Trust Relationship issue with a 2012 Server

Hi guys, I hope you are well and can assist.

In our AD Domain, we have an issue with a 2012 server.

We CAN..
- log on locally to the machine with a local user account.

We CANNOT..
- log on to the domain using this machine with a domain account.

We have tried..
- disjoining the domain, dropping it to workgroup, and rejoining to the domain.
- ensuring the computer account is completely out of AD.
- Computer reset of account while in the domain and trying again to logon
- Powershell cmdlet reset of account as above

Any suggestions greatly appreciated.
LVL 1
Simon336697Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Balaji UlaganathanSenior EngineerCommented:
The computer name should not be exceed 15 characters. Please check first.
0
Balaji UlaganathanSenior EngineerCommented:
Run below command then reboot the server.
Netdom resetpwd /s:EWR0ADCGTC02P /ud:Domain\username /pd:*
0
Dirk MareSystems Engineer (Acting IT Manager)Commented:
Disable any and windows Firewall
Wait 5min Test

Disable any Antivirus
Wait 5min Test

Is this server in the same site?
Can you ping/access this 2012 server from any other server/workstation? IP and FQDN?
And vise versa?

DirkMare
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Simon336697Author Commented:
Hi guys, have the server at same site.

Tried all the above, still out of luck.
0
Leroy LuffHead of IT & DIgitalCommented:
Is renaming the server an option?
0
Dirk MareSystems Engineer (Acting IT Manager)Commented:
What is the member servers IP config?

Do you have IPV6 enabled on any of the servers? If its enabled on the member server try disabling it.

Is the member server dual homed 2x NIC's installed connected to two different networks?

DirkMare
0
Mohammed KhawajaManager - Infrastructure:  Information TechnologyCommented:
What is the exact error you are getting?  Validate user account does not have any restrictions as to which computers the user can logon to.  Have you tried different accounts?  What is the OS of the client computer and also ensure the client computer has correct DNS settings.
0
compdigit44Commented:
What are the event logs on the 2012 server and DC showing? Any other problems with of servers /DC's. I the server in the same site at the DC?

Have you run the following command just to check AD health to be safe: dcdiag /v /e > c:\dcidag.txt
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Simon336697Author Commented:
Guys thank you all very much.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.