Category Archives: Active Directory

Solve “Trust Relationship Between Workstation and Domain Fails” without rejoining the domain

I found out there is an alternative way to fix the “Trust Relationship Between Workstation and Domain Fails” issue without rejoining the domain.

You can read all about it here.

In brief:

netdom.exe resetpwd /s:<server> /ud:<user> /pd:*

<server> = a domain controller in the joined domain
<user> = DOMAIN\User format with rights to change the computer password

For all details, check the link above.

DCDiag error 81 and DNS errors

Figure this situation: lots of Active Directory and DNS related errors, DCDiag immediately returned error 81.

Solution: rebooting the server did the trick. You don’t have to be a rocket scientist to solve seemingly complex issues 😉

Of course this will not always solve errors 81, but it will probably not hurt to try a reboot first …

GPO to prevent event log to become too large

You can create a GPO to avoid that the application, security and system log become too large.

This is a Computer policy: Computer Configuration, Windows Settings, Security Settings, Event Log

– Retention method for application log, Overwrite events as needed.
– Retention method for security log, Overwrite events as needed.
– Retention method for system log, Overwrite events as needed.

PolMan: GPO tool (reporting, comparing, …)

If you need to inventorize, troubleshoot, etc. your Group Policies, you often need something more than Microsoft GPMC.

SysPro offers an excellent tool, PolMan (current version is 4.1.5) which show you all your GPO settings in an interface which makes it very easy to find overlapping settings (set in more than 1 policy). Instead of simply listing all policies, with settings per policy, and having to find out which policy is used for which setting, you can see all settings, and than at a glance see which policies are used to change these settings. You can also export all settings to an Excel file, and much more.

A trial version can be downloaded; for prices and more info, see www.sysprosoft.com.

More GPO tools can be found here: http://www.microsoft.com/windowsserver2003/technologies/management/grouppolicy/gptools.mspx.