Solved

windows 2003 AD issues

Posted on 2014-04-22
5
171 Views
Last Modified: 2014-06-04
users not able to log into the DC.
when i perfom a netdiag i see an entry of
kerberos authentication failed
please advise?
when a user attempts to login we get a message of a trust relationship issue?
0
Comment
Question by:schuitkds
  • 2
  • 2
5 Comments
 

Author Comment

by:schuitkds
ID: 40015797
also get some messages stating
Naming information cannot be located  --- the server is not operational
0
 
LVL 78

Expert Comment

by:David Johnson, CD, MVP
ID: 40016170
kerebos errors usually have to do with time being off between the client and the server (>15 Minutes Difference)
0
 
LVL 14

Accepted Solution

by:
Raj-GT earned 500 total points
ID: 40017554
As David mentioned, it is usually caused by timing issues. Check the time and more importantly the timezone settings on your server and clients.
0
 

Author Comment

by:schuitkds
ID: 40018883
now i get an error message of
Windows cannot create the object <user> because: The directory service was unable to allocate a relative identifier.
I know this was a replication issue
I had 2 DC's  
I had to power off the second DC and do a system state restore to the Primary DC to reestablish the objects in AD.

can i wipe out the reference to the secondary AD and make the system think it has only the Primary DC and establish full functionality. If so how?  
 If i can i would reformat the secondary DC and reinstall the OS and rejoin to domain and once again make it DC at that point.

If i can not wipe out the secondary DC, how do i force the secondary DC to accept replication from the primary DC alone ( one way replication)  and block the replication of the secondary DC info up to the primary DC.
i believe the secondary DC may have been faulty and pushed old AD info up to the primary DC which initiated all the issues.
Thanks in advance
0
 
LVL 14

Expert Comment

by:Raj-GT
ID: 40019298
Have you transferred all the FSMO roles to this dc?
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
Ever notice how you can't use a new drive in Windows without having Windows assigning a Disk Signature?  Ever have a signature collision problem (especially with Virtual Machines?)  This article is intended to help you understand what's going on and…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now