• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2123
  • Last Modified:

Active directory - Cannot create the object because the specified account already exists

Hello,

I usually create an AD account and then the Exchange account, but decided to skip a step and create the user in Exchange and allow it to create the AD account. What I have now is an invisible account I cannot find in the orphaned and deleted objects container in ADSI edit. Also, dsquery says it cannot find the account and Powershell cannot find the account. Of course when I go to create the account again, it says it already exists. Stumped at this point.
0
clarecomputer
Asked:
clarecomputer
  • 5
  • 3
  • 2
3 Solutions
 
Rob HutchinsonDesktop SupportCommented:
Can't you just right click the domain, and choose "Find..." from the popup using the AD Users and Computers gui tool?

I know if you are  searching in the wrong domain, it's going to give you the same error so maybe you are defaulting the search to the wrong domain?
0
 
clarecomputerAuthor Commented:
Single domain forest, I wish it were that easy :(
0
 
Rob HutchinsonDesktop SupportCommented:
Is the account name using any special char's?
http://support.microsoft.com/kb/938447
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
Rob HutchinsonDesktop SupportCommented:
0
 
clarecomputerAuthor Commented:
Account name is simply "service"

I actually found that article earlier, I can't even get the information he is getting on the orphaned object
0
 
Rob HutchinsonDesktop SupportCommented:
I think you are having problems because "service" is a reserved name?

I'll see if I can find a direct reference.
0
 
Rob HutchinsonDesktop SupportCommented:
I couldn't find a direct reference, but 100% sure this is why.

For example, even on a Windows 7 computer; go into the local users management and try to create an account using the name "Service"; you get the same error.
0
 
Gareth GudgerCommented:
What happened from the "Find...." from the top-level domain that Rob previously mentioned. Did that return any results?

If you didn't specify an OU when you created the user in Exchange it would have dumped it into the Users root OU by default.
0
 
Gareth GudgerCommented:
Actually Rob is right. I just tried creating a User called Service in my 2012 AD lab and it blocked me saying it already existed.

So, what you probably did was create a mailbox for a built-in user that already existed.

So you need to pick a different UPN.
0
 
clarecomputerAuthor Commented:
Oh wow, I didn't expect that result. Its true, I cannot create a service account on my local workstation. Just created a user with a different UPN and added service@blah.com as an additional mailbox. Thanks for the replies!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Certified Penetration Testing

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

  • 5
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now