Fixing Active Directory Trust Issues.

Fixing Active Directory Trust Relationship Issues: 3 Quick Methods.

If you get the error "๐˜›๐˜ฉ๐˜ฆ ๐˜ต๐˜ณ๐˜ถ๐˜ด๐˜ต ๐˜ณ๐˜ฆ๐˜ญ๐˜ข๐˜ต๐˜ช๐˜ฐ๐˜ฏ๐˜ด๐˜ฉ๐˜ช๐˜ฑ ๐˜ฃ๐˜ฆ๐˜ต๐˜ธ๐˜ฆ๐˜ฆ๐˜ฏ ๐˜ต๐˜ฉ๐˜ช๐˜ด ๐˜ธ๐˜ฐ๐˜ณ๐˜ฌ๐˜ด๐˜ต๐˜ข๐˜ต๐˜ช๐˜ฐ๐˜ฏ ๐˜ข๐˜ฏ๐˜ฅ ๐˜ต๐˜ฉ๐˜ฆ ๐˜ฑ๐˜ณ๐˜ช๐˜ฎ๐˜ข๐˜ณ๐˜บ ๐˜ฅ๐˜ฐ๐˜ฎ๐˜ข๐˜ช๐˜ฏ ๐˜ง๐˜ข๐˜ช๐˜ญ๐˜ฆ๐˜ฅ" itโ€™s often due to the computer losing sync with Active Directory (like when a password update is missed between the Domain Controller and a computer).

And in this post I'll give you 3 quick ways to Fix this issue:

๐— ๐—ฒ๐˜๐—ต๐—ผ๐—ฑ ๐Ÿญ: ๐—ฅ๐—ฒ๐—ฝ๐—ฎ๐—ถ๐—ฟ ๐—ง๐—ฟ๐˜‚๐˜€๐˜ ๐˜„๐—ถ๐˜๐—ต ๐—ฃ๐—ผ๐˜„๐—ฒ๐—ฟ๐—ฆ๐—ต๐—ฒ๐—น๐—น (๐—ฆ๐—ถ๐—บ๐—ฝ๐—น๐—ฒ & ๐—™๐—ฎ๐˜€๐˜).

๐Ÿญ๏ธ > ๐—Ÿ๐—ผ๐—ด ๐—ถ๐—ป ๐—ฎ๐˜€ ๐—ฎ Local Admin.

๐Ÿฎ๏ธ > ๐—ฅ๐˜‚๐—ป: Test-ComputerSecureChannel -Repair -Credential DomainName\Administrator

๐Ÿฏ๏ธ > ๐—ฅ๐—ฒ๐˜€๐˜๐—ฎ๐—ฟ๐˜ ๐—ฎ๐—ป๐—ฑ ๐—ถ๐˜ ๐˜€๐—ต๐—ผ๐˜‚๐—น๐—ฑ ๐—ฟ๐—ฒ๐—ฐ๐—ผ๐—ป๐—ป๐—ฒ๐—ฐ๐˜.

๐— ๐—ฒ๐˜๐—ต๐—ผ๐—ฑ ๐Ÿฎ: ๐—ฅ๐—ฒ๐˜€๐—ฒ๐˜ ๐—–๐—ผ๐—บ๐—ฝ๐˜‚๐˜๐—ฒ๐—ฟ ๐—ฃ๐—ฎ๐˜€๐˜€๐˜„๐—ผ๐—ฟ๐—ฑ ๐˜„๐—ถ๐˜๐—ต ๐—ฃ๐—ผ๐˜„๐—ฒ๐—ฟ๐—ฆ๐—ต๐—ฒ๐—น๐—น.

๐Ÿญ๏ธ > ๐—Ÿ๐—ผ๐—ด ๐—ถ๐—ป ๐—ฎ๐˜€ ๐—ฎ Local Admin.

๐Ÿฎ๏ธ > ๐—ฅ๐˜‚๐—ป: Reset-ComputerMachinePassword -Server DomainServer -Credential DomainName\Administrator

๐Ÿฏ๏ธ > ๐—ฅ๐—ฒ๐˜€๐˜๐—ฎ๐—ฟ๐˜ ๐—ฎ๐—ป๐—ฑ ๐—ถ๐˜ ๐˜€๐—ต๐—ผ๐˜‚๐—น๐—ฑ ๐—ฟ๐—ฒ๐—ฐ๐—ผ๐—ป๐—ป๐—ฒ๐—ฐ๐˜.

