I have 2 domain controllers, DC0 and DC1.
DC0 shows only itself in Active Directory. Also DC0 shows that it is has the RID, PDC and Infrastructure roles in AD.
DC0 is getting the error...
Event ID: 22
The time provider NtpServer encountered an error while digitally signing the NTP response for peer 192.168.1.12:123. NtpServer cannot provide secure (signed) time to the client and will ignore the request. The error was: The specified user does not exist. (0x80070525)
DC1 shows both domain controllers in AD. DC1 also thinks it has the Infrastructure role.
DC1 is getting the error....
Time Provider NtpClient: The response received from domain controller dc0l has a bad signature. The response may have been tampered with and will be ignored.
I have a user that I can not join to the domain. I forget the exact error at the moment but was something to do with "allocating a relative identifier".
What would be the best plan of action to fix the problem. If I demoted DC1 and re promoted it again would that fix the issues? Would I loose any data in AD or loose my permissions on the shared folders on DC1?
If I demote DC1 will I be able to promote it back to a domain controller, even though I have a computer I can't join.
Any suggestions to help me on my way would help.