The “trust relationship” between the network and my computer has failed

A user has a Dell Latitude E4200 running Windows 7 Professional 32 bit. The machine has an internal Broadband card, Wifi Card and an Ethernet port (which is also in the docking station).

When they connect the machine to the LAN via either the Ethernet card or Wifi, and can see the domain, the machine gives the the error that their Trust Relationship has failed with the domain controller. This also shows up in the NetLogon Event error in the Event log under System.

If they are NOT connected to the domain, they can log in just fine using the cached credentials.

I have renamed the computer while connected to the domain and rebooted, but this did not solve the problem.

I want to avoid Un-joining the domain and re-joining as this will result in changes in their configuration and will take more time to put things right.

Any other ideas on how to fix this issue.

Regards.
LVL 4
Joseph_BarronAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

BCipolloneCommented:
Usually we solve this by removing it from the domain and then re-attaching it.  However this could be related to credential manager if they were using it... if they are you might want to try blowing that away.

Look at the eventvwr and see if you are getting a kerberos error...  if so we can look into that.  Let me know what eventvwr is saying.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
BCipolloneCommented:
ps I forgot to mention.... try resetting her password in AD to the current one she can log in with when off the network and make sure her account is not locked in the process.  It may be a problem with the password as well.
Protecting & Securing Your Critical Data

Considering 93 percent of companies file for bankruptcy within 12 months of a disaster that blocked access to their data for 10 days or more, planning for the worst is just smart business. Learn how Acronis Backup integrates security at every stage

greedjCommented:
David Johnson, CD, MVPOwnerCommented:
renaming the computer does not chainge the SID which is used by AD, remove the computer from the domain and rejoin it to the domain (reboot after rejoining to the domain)
Neil RussellTechnical Development LeadCommented:
Reseting a users password will have nothing whatsoever to do with this.
A simple remove from the domain, delete the computer account on the ad server and then add the pc back into the domain.
Joseph_BarronAuthor Commented:
The other issue the user is having, which started today, is that when connected to the LAN, the computer will sit on "Please Wait" upon boot up. It may sit there for 20 minutes. If you disconnect it from the network and reboot, or even just disconnect it while it is doing a "Please Wait", it will go to a login prompt within a minute or two.

Neil RussellTechnical Development LeadCommented:
Same problem. The computer account is no longer in sync with the domain and that causes the problem.
Joseph_BarronAuthor Commented:
Yeah, I was afraid I would have to join and then unjoin the domain. Just always something changes with the new account and this user is VERY particular about where ICONS fall on their desktop, etc.
Joseph_BarronAuthor Commented:
Sorry, got that backwards.
Neil RussellTechnical Development LeadCommented:
Well if they use windows, Icons will wonder!! Its a fact of life :P
greedjCommented:
You need to reset the computer password on the domain. See my post above.
David Johnson, CD, MVPOwnerCommented:
if you do the unjoin /remove from ad / rejoin as 1 operation without rebooting the user's files will 99% of the time remain the same
Joseph_BarronAuthor Commented:
OK I reset the password and will see if that helps. THanks
greedjCommented:
Reset the coomputer account in  AD and run the netdom command to reset the pw.
BCipolloneCommented:
Are you running login scripts on this computer?  If so you may want to check the local Group policy on that computer and verify that under the computer adminstrators settings the logon it is set to always wait for the network and also under scripts that they are set to run synchronously.  also under printers make sure Point to Print restrictions are set to disabled.

I have see 10 minute logins when there is a problem with scripts.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.