Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 247
  • Last Modified:

Unable to logon to Domain

Hi
Having an issue with one of our PC's on a 2003 AD enviroment. We cannot logon to the PC with a domain account, when we logon locally the usernames display only the SID.
The PC has the correct DNS suffix, and IP settings, no firewalls are active, TCP NETBIOS is running as is NET LOGON. I can ping and tracrt to all our servers from the PC.

I ran Winsock to rebuild the TCP/IP but it did not nothing and there is no dodgy entries in the hosts file.

Any ideas?
0
kwatt562
Asked:
kwatt562
  • 4
  • 3
  • 2
  • +1
1 Solution
 
davelongmanCommented:
did you get the message this workstation has lost it's trust relationship?

I would remove it from the domain then re-add.

0
 
pony10usCommented:
make sure the PC is listed in AD and not disabled
0
 
pony10usCommented:
davelongman:   both of us thinking along the same lines.   You were just a little faster.    :)
0
Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

 
JWong007Commented:
If you have not tried this, please remove this workstation from the domain, restart, and  reconnect the workstation back into the domain.
0
 
kwatt562Author Commented:
Hi
no message about trust relationships and the PC is not disabled in AD
0
 
kwatt562Author Commented:
The only thing that worried me about taking the PC back to WORGROUP and then re-adding to the domain was the fact that we use EFS encryption to encrypt our users My Documents. Would this affect the encryption key at all?
0
 
pony10usCommented:
You said that you can ping and tracert to the servers from the PC but what about the opposite direction?  Can you manage the PC from a server? I take it that you are not using DHCP based on your original post so you may also want to verify the VLAN on the switch port.
0
 
davelongmanCommented:
not used EFS - but on our domain I regularly have to remove and re-add (especially Vista!) machines. If a user has previously logged on then their SID should remain and I've never had any problems. As soon as the machine is re-added and the user logs on again their profile/desktop etc. appears as normal.

If you're unsure - do you have another pc you can test the removal/rejoin on and see if EFS still works before doing it on mission critical data?

If no domain user has ever logged on then you can safely remove and re-add because the local profile will be unaffected.
0
 
kwatt562Author Commented:
Thanks I will give it a go, to answer the other question yes I can access the PC via RDP
0
 
kwatt562Author Commented:
Sorry for the delay in awarding points, I thought I already had!
Worked perfectly thanks!
0

Featured Post

Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

  • 4
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now