Error in Accessing Primary Domain Controller from Backup Domain Controller

Discussion in 'Active Directory' started by Vaibhav Shah, Feb 10, 2006.

  1. Vaibhav Shah

    Vaibhav Shah Guest


    We have Windows 2003 server based network of around 10 computers. We have
    one computer desingtated as Backup Domain Controller.

    All of a sudden, we are not able to access the primary domain controls from
    the backup domain machine. The error is following:
    Logon Failure: The target account name is incorrect.

    demoting this computer to a regular computer in the network does not work.
    While dcpromo wizard is on, we get teh same error and the wizard ends

    We can access all other computers from this computer in the network. We have
    DHCP based network and no static IPs are given to any computer. The backup
    domain controller has global catalog and can perform tasks of
    authentication, user logns etc.

    How to solve this issue? Any help would be really useful.

    Vaibhav Shah
    Ragini Communications Inc.
    Vaibhav Shah, Feb 10, 2006
    1. Advertisements

  2. Vaibhav Shah

    Paul Bergson Guest

    I have to assume there is some type of dns error going on here. Do both
    machines point to the same dns server? Can the faulty dc ping the other dc?
    Is there a firewall of any kind between the two? You should run diagnostics
    on this machine to determine more of what is going on. Worst case scenario
    you can demote this machine via dcpromo /forceremoval but then you have to
    go back and clean up the metadata. Before you take that step you should see
    what is causing this error , otherwise you may end up back in the same
    situation even if you demote and promote out of the current issue.

    Run diagnostics against your Active Directory domain.

    If you don't have the tools installed, install them from your server install

    Run dcdiag and netdiag in verbose mode.

    If you download a gui script I wrote it should be simple to set and run. It
    also has the option to run individual tests without having to learn all the
    switch options. The details will be output in notepad text files that pop
    up automagically.

    The script is located in the download section on my website at

    Just select both dcdiag and netdiag make sure verbose is set. (Leave the
    default settings for dcdiag as set when selected)

    When complete search for fail, error and warning messages.
    Paul Bergson, Feb 10, 2006
    1. Advertisements

  3. Jorge de Almeida Pinto [MVP], Feb 19, 2006
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.