Does server2 is already member of the contoso domain before promote it to a DC?
Cannot add promote second server to DC. Error 1326
Server1.contoso.com = Main DC
Server2.contoso.com = Server that I would like to promote to a DC to replicate any changes made to Server1
Both are running Windows Server 2012 R2 Standard.
When I try to run the DCPromo, I receive the following errors below. Any ideas where I can start to troubleshoot? I am able to ping server1 from server2 without any issue.
Verification of prerequisites for Active Directory preparation failed. Unable to connect to the replication source domain controller server1.contoso.com..
Exception: A directory service error has occurred
Verification of prerequisites for Domain Controller promotion failed. Failed to examine the Active Directory forest. The error was: The operation cannot continue because LDAP connect/bind operation failed: error: 1326 (The user name or password is incorrect.).
Verification of outbound replication failed. Unable to locate replication source domain controller server1.contoso.com. Domain controller "server1.contoso.com" does not exist or cannot be contacted.
4 answers
Sort by: Newest
-
-
Limitless Technology 39,366 Reputation points
2021-09-15T15:07:06.477+00:00 Hello again @GoogleFuMaster
Besides checking that the user/password is correct and has Domain Admin privileges, I would recommend:
- Is it possible that you have decommissioned a previous DC?
Check FSMO roles host: https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/find-servers-holding-fsmo-role
Seize FSMO Roles (in case were incorrect): https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/transfer-or-seize-fsmo-roles-in-ad-ds - Is it possible that you have set DSRM password during 1st DC promotion?
https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/reset-directory-services-restore-mode-admin-pwd
Hope this helps with your query,
Best regards, - Is it possible that you have decommissioned a previous DC?
-
Limitless Technology 39,366 Reputation points
2021-09-15T14:22:57.18+00:00 Hello,
Thank you for reaching out.
- Please verify you have Admin privileges so that you can join to Domain.
- Please verify DNS settings and DNS ip should of your DC server.
- Please try to disable firewall and anti-virus program for temporary.
Hope this helps.
Regards
-
Dave Patrick 426.1K Reputation points MVP
2021-09-15T12:51:41.347+00:00 Something here may help.
https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/ad-replication-error-1908-not-find-domain-controlleralso please run;
Dcdiag /v /c /d /e /s:%computername% >C:\dcdiag.log
repadmin /showrepl >C:\repl.txt
ipconfig /all > C:\dc1.txt
ipconfig /all > C:\dc2.txt
then put
unzipped
text files up on OneDrive and share a link.