The security database on the server does not have a computer account for this workstation trust..
We have a single Site single Domain (xyz.com) which contain following 3 Domain Controllers: 1- DC1 (PDC, windows server 2012 R2, a hyper-v virtual server) 2- DC2 (Secondary DC, windows server Ent 2008 sp2, physical server) 3- DC3 (Secondary DC, windows server Ent 2008 sp2, a vmware virtual server) Problem: The error message "The security database on the server does not have a computer account for this workstation trust relationship" is coming while end users attempting to change their password who are controlled by a domain password policy. Action Taken: 1 When i chech the computer account, i found following result: C:\Windows\system32> NETDOM VERIFY computer_name The secure channel from computer_name to the domain XYZ has been verified. The connection is with the machine \\DC3.xyz.com 2 Then i do force to RESET the secure channel to DC1: C:\Windows\system32> NETDOM RESET computer_name /domain:xyz /server:DC1 3 After restart the computer, user able to change without any error message!!! Now My Question is: Why the error message "The security database on the server does not have a computer account for this workstation trust relationship" appear while those computer's secure channel is connected to DC2/DC3 only? Why those client computer's Secure Channel is automatically registered to either DC2 or DC3?
DCOM was unable to communicate with the computer
i ran dcdiag on all my for dc 2,3,4,5 dc2 = windows 2016 dc3 = windows 2012 dc4 = windows 2012 dc5 = windows 2016 I get the following error DCOM was unable to communicate with the computer 1.1.1.1 using any of the configured protocols; requested by PID 19f8 (C:\Windows\system32\dcdiag.exe). An error event occurred. EventID: 0x0000272C Time Generated: 10/08/2020 11:20:39 Event String: DCOM was unable to communicate with the computer 10.10.0.1 using any of the configured protocols; requested by PID 19f8 (C:\Windows\system32\dcdiag.exe). An error event occurred. EventID: 0x0000272C Time Generated: 10/08/2020 11:21:57 Also, note that 10.10.0.1 IP does not exist and its not configured in nic or forwards Please assistHostname Character Limit
Still being limited to 15 characters for hostnames in 2019 is very upsetting. In an age where we are deploying servers in multiple data centres, whether that be on premise or in the cloud and having multiple environments as well means trying to come up with sensible hostnames in just 15 characters is basically impossible. I’m sure I am not the only person who is frustrated by this limit and would very much like it if Microsoft was to revisit this limit and increase it to bring it in line with the wonderful limit our Linux friends enjoy.
Deploy fonts via GPO
Hi Everyone, We have recently purchased a package that contains fonts for the marketing team. These need to be distributed throughout the organisation. What is the best way to deploy this to every computer? I've tried to follow a few GPO steps but it does not seem to work for me. 1. Edit 'Fonts Installation' GPO and navigate to: User Configuration > Preferences > Windows Settings > Files 2. Create New File: Right click > New > File 3. In Source file(s), enter location of the file 4. In Destination File: C:\Windows\Fonts\Orkney Bold Italic.tff 5. Click OK 1. Navigate to User Configuration > Preferences > Windows Settings > Registry 2. Create New Registry Item with the following attributes: HKEY_LOCAL_MACHINE SOFTWARE\Microsoft\Windows NT\CurrentVersion\Fonts Value Name: [name of the font] (TrueType) e.g. Orkney Bold Italic (TrueType) Value type: REG_SZ Value data: Orkney Bold Italic.ttf 3. Click OK This does not seem to work for me. I've managed to get the font to appear in the registry using the method above but it does not appear within the font selection itself? Any ideas?
Windows Server 2016 No Internet Access after AD, DNS and DHCP setup
I have a Windows Server 2016 on which is setup as a Domain Controller. I have AD, DNS and DHCP setup on the same server. The DNS server address is localhost and DNS forward has been setup for the default gateway server locally. I cannot get internet access on my server using localhost as mt DNS address. But if I use default gateway as DNS server internet access works so I know there is something wrong in my DNS server setup and forwarding. Please help?
Group Policy via vpn connection
Hello, I created on Windows Server 2016 a group policy to distribute a root CA to my employee notebooks; I tried it in a test lab and it does work, but the test is with a dc vm and a workstation vm inside the same network. All the notebooks now are in the employees house so I tried to test distribute the gpo via the vpn connection to my office network, but it seems that the computer policy is not updated; if I do a simple gpupdate /force I obtain this: Computer policy could not be updated successfully. The following errors were encountered: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has successfully processed. If you do not see a success message for several hours, then contact your administrator. User Policy could not be updated successfully. The following errors were encountered: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has successfully processed. If you do not see a success message for several hours, then contact your administrator. To diagnose the failure, review the event log or run GPRESULT /H GPReport.html from the command line to access information about Group Policy results. Where to start the troubleshooting? First of all: is it possible to distribute computer gpo via vpn? Marco
