unable to login windows server 2003 AD in AD recovery mode

Hi Experts
i have this error in my Server 2003 AD
i trying to use F8 AD restore mode but when i trying to login i got error the password is incorrect
Please help
sev.png
MASWORLDAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Toni UranjekConsultant/TrainerCommented:
You have to enter Directory Service Restore Mode, which you entered when you ran dcpromo on this server.

Can you login as domain admin?

Than you can reset DSRM password with ntdsutil.

How To Reset the Directory Services Restore Mode Administrator Account Password in Windows Server 2003
https://support.microsoft.com/en-us/kb/322672
Radhakrishnan RSenior Technical LeadCommented:
Hi,

Which password you are typing to login into DSRM mode? is it the domain admin credentials? If so, that won't work. Domain admin password and DSRM password is entirely different. This used to set during the server commissioning (dcpromo).

If you are able to login to normal mode with your domain credentials then the DSRM password can be changed from there.

Go to command prompt>>ntdsutil.exe

set dsrm password
reset password on server null

Type the password following by confirmed password. Reboot the server and login to DSRM
Luis MouraCommented:
Hello

Did you enter in Directory Services Restore Mode, and this error appear?

Did you check this article? https://support.microsoft.com/en-us/kb/249321


Maybe, with dameware try connect to server and start this service.
SolarWinds® VoIP and Network Quality Manager(VNQM)

WAN and VoIP monitoring tools that can help with troubleshooting via an intuitive web interface. Review quality of service data, including jitter, latency, packet loss, and MOS. Troubleshoot call performance and correlate call issues with WAN performance for Cisco and Avaya calls

MASWORLDAuthor Commented:
thanks all
but i can't login the server any way safe mode or normal
Luis MouraCommented:
You can try with Dameware remote support (free version), conect to server and start the service, maybe can help i hope
Radhakrishnan RSenior Technical LeadCommented:
Hi,

There is a hotfix available for the same issue
https://support.microsoft.com/en-us/kb/830574 

But the thing is how you apply this as you are no longer able to login. You need to try several reboot in safe mode or last known etc..
Mr TorturSystem EngineerCommented:
Hi,
so you cannot login on AD on this server because its AD seems completly down. And because it is a DC it does not have local accounts..
Is there another DC working for the same domain in your LAN ?
If yes you could use it to rebuild a brand new DC..
MASWORLDAuthor Commented:
i trying from another server but i got this error
11.png
Radhakrishnan RSenior Technical LeadCommented:
As per the screen shot, it looks like you are trying to reset the DSRM password onto the failed server? if so, that won't work as the command meant to reset locally connected server not remote server.
MASWORLDAuthor Commented:
@Mr Tortur
Is there another DC working for the same domain in your LAN ?
yes i have all xp PC's but no one admin user
MASWORLDAuthor Commented:
@all
i remember the recovery mode password
Mr TorturSystem EngineerCommented:
hum, I was speaking of maybe another server acting as Domain Controller, not client PC   :-(
When possible we set at least 2 DC for a domain, for redundancy.
If you don't have another DC, or you don't know about, well, sadly this will be a deadend.
MASWORLDAuthor Commented:
hi
now i can login the server but the same first error
sev.png
MASWORLDAuthor Commented:
i also run this command
ntdsutil files integrity
it found that Database is corrupted
er.png
Radhakrishnan RSenior Technical LeadCommented:
Hi,

Try to perform offline DE-fragmentation. If that doesn't work then forcefully repair the dit file. Use this command

Esentutl /p c:\windows\ntds\ntds.dit (change the dit location according to your setup). If this is success then perform an Integrity again and see if everything fine.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
MASWORLDAuthor Commented:
@Radhakrishnan Rajayyan
thanks but same error
i restore old backup it's work but all  pc unable to login to domain
i take a snapshot from the error state
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Networking

From novice to tech pro — start learning today.