Domain Trust Relationship Issue
For a typical user who logs in to their Windows computer joined to a network domain, they might get an error about Domain Trust relationship like: "The trust relationship between this workstation and the primary domain failed".
To users, it becomes annoying as they just want to log in to the computer they use for work and they expect getting this error removed. User would say you ruined their computer.
The thing is, on my experience, this error get removed with rejoining the PC to the domain. Log in as local admin and hold Windows key + Pause (or Windows +Alt +Pause if laptop) then System windows will show up with Change Settings option available under "Computer name, domain and workgroup settings".
You can try the steps below to avoid the hassle of rejoining to domain and restarting.
1. In AD right click the computer and select Reset Account.
Then re-join without un-joining the computer to the domain.
Reboot required.
2. In an elevated command prompt type: dsmod computer "ComputerDN" -reset.
Then re-join without un-joining the computer to the domain.
Reboot required.
3. In an elevated command prompt type: netdom reset MachineName /domain DomainName /User0 UserName /Password0 {Password | *}
The account whose credentials you provided must be a member of the local administrators group.
No rejoin. No reboot.
4. In an elevate command prompt type: nltest.exe /Server:ServerName /SC_Reset:DomainDomainController
No rejoin. No reboot.
To users, it becomes annoying as they just want to log in to the computer they use for work and they expect getting this error removed. User would say you ruined their computer.
The thing is, on my experience, this error get removed with rejoining the PC to the domain. Log in as local admin and hold Windows key + Pause (or Windows +Alt +Pause if laptop) then System windows will show up with Change Settings option available under "Computer name, domain and workgroup settings".
You can try the steps below to avoid the hassle of rejoining to domain and restarting.
1. In AD right click the computer and select Reset Account.
Then re-join without un-joining the computer to the domain.
Reboot required.
2. In an elevated command prompt type: dsmod computer "ComputerDN" -reset.
Then re-join without un-joining the computer to the domain.
Reboot required.
3. In an elevated command prompt type: netdom reset MachineName /domain DomainName /User0 UserName /Password0 {Password | *}
The account whose credentials you provided must be a member of the local administrators group.
No rejoin. No reboot.
4. In an elevate command prompt type: nltest.exe /Server:ServerName /SC_Reset:DomainDomainController
No rejoin. No reboot.
Comments
Post a Comment