Solved

Problem logging into to Windows Server 2003 using domain admin account

Posted on 2015-01-20
11
67 Views
Last Modified: 2015-01-26
When I tried logging into my server using the domain\administrator account I got a message about a temporary user profile. So I followed this procedure

http://www.sysads.co.uk/2012/11/you-are-logged-into-a-temporary-profile-in-windows-server-2008-r2/

I inadvertently deleted the wrong key so now I get a new error message when I try to login, "The User Profile Service service failed the logon.  User profile cannot be loaded" and i can not login using my domain\administrator account.  I can login using another account which is in the domain admins group but for some reason I don;t get access to some of the folders.

How can I fix my server to login using the domain\administrator account?
0
Comment
Question by:GreyHippo
  • 6
  • 4
11 Comments
 
LVL 34

Expert Comment

by:Paul MacDonald
ID: 40560036
If it's just a member server, you can remove/rejoin it to the domain.  

Then promise on a stack of MCP manuals you'll stop hacking the registry without making a backup.
0
 

Author Comment

by:GreyHippo
ID: 40560042
Its a domain controller.
0
 
LVL 34

Accepted Solution

by:
Paul MacDonald earned 500 total points
ID: 40560049
Is it the only domain controller?  If not, you can still roll the FSMO roles over to another DC, demote, then promote this machine back to a DC.

If it is the only DC, you can do an authoritative restore from backup.  You do have backups...?
0
 

Author Comment

by:GreyHippo
ID: 40560113
Yes, there is another domain controller.  How can I tell which has FSMO roles?  I do have backups.
0
 

Author Comment

by:GreyHippo
ID: 40560119
Is there any way I can restore the registry key from a backup?
0
Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

 

Author Comment

by:GreyHippo
ID: 40560139
A different domain controller handles FSMO roles
0
 
LVL 34

Expert Comment

by:Paul MacDonald
ID: 40560150
Here's how to determine which DCs have which FSMO roles.

I don't know of any way to restore JUST the registry from a Windows backup.  It's possible to export the registry settings and save them as a file.  I recommend you do that before making any changes in the future.
0
 
LVL 11

Expert Comment

by:Mr Tortur
ID: 40560185
Hi,
if you can log to your server using a domain admin account, even if you don't have access to all folders, can you have the rights with this account to give another account all the domain rights? if yes and if that suits you could probably avoid a major restore operation on your only dc.
As this is a win2003 server I guess there is a chance that you get rid of it soon. If not you should because microsoft support is ending this year.

Also I don't know if restoring a single key from backup is possible, and even more for a dc.. I am pessimist on this one... but maybe.

If my firt step is not acceptable for you, you should demote and promote again the server as past comments suggest, as you have another dc with fsmo roles (check all roles).

If all solutions does not satisfy you, maybe you should go with an AD restore, as past comments suggest, but don't forget that you will loose your AD changes since your backup.
0
 

Author Comment

by:GreyHippo
ID: 40560265
I will try the to demote the server using DCPROMO tonight after all users have gone home.
0
 

Author Comment

by:GreyHippo
ID: 40560304
I am guessing that once I demote / promote the server, it will generate new registry keys for the domain administrator.  Is this correct?
0
 
LVL 34

Expert Comment

by:Paul MacDonald
ID: 40560364
Since all that information comes from the domain, I would expect so, yes.
0

Featured Post

Don't lose your head updating email signatures!

Do your end users still have the wrong email signature? Do email signature updates bore you or fill you with a sense of dread? You can make this a whole lot easier on yourself by trusting an Exclaimer email signature management solution. Over 50 million users do...so should you!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Can’t delete a file 14 141
People keep losing connection to file server 4 56
Determine if SQL is installed in Server 2008 R2 4 56
What are the Scan to network folder ports? 7 38
I have been working as System Administrators since 2003. I recently started working as a FreeLancer and was amazed to find out that very few people are taking full advantage of their Windows Server Machines. Microsoft Windows Server comes with so…
I was supporting a handful of Windows 2008 (non-R2) 2 node clusters with shared quorum disks. Some had SQL 2008 installed and some were just a vendor application that we supported. For the purposes of this article it doesn’t really matter which so w…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

896 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now