Solved

Unable to login to server in directory services restore mode

Posted on 2006-06-29
3
309 Views
Last Modified: 2012-06-21
I've looked around but haven't seen anything addressing what I'm running into.
I have a windows 2000 server DC that has apparently developed some active directory database corruption.  Everything *seemed* to be running fine, but I was getting an error in my backup software about being unable to backup the active directory database.  At first, I didn't think much about it because of other issues I was having with the backup system and the other DC was backing up fine.

Well, after finally looking into the errors, I realized this was a true windows error and not a false error from the backup system.  So, after a bit of research I found this KB article on how to check AD database integrity: http://www.microsoft.com/technet/prodtechnol/windows2000serv/technologies/activedirectory/maintain/opsguide/part2/adogdapb.mspx#EILAE

Great, I just run the check to see if I have minor or more serious problems.  Well, I must have serious problems because I can't login in Directory Services Restore mode!
I can login in regular safe mode, and I can login into the other DC in directory services restore mode (and run the check with no problems) but not on the affected DC.

What can I do next?
0
Comment
Question by:kcorbinakc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 29

Accepted Solution

by:
mass2612 earned 500 total points
ID: 17014680
What happens when you try to logon are you getting any error messages? Does this DC hold your FSMO roles? Is there anything specific about the DC setup? If you are not seeing problems on the other DC's you might be able to simply demote this server and re-promote it so a fresh copy of the AD database is created and replicated from the other DC's. If you go down that road make sure DNS is AD integrated and working correctly on other DC's and that you transfer any FSMO roles first.
0
 

Author Comment

by:kcorbinakc
ID: 17018819
That's kinda how I was leaning.  I am not seeing any problems with the other DC and no other problems with this machine other than the AD corruption.

I'll let you know how it goes.
0
 

Author Comment

by:kcorbinakc
ID: 17084605
Well, after more research and reading I was able to figure a few things out.

First, I was able to finally login in Directory Services mode after resetting the password using C:\winnt\system32\setpwd.exe
Apparently, when I set this box up several years ago, I set a different password for Directory Services Restore Mode.  However, I still couldn't repair the corrupt AD database.

So, I did a dcpromo /forceremoval and that worked fine.  Rebooted, did a dcpromo, rebooted again and I was back in business.

Thanks for the input.
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
This article describes a method of delivering Word templates for use in merging Access data to Word documents, that requires no computer knowledge on the part of the recipient -- the templates are saved in table fields, and are extracted and install…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question