Solved

VM Failover - Is it safe to remove and then add original VM back to the domain?

Posted on 2014-04-11
4
193 Views
Last Modified: 2014-07-07
Failing over to a Sharepoint server replica (or export), and then failing back, led to a network SID error (backup solution was VEEAM), and the server had to be removed from the domain, and then added back in.

Is this 'safe'?  Are there any possible AD problems than can arise with Sharepoint?

Just asking because Sharepoint seems in particular to be very picky about things that perhaps other servers don't seem to care about.

Thanks!
0
Comment
Question by:NeoDavidShepherd
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 14

Accepted Solution

by:
JAN PAKULA earned 500 total points
ID: 40177231
Unjoining will cause a lot of problems like recreated SID's and will leave you with a lot of extra work.

As you only lost trust relationship just change  your computer password using the Reset-ComputerMachinePassword cmdlet from Powershell v3.

Reset-ComputerMachinePassword [-Credential <PSCredential>] [-Server <String>]

Powershell v3 ships with the latest version of Windows and can be downloaded from Microsoft:

http://www.microsoft.com/en-us/download/details.aspx?id=34595



Or change your computer password using netdom.exe!

netdom.exe resetpwd /s:<server> /ud:<user> /pd:*

<server> = a domain controller in the joined domain

<user> = DOMAIN\User format with rights to change the computer password


Open an administrative command prompt. On Windows platforms with UAC enabled, you will need to right-click on cmd.exe and select "run as Administrator".

Type the following command: netdom.exe resetpwd /s:<server> /ud:<user> /pd:*
Reboot the machine.

Here is more information on netdom.exe: http://support.microsoft.com/kb/325850
0
 

Author Comment

by:NeoDavidShepherd
ID: 40180396
Thank you for that very detailed response!

What I don't understand though is 'as you only lost trust relationship, just change your computer password'.

If I have a replicated VM that has lost it's trust relationship, and still have the original I need to go back to after the test...  are you saying changing the password will resolve the switching back and forth?

Color me surprised... as i thought a lost trust meant you HAD to add it back to the domain as the only solution.

Thank you, and sorry that apparently I have a 'hole' in my brain regarding trusts.
0
 
LVL 14

Expert Comment

by:JAN PAKULA
ID: 40180406
"computer password" which allows authentication between domain controller and given pc (not user password eg admin)


look at this one:

http://blog.blksthl.com/2013/03/18/fix-the-trust-relationship-between-this-workstation-and-the-primary-domain-failed/
0
 

Author Closing Comment

by:NeoDavidShepherd
ID: 40180504
THANK YOU!!!!
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many companies are making the switch from Microsoft to Google Apps (https://www.google.com/work/apps/business/). Use this article to learn more about what Google Apps has to offer and to help if you’re planning on migrating to Google Apps. It is …
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Viewers will learn how to maximize accessibility options in an Excel workbook for users with accessibility issues.
Viewers will learn the different options available in the Backstage view in Excel 2013.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question