๐— ๐—ฒ๐˜๐—ต๐—ผ๐—ฑ ๐Ÿฏ: ๐——๐—ถ๐˜€-๐—ท๐—ผ๐—ถ๐—ป ๐—ฎ๐—ป๐—ฑ ๐—ฅ๐—ฒ-๐—ท๐—ผ๐—ถ๐—ป ๐——๐—ผ๐—บ๐—ฎ๐—ถ๐—ป ๐—จ๐˜€๐—ถ๐—ป๐—ด ๐—ฑ๐˜€-๐—ท๐—ผ๐—ถ๐—ป.

๐Ÿญ๏ธ > ๐—Ÿ๐—ผ๐—ด ๐—ถ๐—ป ๐—ฎ๐˜€ ๐—ฎ Local Admin.

๐Ÿฎ๏ธ > ๐——๐—ถ๐˜€๐—ท๐—ผ๐—ถ๐—ป ๐—ณ๐—ฟ๐—ผ๐—บ ๐˜๐—ต๐—ฒ ๐—ฑ๐—ผ๐—บ๐—ฎ๐—ถ๐—ป: dsjoin /leave

๐Ÿฏ๏ธ > ๐—ฅ๐—ฒ๐˜€๐˜๐—ฎ๐—ฟ๐˜ ๐˜๐—ต๐—ฒ๐—ป ๐—ฟ๐—ฒ๐—ท๐—ผ๐—ถ๐—ป ๐˜๐—ต๐—ฒ ๐—ฑ๐—ผ๐—บ๐—ฎ๐—ถ๐—ป: dsjoin /domain DomainName /userD DomainAdminUser /passwordD *

๐Ÿฐ๏ธ > ๐—ฅ๐—ฒ๐˜€๐˜๐—ฎ๐—ฟ๐˜ ๐—ฎ๐—ด๐—ฎ๐—ถ๐—ป, ๐—ฎ๐—ป๐—ฑ ๐˜๐—ต๐—ฒ ๐—ฟ๐—ฒ๐—น๐—ฎ๐˜๐—ถ๐—ผ๐—ป๐˜€๐—ต๐—ถ๐—ฝ ๐˜€๐—ต๐—ผ๐˜‚๐—น๐—ฑ ๐—ฏ๐—ฒ ๐—ฟ๐—ฒ๐˜€๐˜๐—ผ๐—ฟ๐—ฒ๐—ฑ.

You can also try:

Ways to Fix Active Directory Trust Relationship Issues

Method 1: Disjoin & Rejoin Domain (dsjoin)

  • Log in as local admin.
  • Run: dsjoin /leave (to disjoin).
  • Restart, then rejoin: dsjoin /domain DomainName /userD DomainAdminUser /passwordD *
  • Restart again.

Method 2: Repair Trust via PowerShell

  • Log in as local admin.
  • Run: Test-ComputerSecureChannel -Repair -Credential DomainName\Administrator
  • Restart.

Method 3: Reset Computer Password (PowerShell)

  • Log in as local admin.
  • Run: Reset-ComputerMachinePassword -Server DomainServer -Credential DomainName\Administrator
  • Restart.

Method 4: Reset Secure Channel (Netdom)

  • Log in as local admin.
  • Run: netdom resetpwd /Server:DomainController /UserD:DomainAdmin /PasswordD:*
  • Restart.

Method 5: Delete & Recreate Computer in AD

  • Delete the computer object from Active Directory Users & Computers (ADUC).
  • Log in as local admin.
  • Run: Remove-Computer -UnjoinDomainCredential DomainName\Administrator -PassThru -Verbose
  • Restart & rejoin using: Add-Computer -DomainName "DomainName" -Credential DomainName\Administrator -Restart

Method 6: Check & Sync Time

  • Log in as local admin.
  • Run: w32tm /resync
  • If needed, manually set time sync: w32tm /config /manualpeerlist:"time.windows.com" /syncfromflags:manual /update
  • Restart.
โ†— X โ†— LinkedIn