[Samba] Trust Relationship between this work station and primary domain failed

lingpanda101 lingpanda101 at gmail.com
Thu Aug 17 12:58:38 UTC 2017 

On 8/15/2017 9:55 AM, zhia chandra wrote:
> hi ling
>
> in your case maybe your there is a problem on object data sync between 
> your DC in different site ..
>
> in my case actually i never move the PC to other sites
>
> On Aug 15, 2017 8:02 PM, "lingpanda101 via samba" 
> <samba at lists.samba.org <mailto:samba at lists.samba.org>> wrote:
>
>     On 8/15/2017 8:43 AM, L.P.H. van Belle via samba wrote:
>
>         Hai,
>
>         Was this pc a member of any NT4 Domain in the past?
>
>
>         You can try the following.
>         Login as a Local Administrator on the pc.  ( you may need to
>         create one first. )
>         Open PowerShell as administrator ( you need powershell 3.0 
>         for this )
>         Run:
>         Reset-ComputerMachinePassword -Server AD_DC.DOMAIN.TLD
>         -Credential YOUR_AD_DOM\Adminstrator
>         Restart-Computer
>
>         No powershell V3.
>         netdom.exe resetpwd /s:AD_DC.DOMAIN.TLD
>         /ud:YOUR_AD_DOM\Adminstrator  /pd:*
>         (netdom.exe on Windows 7, get it from the Remote Server
>         Administration Tools.)
>
>         Did this help? If not, follow the steps from this link.
>         https://support.microsoft.com/en-us/help/2771040
>         <https://support.microsoft.com/en-us/help/2771040>
>
>         And last, run : net cache flush on the AD DC's before you do
>         above.
>
>
>         Greetz,
>
>         Louis
>
>
>             -----Oorspronkelijk bericht-----
>             Van: samba [mailto:samba-bounces at lists.samba.org
>             <mailto:samba-bounces at lists.samba.org>] Namens zhia
>             chandra via samba
>             Verzonden: dinsdag 15 augustus 2017 14:18
>             Aan: samba
>             Onderwerp: Re: [Samba] Trust Relationship between this work
>             station and primary domain failed
>
>             hi rowland
>
>             im sorry i used gmail web to send it
>             i ll try to remove it as your suggest
>
>             btw i just find some work arround .
>
>             i try to un join then rejoin, and the problem still the same
>             i cannot login
>
>             and then i try to rejoin with different computer name (i
>             change my computer name before rejoin)
>
>             and i successfully access my profile
>
>             i still dont get the root cause of this problem .. maybe i
>             have corrupt computer data in my ldap database ..
>
>             maybe  you can give me some enlightment
>
>
>
>             On Aug 15, 2017 17:33, "Rowland Penny via samba"
>             <samba at lists.samba.org <mailto:samba at lists.samba.org>>
>             wrote:
>
>             On Tue, 15 Aug 2017 16:50:36 +0700
>             zhia chandra via samba <samba at lists.samba.org
>             <mailto:samba at lists.samba.org>> wrote:
>
>                 hi all
>
>                 i still struggling for the last 2 month to figure out what
>
>             happen with
>
>                 my samba 4 AD server Installation
>
>                 almost all my client mostly win 7 and 10 having same
>                 problem with
>                 trust relationship
>
>                 i have check the time on PC client all fine ..but the
>                 trust
>                 relationship problem still happen
>
>                 here is my samba server conf
>
>             Well, you could start by removing the Unix domain member
>             lines from your AD DC smb.conf:
>
>                      vfs objects = acl_xattr
>                      map acl inherit = Yes
>                      store dos attributes = Yes
>
>             These should NEVER be there.
>
>             Also if these '<http://terminix.co.id>',
>             '<http://terminix.co.id/scripts
>             <http://terminix.co.id/scripts>>' are actually in smb.conf,
>             remove them.
>
>             Rowland
>
>             PS: your mail client is rubbish, it just put your smb.conf
>             into a managled block which I had to decipher ;-)
>
>
>             --
>             To unsubscribe from this list go to the following URL and
>             read the
>             instructions:
>             https://lists.samba.org/mailman/options/samba
>             <https://lists.samba.org/mailman/options/samba>
>             --
>             To unsubscribe from this list go to the following URL and
>             read the
>             instructions:
>             https://lists.samba.org/mailman/options/samba
>             <https://lists.samba.org/mailman/options/samba>
>
>
>     I don't have a solution, but I'm also having this issue. I have
>     only noticed it when I moved a workstation to another site. It's
>     easily resolved by resetting the machine password or rejoining to
>     the domain.
>
>
>
>     -- 
>     --
>     James
>
>
>     -- 
>     To unsubscribe from this list go to the following URL and read the
>     instructions: https://lists.samba.org/mailman/options/samba
>     <https://lists.samba.org/mailman/options/samba>
>
Zhia,

     You were correct. One DC had a error of (WERR_BAD_NET_RESP). Sorry 
couldn't solve yours, but thank you for solving mine. Running the 
following appears to have solved my issue at the moment.

samba-tool drs replicate DC2 DC1 dc=samdom,dc=example,dc=com --full-sync

-- 
--
James

More information about the samba mailing list