|
The only way I can visualize this happening is if someone
reset the computer account on Domain Controller A. Otherwise when the new
machine joined the domain, it couldn't "slide into" the machine account for the
existing domain controller A.
joe From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dan Pilloff Sent: Tuesday, August 30, 2005 8:57 PM To: [email protected] Subject: [ActiveDir] Help to Explain how a Domain Controller could be Overwritten by a Member Server I was hoping somebody might be able
to explain how the following occurred. A member server was built with the
same name as an existing Domain Controller, Domain Controller A. The
server was somehow put in the domain, and rebooted. In addition, I believe
the server was then renamed to Domain Controller B (just a name as it was not
dcpromoed). while still in the domain. The end result was that the
existing Domain controller, Domain Controller A was somehow overwritten by the
member server, and, its display name in ADUC changed to this new name Domain
Controller B. The offending Domain Controller B was then deleted from the
domain controllers OU. The event logged for the change shows “Target
Account Name: Domain Controller B but Target Account ID Domain Controller A,
they are mismatched. I believe the same event was displayed for the
delete. I entered this issue after all the above had occurred and
performed an authoritative restore of the object (original Domain Controller A)
and stopped the KDC, replicated, and got the domain controller back. I
have researched this issue, and tried to recreate the issue many different ways
in a test lab but cannot recreate it. Has anyone ever seen anything like
this? I am absolutely
dumbfounded. |
