Link to home
Start Free TrialLog in
Avatar of kbws1
kbws1Flag for United States of America

asked on

"The name or security ID SID of the domain specified is inconsistent with the trust information for that domain"

I recently started on a Windows 2003 test domain.  I have 6 Windows 2003 servers (SERVER1-6) all patched with all the security updates and antivirus.  I ran DCPROMO on SERVER1; it’s now my only DC, DNS server, WINS server, and DHCP (which is not being used at this point).  I created a new user (USER1) and made USER1 a member of DOMAIN ADMINS, SCHEMA ADMINS, and DOMAIN USERS.  I can log on to SERVER1 as USER1 with no problems.  Now on SERVER2, I join the test domain with no problems using the USER1 account I created.  I now try to log onto SERVER2 as USER1 and receive this error message “The name or security ID SID of the domain specified is inconsistent with the trust information for that domain”.  I can log on to SERVER1 as this user and I log on to SERVER2 as the local admin but I can not log on to SERVER2 as USER1.  Thanks in advance for you time.
ASKER CERTIFIED SOLUTION
Avatar of rhandels
rhandels
Flag of Netherlands image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of kbws1
kbws1
Flag of United States of America image

ASKER

I did all of the above and it still didnt work so i just demoted SERVER1 back to a standalone server and then ran DCPROMO again and promoted back to a DC and then everything worked great.  
Avatar of BrendanKing
BrendanKing
The cause of this problem is most likely because you ghost imaged the servers to each other. This means they all have exactly the same SID and the member server cannot join to the DC with the same SID. To resolve this, take the member server off the domain, run ghost walker to reset the SID on the member server, then rejoin and this will fix the problem.
Avatar of aleex
aleex
Hi,

I had the same problem and i used NewSid program http://www.sysinternals.com/ntw2k/source/newsid.shtml
It chenaged the SID automaticlly (for those who don't know how to use ghost walker) and everything works fine

Avatar of itvestby
itvestby
Flag of Norway image
Jupp, this worked for me too, but the link posted by aleex is dead. Here is the new link: http://www.microsoft.com/technet/sysinternals/Utilities/NewSid.mspx
Avatar of rcdob
rcdob
Thank you gentlemen, I actually just did that and now the server is rebooting.  I just checked here to see if anyone has posted any additional tips.  I will let you know the results
Avatar of rcdob
rcdob
Thank you gentlemen for your help; the NewSid did the trick.  I am good to go for the exchange install next.