Solved

windows 2003 AD issues

Posted on 2014-04-22
5
176 Views
Last Modified: 2014-06-04
users not able to log into the DC.
when i perfom a netdiag i see an entry of
kerberos authentication failed
please advise?
when a user attempts to login we get a message of a trust relationship issue?
0
Comment
Question by:schuitkds
  • 2
  • 2
5 Comments
 

Author Comment

by:schuitkds
ID: 40015797
also get some messages stating
Naming information cannot be located  --- the server is not operational
0
 
LVL 78

Expert Comment

by:David Johnson, CD, MVP
ID: 40016170
kerebos errors usually have to do with time being off between the client and the server (>15 Minutes Difference)
0
 
LVL 14

Accepted Solution

by:
Raj-GT earned 500 total points
ID: 40017554
As David mentioned, it is usually caused by timing issues. Check the time and more importantly the timezone settings on your server and clients.
0
 

Author Comment

by:schuitkds
ID: 40018883
now i get an error message of
Windows cannot create the object <user> because: The directory service was unable to allocate a relative identifier.
I know this was a replication issue
I had 2 DC's  
I had to power off the second DC and do a system state restore to the Primary DC to reestablish the objects in AD.

can i wipe out the reference to the secondary AD and make the system think it has only the Primary DC and establish full functionality. If so how?  
 If i can i would reformat the secondary DC and reinstall the OS and rejoin to domain and once again make it DC at that point.

If i can not wipe out the secondary DC, how do i force the secondary DC to accept replication from the primary DC alone ( one way replication)  and block the replication of the secondary DC info up to the primary DC.
i believe the secondary DC may have been faulty and pushed old AD info up to the primary DC which initiated all the issues.
Thanks in advance
0
 
LVL 14

Expert Comment

by:Raj-GT
ID: 40019298
Have you transferred all the FSMO roles to this dc?
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The way I use Experts Exchange to assist me in analyzing and diagnosing a problem is I first enter a Verbose Question at Experts Exchange like: Office 2007 will hang when opening and saving files I then launch WordPad (any text editor will do) an…
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now