Error " The Target principal name is incorrect"

Discussion in 'Active Directory' started by Pcnetnet, Jun 4, 2008.

  1. Pcnetnet

    Pcnetnet Guest


    Pcnetnet, Jun 9, 2008
    1. Advertisements

  2. Hello pcnetnet,

    For all your DNS server entries on the NIC, choose the real ip address of
    the server and not the loopback address After changing you should
    also check that the DC's have a secondary entry for DNS server form your
    domain internal network. Then restart the NETLOGON service and check again
    with the tools for errors.

    Best regards

    Meinolf Weber
    Meinolf Weber, Jun 9, 2008
    1. Advertisements

  3. Pcnetnet

    Pcnetnet Guest

    I know the problem is "exceeded tombstone lifetime" of this domain ,
    but i don't want remove the DC , becuase the DC1 and DC2 have change on AD ,
    so i don't want remove the DC , how to fix ? i can remove the repl link and
    reactive or other ?? HELP ~~~~~~~~~~~~
    Pcnetnet, Jun 9, 2008
  4. Pcnetnet

    pcnetnet Guest

    Hi Meinolf,
    If i disconnect the server DC1 on Site A , and the use DC2 on Site A for
    main DC , but how to traffer the FSMO to DC2 ? on DC2 change the FSMO .
    pcnetnet, Jun 9, 2008
  5. Hello pcnetnet,

    You have to disconnect (and NOT reconnect until it is demoted and removed
    from AD) or demote the broken DC from the domain. Choose "dcpromo /forceremoval"
    if it is not possible with normal demotion.

    If you have taken out the problem machine, you have to seize the FSMO roles.

    Additional you have to do a metadata cleanup to remove the broken DC from
    Active directory.

    If it was DNS server cleanup also DNS from the old settings of that DC/DNS.

    Best regards

    Meinolf Weber
    Meinolf Weber, Jun 9, 2008
  6. Pcnetnet

    pcnetnet Guest

    then i need change the FSMO to other DC first ????? if finish the change
    FSMO i can dcpromo/forceremoval , ?? Thanks,
    pcnetnet, Jun 10, 2008
  7. Hello pcnetnet,

    You can try to move the roles. If it doesn't work, disconnect the old DC
    and seize the roles.

    Best regards

    Meinolf Weber
    Meinolf Weber, Jun 10, 2008
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.