Active Directory replication fails with error Target Principal name incorrect

16 décembre 2015

Active Directory replication fails with error Target Principal name incorrect

I recently had a problem with a client's Active Directory

2 Active Directory sites were unable to connect during a few days, and in the meantime the domain controllers changed their computer's account password (see Murphy's Law)

When the network came back, the Active Directory replication tools gave the following error :

DCDIAG reports that the Active Directory Replications test has failed with error -2146893022: “The target principal name is incorrect."

This oriented me towards this microsoft KB :

https://support.microsoft.com/en-us/kb/2090913

After checking all the information, here is what I did :

The "netdom resetpwd /server:<DC to direct password change to> /userd:<user name> /passwordd:<password> command executed from an admin-privileged CMD prompt on the console of the DC needing a password reset can be used to reset DC machine account passwords.

This command must be executed on the different DCs crossing sites, DC1siteA towards DC1SiteB and DC1SiteB towards DC1SiteA

After cascading reboots, replication started again correctly!

Posté par : jcdemarque à 11:10 - Active Directory - Permalien [#]
Tags : Active Directory, incorrect, Microsoft, netdom, principal name, replication, resetpwd, Server, target, Windows

Article précédent (01/09/2008)
QUE SE PASSE-T-IL SI MON VIRTUAL CENTER (VC)...
http://www.yellow-bricks.com/2008/08/05/what-if-my-virtualcenter-server-crashes/ A remonter...

» Lire la suite

« décembre 2015 »
dim	lun	mar	mer	jeu	ven	sam
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31

« décembre 2015 »

dim

lun

mar

mer

jeu

ven

sam