Link to home
Create AccountLog in
Avatar of MikeVolk

asked on

Windows 2008 Server loses trust with domain at reboot

I have a windows domain with 3 domain controllers (win 2008)
I have recently added several servers.
The most recently added servers when rebooted lose the trust relationship with the DC.
I've checked all the DNS settings

If I take them out of the domain and put them back in they are fine till the next time they restart
Avatar of Neil Russell
Neil Russell
Flag of United Kingdom of Great Britain and Northern Ireland image

physical or virtual servers?
You are not using a virtual server with disks set to revert on poweroff are you?
You might be missing SPN for your Domain.  Open ADSI edit and go the properties of the computer and look for SPN.  You can add your Domain' SPN to resolve this issue.
Are there any entries in the eventlogs ? WHere are they getting time from ? Do you have an ntp server. If the time is wrong on reboot they will lose the channel ( Kerberos does not like long delays ).
Avatar of MikeVolk


Physical Servers
Nothing in event Log.
Time servers are same.

Here's more strange results.
 If I add a LOCAL user or even local Administrator to the Remote Desktop Users Group, it too disappears on the reboot.
Where are the fsmo roles allocated (PDC emulator that handles time sync ) ?
Are the machines you added all member servers ?
Are all of the server 2008 ?
Are you using AD integrated DNS ?
Did you verify your SPN numbers are in the registry ?

 Good luck
Avatar of MikeVolk

Link to home
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Still not 100% positive why its fixed.