I have a windows file server with an unfortunately long filename (CG-ADMIN-FS01LAX)
assigned by 'the powers that be', and this name is finding its way into our R&D department's
UNC pathnames, eg. \\CG-ADMIN-FS01LAX\data\xxx, and we'd like to instead use a shorter name.
We've gotten the 'powers' to assign us a CNAME in DNS for the box, "CGSRV",
so that we can enable users to use the shorter CNAME oriented UNC path, \\CGSRV\data\xxx,
without breaking existing paths.
I solved the apparently common 'duplicate name exists' error with these two tweaks
on the file server:
o Add "DisableStrictNameChecking" as per <http://support.microsoft.com/default.aspx?kbid=281308>
o Add "OptionalNames" with CNAME, as per <http://support.microsoft.com/default.aspx?kbid=829885>
After rebooting, I now have what looks like an authentication problem with the CNAME path:
C:\> dir \\CG-ADMIN-FS01LAX\data\ -- regular name OK
[listing shows OK]
C:\> dir \\CGSRV\data\ -- CNAME path fails with a perm error
Logon failure: unknown user name or bad password.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
These results are from a DOS window /on the file server itself/, an XP Pro 64
with a WORKGROUP config.
This has me stumped a bit.. "CGSRV" resolves to the same hostname via the CNAME,
so why would there be an authentication problem?
I opened up the ACLS on the 'data' dir to ensure EVERYONE:F and GUEST:F just to make
sure ACLs aren't tripping me up.
Any suggestions on how to solve this?
(I'm posting here to m.p.w.server.dns because I figure anyone trying to use CNAMEs
in this way have been down this path already)
Bookmarks