The security database on the server does not have a computer account for this workstation trust relationship - servicePrincipalName empty

Hi

i've a remote site (with firewall with HQ)  where Computer are added to my domain. Computer account is well created but when i restart and login, i've the following message (samed after disjoin and rejoin computer, never add prblem with oter computers in my HQ):

The security database on the server does not have a computer account for this workstation trust relationship

> in ADSIEDIT, servicePrincipalName is empty and i dont undernstand why
> I join workstation with a Domain Admins Account
> I ve test port with PortQuery / Domains and Trus and everything is fine 

Thanks for your help

June 25th, 2014 4:27pm

How many DCs do you have? probably the client is hitting a DC where the computer object hasn't replicated yet - what dose "nltest /dsgetsite" return from a such client?
Free Windows Admin Tool Kit Click here and download it now
June 25th, 2014 7:02pm

When you remove the machine from the domain make sure you delete the computer account before rejoining.
June 25th, 2014 9:15pm

Hi,

Additionally, please have a look at this technet article:

Error: The security database on the server does not have a computer account for this workstation trust relationship

http://technet.microsoft.com/en-us/library/ee849847(v=ws.10).aspx

Hope this helps.

Regards.

If you have any feedback on our support, please click here

Free Windows Admin Tool Kit Click here and download it now
June 26th, 2014 10:08am

Hi

yes after removing computer from AD, i delete the Computer Account


Regards

June 26th, 2014 10:46am

Hi

I've seen this post but for me the computer have to be created automatically, without any manual operation 

I've tried wirth different computer, Win7, Win8.1 ... same problem

To precise, this remote site is connected through IPSEC (pfsense)

Thanks


  • Edited by GuiAg Thursday, June 26, 2014 8:05 AM
Free Windows Admin Tool Kit Click here and download it now
June 26th, 2014 11:04am

Hi

I've seen this post but for me the computer have to be created automatically, without any manual operation 

I've tried wirth different computer, Win7, Win8.1 ... same problem

To precise, this remote site is connected through IPSEC (pfsense)

Thanks


  • Edited by GuiAg Thursday, June 26, 2014 8:05 AM
June 26th, 2014 11:04am

hi

on this foreign site there is no DC

in AD Sites and Services, i've link this VLAN to our HQ Site (all DC sith FSMO role are here)

nltest /dsgetsite > return  this HQ Site

Free Windows Admin Tool Kit Click here and download it now
June 26th, 2014 6:48pm

Hi,

Please check if there is any related errors in the event log?

You need to update the SPN with correct values:

http://portal.sivarajan.com/2010/05/workstation-trust-relationship-issue.html

Regards.

July 1st, 2014 5:03am

Hi,

Any update?

Regards.

Free Windows Admin Tool Kit Click here and download it now
July 14th, 2014 6:36am

Hi there , and thanks for posting

Is this PC deployed using image deploying service ? (microsoft or third party doesnt matter)

If so , please take this steps :

1. Disjoin from the domain.

2. Delete the computer account from the Active Directory

3. Sysprep and check the generalize option

4. join the domain.

I had the same situation which these steps resolved it.

Please give me feed back when you are don

Have fun

Farhad

July 14th, 2014 6:46am

Hi

Sorry for the delay ... The problem still there and i didn' t use a Deployment solution, OS just install from scratch. I completly disjoin server from Domain, delete Computer Objet  then rejoin ... same problem

To precize the server is a Windows Server 2012 R2 Standard (AD W2003), no problem with a W2008R2 on the same Remote Subnet


  • Edited by GuiAg 1 hour 5 minutes ago
Free Windows Admin Tool Kit Click here and download it now
August 8th, 2014 5:33am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics