Solved

Lost trust with server, now can't rejoin domain because

Posted on 2014-10-07
11
256 Views
Last Modified: 2014-10-09
I have a PC (Windows 7) that lost trust with the server (Server 2003 r2) I took it off the domain and tried to rejoin but I get the following error "the join operation was not successful this could be because an existing computer account having name "XXXX"  was previously created using different credentials."
I deleted the object from Active Directory and tried renaming the PC. Anyone know what else I need to do?
0
Comment
Question by:peraspera
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
  • 3
11 Comments
 
LVL 19

Expert Comment

by:Miguel Angel Perez Muñoz
ID: 40365857
Ensure account used to join computer has enough privileges to do this.
By default, user account can join 10 computers to domain.
0
 

Author Comment

by:peraspera
ID: 40365868
I am using Server Admin account to join the PC to the domain.
0
 
LVL 19

Expert Comment

by:Miguel Angel Perez Muñoz
ID: 40365879
When you are joining computer to domain, you are asked to provide credentials. Ensure this credentials has enough privileges.
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:peraspera
ID: 40365896
The credentials are the same that I use to join every computer to the domain. 100% positive they are correct
0
 
LVL 3

Expert Comment

by:TropicalBound
ID: 40365898
What do you mean by 'Server Admin'?  Are you using the original Domain Administrator account, or are you using an account that someone in your domain created?
0
 
LVL 19

Expert Comment

by:Miguel Angel Perez Muñoz
ID: 40365899
Since you have deleted old active directory account, must be a permission problem. This article may help you: http://support2.microsoft.com/kb/932455
You can try before, recreate account, place on OU and rejoin.
0
 

Author Comment

by:peraspera
ID: 40365907
TropicalBound - Original Domain Admin account
0
 
LVL 3

Expert Comment

by:TropicalBound
ID: 40365960
How many domain controllers do you have?  If more than one, did you verify the deletion synchronized across all DCs?

Just to clarify, you logged onto your DC as the Domain Administrator, opened AD Users and Computers, navigated to the appropriate OU, and deleted the Windows 7 computer object.  Correct?
0
 

Author Comment

by:peraspera
ID: 40366085
Great questions TropicalBound. There are 2 DC's and when I removed the object on one it did not sync across both. However if I rename the PC and try to join the new name shows up in both DC's as an object. The desktop then receives the error.

You are 100% correct on the process to remove the object.
0
 
LVL 3

Accepted Solution

by:
TropicalBound earned 500 total points
ID: 40368308
OK, so something is amiss with the sync.  For the quick fix, log onto each DC and delete the Win7 computer object, then see if you can rejoin the domain.
0
 

Author Closing Comment

by:peraspera
ID: 40370541
Thanks for all the help. I ended up rebuilding the PC because I needed to get the PC up and going. I still haven't figured out the reason that it happened but the rebuild fixed all.
0

Featured Post

Create Professional Looking Email Signatures

Create "Professional HTML Email Signatures" with ease.
7 Day Money Back Guarantee if not 100% Satisfied.
Affordable - Try it out for 7 Days Totally Risk Free.
Installers provided for over 45 Email clients.
Both Windows & MAC Supported.
Highly Recommended!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
The viewer will learn how to successfully create a multiboot device using the SARDU utility on Windows 7. Start the SARDU utility: Change the image directory to wherever you store your ISOs, this will prevent you from having 2 copies of an ISO wit…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question