Trish Glees
asked on
Windows Server 2012 Domain Controller and Windows 7 workstations
I had a major failure (hardware: harddrives) on my Windows Server 2012 domain controller. I had to rebuild the server and install a fresh copy of Windows Servers 2012 along with AD and DNS. I used the same domain name, but change the password of the administrator account. I recreated all of the users in AD and created new passwords for the users.
Most of the computers I was able to drop out of the domain and into a workgroup, create a local admin and password and reboot. After which I was able to bring the computer back into the domain.
On two computers, which were at a shut down status and the time of the failure and rebuild are getting the following error: The security database on the server does not have a computer account for this workstation trust relationship. When I get to the logon screen I see the domainname/user and enter in both the old known password and the new password that I just created for AD. If there was a local admin account on the computer, it is hidden and I do not know the password.
In AD Computers, I added the name of the computers in questions, hoping this might be enough to jump start them.
1. Is there a way to get into the workstation at this point? Would I bypass the logon screen in SafeMode, and then create a local admin?
2. Is there a powershell script?
Any suggestions?
Most of the computers I was able to drop out of the domain and into a workgroup, create a local admin and password and reboot. After which I was able to bring the computer back into the domain.
On two computers, which were at a shut down status and the time of the failure and rebuild are getting the following error: The security database on the server does not have a computer account for this workstation trust relationship. When I get to the logon screen I see the domainname/user and enter in both the old known password and the new password that I just created for AD. If there was a local admin account on the computer, it is hidden and I do not know the password.
In AD Computers, I added the name of the computers in questions, hoping this might be enough to jump start them.
1. Is there a way to get into the workstation at this point? Would I bypass the logon screen in SafeMode, and then create a local admin?
2. Is there a powershell script?
Any suggestions?
Delete the computer accounts from AD and re-join them to the domain. They need to get a new guuid
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Use the password reset tools for reset the password that two computers.. unplug the servers from network and reset the password and rejoin them on domain..