Solved

After DC Promo to additional DC on domain, can't login at all on Server 2003 Standard R2 box

Posted on 2011-03-18
3
355 Views
Last Modified: 2012-05-11
After running a successful DC promo, to an additional domain controller on the domain and a reboot as prompted, I can no longer login to the server with any network login account.  I keep getting the error of checking user name and password  prompts with each attempt to login.  
I have added the server to the domain controllers group, I have enabled the trust computer for delegation tab.  Do I have to just leave it alone to replicate the AD on this server?  The end result of this server to to become an Exchange 2003 box.  Any help will be greatly appreciated and thank you in advance for your time in this matter. I have to have this up and running in 1wk so I have a window to work with.
0
Comment
Question by:rcdob
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 8

Expert Comment

by:ActiveDirectoryman
ID: 35168885

I don't quit understand the error you are getting?

please post the exact error message you are getting when you try to login to the domain controller



0
 

Author Comment

by:rcdob
ID: 35180760
I came into the office today, restarted the server in last known good configuration and was able to login and rejoin the domain using the domain admin pswd.  After the reboot this was the error message that I get when trying to login to the network.

The system cannot log you on due to the following error:
The name or security ID (SID) of the domain specified is consistent with the trust information for that domain.  
0
 
LVL 3

Accepted Solution

by:
barane earned 500 total points
ID: 35182708
How did you install the OS on the server. Is it an cloned one. If it is cloned then you would be having an issue for duplicate SID entry.

You could Modify the SID entries using the tool NEWSID.exe(Microsoft tool). but right now the tool have been banned by microsoft. Still you could some hoe manage to download the tool from google.

Run the NEWSID.exe, modify the SID entries and try to add the server to domain once again.

It works Perfect..
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Setup new Win2012 DC, remove SBS 2011 5 23
DNS forwarders "unable to resolve" 1 67
Windows 2012 R2 DFS Replication 12 46
ADFS:  Step by Step to enable MFA with ADFS 16 42
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This article runs through the process of deploying a single EXE application selectively to a group of user.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question