Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

HELP - Cannot logon after upgrading to Win 2000

0 views
Skip to first unread message

G Couture

unread,
Dec 17, 2002, 9:57:57 PM12/17/02
to
After upgrading the NT4 BDC on our domain, I can't logon. The system tells
me: "Thel local policy of this system does not permit you to logon
interactively".

If I try the network admin password, I get a message saying "The system
cannot log you on to this domain because the system's computer account in
its primary domain is missing or the password on that account is incorrect"

If I go to the domain controller, the account seems to be there. If I try to
access the BDC from there, I receive a message saying that the "Trust
relationship between this workstation and the primary domain failed".

The BDC seems to have isolated itself in a new domain with a password of its
own choosing.

Anyone has an idea on how to solve this ?!? Should I have demoted the NT4
BDC before upgrading? Fortunately, I have a mirror-image of the NT4
installation that I kept, just in case, but this is quite stupid.

Thanks for your suggestions

G Couture
Net Admin
Permabec Corp


me

unread,
Dec 18, 2002, 7:47:22 AM12/18/02
to
Honestly, I think you're screwed. Two separate problems here. First with
the interactive logon problem, that means you don't have administrative
rights. Users that don't have administrative rights are not allowed to
logon locally to a server. The second problem with a missing computer
account means a SID problem. Just because the machine shows in server
manager (or active directory) doesn't mean the computer will be able to
authenticate with the domain. To fix that you need to logon locally, remove
the machine from the domain and add it again. But since it is a domain
controller and there is no local account.......damn good thing you have that
mirror. My suggestion would be to go back to the mirror you had and try
again. If it does the same thing again, you may not be able to do the
upgrade. If this were a workstation, I would say remove from domain,
upgrade and add to domain again, but since it is a DC and of course no local
acount, that isn't possible because you can't change a server from a DC to
standalone and back again; only change role from PDC to BDC. And you're
right, it is quite stupid....of course, we are talking about Microsoft
software here.

- me

"G Couture" <gcou...@permabec.com> wrote in message
news:atoo73$3n9$1...@cti15.citenet.net...

0 new messages