I have two domain controllers, DC (server 2003) and DC02 (server 2008 r2). Recently the management company changed and they came and took their router without giving me opportunity to dcpromo away from the corporate office forest.
I am a local domain admin, but subsequently, I can no longer log onto DC. I tried recovery mode on DC; that password didn't work either. However, DC has a file share which still works normally; all users can access it, etc.
DC02 allows me to logon, create new users in AD, change passwords, and generally be an admin. My recovery mode password for DC02 works. I can log on to all other servers and computers as a domain admin.
I use Dameware. Dameware tells me that DC02 is the PDC (primary) and DC is the BDC (backup).
I also looked a little deeper trying to figure out why I can't log onto DC. Dameware also reported a strange setting:
Under DC > Properties > Network > Logged on users = 1; Max users = -1. (yea, that's negative 1).
For comparison, DC02 > Properties > Network > Logged on = 30; Max = somewhere north of 17 millon users.
Is this a clue that you experts can help figure out why I can't log into DC?