Server looses the domain trust and i dont have local admin credentials
Dear Experts,
Servers in company are restored, I read some blogs that after restore the machine looses the Domain Trust if the password is changed during this time. So far everything is understood. Now the issue is I have dont have local admin passwords I can not perform any operation to obtain domain trust. Could you please tell how can I deal with this situation. My boss is already screwed me up.
https://docs.microsoft.com/en-us/powershell/module/microsoft.powershell.management/test-computersecurechannel?view=powershell-5.1
Servers in company are restored, I read some blogs that after restore the machine looses the Domain Trust if the password is changed during this time. So far everything is understood. Now the issue is I have dont have local admin passwords I can not perform any operation to obtain domain trust. Could you please tell how can I deal with this situation. My boss is already screwed me up.
https://docs.microsoft.com/en-us/powershell/module/microsoft.powershell.management/test-computersecurechannel?view=powershell-5.1
Last Comment
ASKER
Unfortualey i dont have admin access :( :( . Its there any other way
Can you describe what happened and what's your current options?
Have you restored a DC? If you improperly restore a DC, as a standard restore from backup, this will happen and you end up with a non-functional DC. I am afraid that Directory Service Restore Mode (DSRM) is the only option here. Do you know the DSRM admin password? If not, I would start building a new DC.
Btw There is no local administrator on the domain controller.
How many DCs are in the network?
Have you restored a DC? If you improperly restore a DC, as a standard restore from backup, this will happen and you end up with a non-functional DC. I am afraid that Directory Service Restore Mode (DSRM) is the only option here. Do you know the DSRM admin password? If not, I would start building a new DC.
Btw There is no local administrator on the domain controller.
How many DCs are in the network?
ASKER
Actually I restored the 3 servers from back date. One by one all of them looses the trust. Now I need to bring again this server in to the domain. We also replicate the DC. I am not sure they are properly replicated or not. Yes I know DSRM admin password.
I can tell you whole scenario over the call. my watsaap no. +49-176 760 20060.
I can tell you whole scenario over the call. my watsaap no. +49-176 760 20060.
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Resetting admin password with WS201X DVD.
http://www.kieranlane.com/2013/09/18/resetting-administrator-password-windows-2012/
After you get in, rejoin the computer to the domain.
http://www.kieranlane.com/2013/09/18/resetting-administrator-password-windows-2012/
After you get in, rejoin the computer to the domain.
ASKER
Thanks to you guys, Adam I fixed the issue that you suggested. 4 servers were affected and all are fixed by disconnecting NIC and login and rejoin domain..many thanks for you support ....Could you please also suggest me how can i create local admin account for these servers.
Server Manager -> Tools -> Computer Management -> Local Users and Groups -> Users -> create a new user and add him to the Administrators group
ASKER
Dear Expert, Actually this would be domain admin, I am looking for Genric local account. That is independent from domain, For example I can login with that account and perform all admin tasks if needed.
Then follow my previous post.
Server Manager -> Tools -> Computer Management -> Local Users and Groups -> Users -> create a new user and add him to the local Administrators group
Server Manager -> Tools -> Computer Management -> Local Users and Groups -> Users -> create a new user and add him to the local Administrators group
Active Directory
Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.
86K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
Test-ComputerSecureChannel
OR
netdom resetpwd /s:yourDC /ud:domain\User /pd:*
https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/cc788049(v%3dws.11)