I have a test 2K3 Member server that is running IIS (v6.0). It is a VM and was reverted to a snapshot about 4 days old. After doing this, attempts to loginto the domain fail. System Event ID 3210
"This computer could not authenticate with %dcin.mydomain.com, a Windows DC for domain %MY_DOMAIN, and therefore this computer might deny logon requests. This inability to authenticate might be caused by another computer on the same network using the same name or the password for this computer account is not recognized. If this message apears again, contact your system administrator."
All network and DNS issues have been ruled out.
After doing some research I have a hunch that the issue is the computer account password that by default changes every 30 days is out of sync.
Attempts to reset fail trying to use :
NetDom reset svrname /d:%mydomain.com /uo:User@mydomain.com /po:*
with a result of the Logon Failure: The target account name is incorrect.
when trying to use the local admin account of the target server.. I get Logon failure: unknown user name or bad password.
If this were any other server that wasn't running IIS.... I would just remove it from the domain and rejoin it and move on with my life. <sigh> But I don't know what effects doing that would have on IIS.
After I get through this I'm goin got set HKLM/system/currentcontrolset/services/netlogon/paramerters/DisablePasswordChange to "1"
But until then I'm not sure if the "NetDom reset" command is even the correct thing to do short of readding the server to the domain.