Sharepoint 3.0 / 2007 issue after dcpromo ran

Posted on 2012-09-13
Last Modified: 2012-09-13
Hi All,
I had a situation and had to promote a sharepoint server (windows server 2003 R2 x32)(Sharepopint 3.0 / 2007) to be a domain controller.

Note:  inherited network - no sharepoint experience

Now this has been done i have lost access to the sharepoint intranet.
when connecting to intranet:7636 (our port) it just advises -service unavailable

i have found lots of information on the web but need some more questions answering.

SQL databases appear ok.

Possible solutions:
Some posts are advising that the original install was performed under a local account and dcpromo has removed that account - replace that account using admin commands

Issues with solution above:
Do I create a new domain account (specifically for sharepoint) first and use those credentials.
If that works how does it know to use the existing sql DBs.
Do i need to somehow map the new domain user to the sql DBs.

please can some advise a simple step by step guide to recover this issue.
I am trying to avoid attempting too many fixes that could possibly stop a valid solution.
Question by:dexterhome
    LVL 5

    Author Comment

    this is the KB arcticle I was looking at performing
    LVL 5

    Author Comment

    Update -
    I tried to run the repair wizrd but it failed and created this event log entry
    (It appears to be advising of mapping issue (so presume user account as kb article))-

    Failed to secure the SharePoint resources.
    An exception of type System.Security.Principal.IdentityNotMappedException was thrown.  Additional exception information: Some or all identity references could not be translated.
    System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
       at System.Security.Principal.NTAccount.Translate(IdentityReferenceCollection sourceAccounts, Type targetType, Boolean forceSuccess)
       at System.Security.Principal.NTAccount.Translate(Type targetType)
       at System.Security.AccessControl.CommonObjectSecurity.ModifyAccess(AccessControlModification modification, AccessRule rule, Boolean& modified)
       at System.Security.AccessControl.CommonObjectSecurity.AddAccessRule(AccessRule rule)
       at System.Security.AccessControl.RegistrySecurity.AddAccessRule(RegistryAccessRule rule)
       at Microsoft.SharePoint.PostSetupConfiguration.ResourceAccess.SetRegistryAccessRule()
       at Microsoft.SharePoint.PostSetupConfiguration.ResourceAccess.Secure()
       at Microsoft.SharePoint.PostSetupConfiguration.SecurityTask.SecureResources()
       at Microsoft.SharePoint.PostSetupConfiguration.SecurityTask.Run()
       at Microsoft.SharePoint.PostSetupConfiguration.TaskThread.ExecuteTask()

    For more information, see Help and Support Center at
    LVL 13

    Accepted Solution

    LVL 5

    Author Comment

    Thanks for the post yagyashree

    Either I am missing somethink or are these just links to issues with this promotion and not actually ways to fix my problem.

    I found this through one of the links:

    this is closer to my issues.

    this post is advising demoting the server and then fixing sharepoint - with issues I meant add.

    I was looking more for a fix I could effectively use
    LVL 5

    Author Comment

    I have now fixed my issue - here are my steps so it should be easier for people to follow:

    1. I demoted my newly promoted dc to become a member server again.
    2. I then reconfigured sharepoint using this very helpful guide here:
    3. After this I still could not get to the admin panel which left me blind of this report
    4. I then used this document as a guide to to check the IIS permissions for the account used.
    5. This effectively allowed sharepoint to work again and users to access it.

    Job done - few.
    LVL 5

    Author Closing Comment

    Thanks for your help with this issue - I have only rated B as your post did not really help, but did lead me to the guide that partially helped in the end.

    Featured Post

    Find Ransomware Secrets With All-Source Analysis

    Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

    Join & Write a Comment

    Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    25 Experts available now in Live!

    Get 1:1 Help Now