DotNet / MSDN TECH / Health Library / Programmers Tech / visual basic Tech / Developer Tech / Ipod faqs / Msdn China Tech

Site Classified