Domain Login Fails If Snapshot Is Reverted
So i reverted the dc to the last created snapshot.
Domain login fails if snapshot is reverted. Server dc is my domain controller. Unfortunately if you have windows xp for example the netdom command won t work because the netdom exe isn t installed. Sysprep the vm and create an unattend file that will configure it to your liking and that will automatically join the domain for you. If the password is not changed for maximumpasswordage days the machine account becomes invalid denying domain logon.
Once the machine is sysprep d make a snapshot and restore to that one from now on. Cannot login to domain after revert snapshot vmroyale aug 26 2008 7 06 am in response to tdubb123 here is a vbscript that will tell you when the computer account last had its password reset. It is a vm and was reverted to a snapshot about 4 days old. How to properly snapshot and revert a domain controller tomhowarth may 16 2011 5 49 pm in response to jesszen seriously do not do this reverting a snap of a dc will leave you in a world of pain.
Let me explain by default every 30 days active directory server will change the machine key for each its domain members so when you restore the snapshot which is older than 30 days trust relation between workstation and domains fails. Reverting to a snapshot rebuilds the transaction log and breaks the log backup chain. We have a domain controller windows server 2012 r2 and few replication servers. If you can change the default domain policy or get an exception created for your computer account s.
I was unable to log in with my ad credentials so i powered it down disabled the nic powered it on and then was able to log in with my ad credentials. Mostly i have faced an issue when restoring my windows domain machine to previous snapshot which was taken before 30 days. This time i get the trust relationship between this workstation and the primary domain failed. The only thing i can do is take a full or differential backup and then start taking log backups again.
I had taken a vmware snapshot of our dc few weeks back and today i had accidentally deleted few users and groups. After looking through the server for what we needed i restarted it and tried to login again. After doing this attempts to log into the domain fail with system event id 3210. Userd administrator is the user with domain admin rights.
If a machine is reverted to a previous snapshot the secure channel password on the host could differ from the copy held by domain controllers denying domain logon. So i lost the ability to do point in time restores in the period from the last log backup to the time when i reverted to the snapshot.