question

mahfuzrupok-2233 avatar image
0 Votes"
mahfuzrupok-2233 asked birenderchahal-9481 answered

The trust relationship failed between workstation and domain controller.

We are facing Trust Relationship failed between workstation and domain controller. This issue resolved After rejoining this workstation into domain, But we are facing this issue everyday for new workstation and previously resolved PC. How to resolve this issue permanently.

windows-active-directory
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

If there's anything you'd like to know, don't hesitate to ask.

Best Regards,

0 Votes 0 ·
DSPatrick avatar image
0 Votes"
DSPatrick answered mahfuzrupok-2233 commented

I'd check the health of domain controllers and that replication status is good between them.

--please don't forget to Accept as answer if the reply is helpful--





· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Yes Replication is okay

0 Votes 0 ·
KoprowskiT avatar image
0 Votes"
KoprowskiT answered

@mahfuzrupok-2233 very often it happening when you had machine joined to AD DS and then for some reason you rejoin that machine. The registry can be confused. Try to use 'dsa.msc' (Active Directory Users And Computers Management Pane) then go for OU\Computers then go to a specific machine and Reset machine account. If should fix the problem. Often I simply unregister machine, clear all information about it in AD DS, and rejoin again. But this is rather harsh, as you will lose SID of the machine.

But a permanent solution could not work all the time. Those things happening from time to time in Active Directory.

There is a similar thread on this forum https://docs.microsoft.com/en-us/answers/questions/108461/server-2016-datacenter-34the-trust-relationship-be.html You can follow it as well.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

FanFan-MSFT avatar image
0 Votes"
FanFan-MSFT answered

Hi,
I would suggest you check if all the DCs are working well .
Also, please check if the time sync is good.
Clear all the DNS records for the removed clients.
Make sure the network is connected to the DC.
Best Regards,

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

FanFan-MSFT avatar image
0 Votes"
FanFan-MSFT answered

Hi,
I would suggest you check if all the DCs are working well .
Also, please check if the time sync is good.
Clear all the DNS records for the removed clients.
Make sure the network is connected to the DC.
Best Regards,

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

birenderchahal-9481 avatar image
0 Votes"
birenderchahal-9481 answered

Clear the duplicate entry from DNS records. if there are any.

Also check DNS record with host name and IP address is matching with your ENDPOINT

if there are any firewall ( windows or antivirus) disable the firewall.
Check all necessary port is reachable

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.