我有一台全新的Windows 7笔记本电脑需要连接到Windows Server 2012上的域。笔记本电脑以前没有在域上。当我尝试将笔记本电脑连接到域时,我收到错误:
“无法添加用户,因为发生了以下错误:此工作站与主域之间的信任关系失败。”
之前我已经看过这个并且以前重新加入域来修复它,但是使用这台笔记本电脑我甚至都做不到。我在另一台新笔记本电脑上遇到了同样的问题,这让我觉得服务器可能有问题,但是工作站仍然可以正常登录,我已经为用户重置了密码,这一切都没问题。我可以ping通域名和服务器名称,我尝试过多个帐户,包括域管理员加入域名。我甚至在可能与它有关的情况下禁用了IPv6,但仍然存在同样的问题。
我现在围着整个事情围成一圈,急切地想要答案。请帮忙!
答案 0 :(得分:1)
很可能它是Windows 7客户端和服务器之间的防火墙问题。即使您有其他客户(似乎)从同一站点登录到域名。使用PortQryUI进行确认。 https://www.microsoft.com/en-gb/download/details.aspx?id=24009。此外,请确保客户端上的DNS客户端设置仅使用承载AD DNS区域的DNS服务器。
如果问题仍未解决,请在DC上打开Cmd(具有管理员权限)并运行DCDiag> DCdiag.txt。复制DCDiag的内容,供我查看。
答案 1 :(得分:0)
Ok, so I uninstalled the firewall software that was running on the laptop and now it has joined the domain and everything is working well. However, I ran the PortQry program anyway (thanks for providing the link, useful tool) and selected the "Domains and Trusts" predefined service and all seemed ok aside from port 42, which wasn't running on the localhost anyway.
As for the dcdiag, see output below:
Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
Home Server = DBKB4C92
Doing initial required tests
Testing server: Default-First-Site-Name\DBKB4C92
Starting test: Connectivity
The host f9008c03-1537-412a-a81e-e3ce6efbbf45._msdcs.MYDOMAIN.COM
could not be resolved to an IP address. Check the DNS server, DHCP,
server name, etc.
Got error while checking LDAP and RPC connectivity. Please check your
firewall settings.
......................... DBKB4C92 failed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\DBKB4C92
Skipping all tests, because server DBKB4C92 is not responding to
directory service requests.
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : MYDOMAIN
Starting test: CheckSDRefDom
......................... MYDOMAIN passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... MYDOMAIN passed test CrossRefValidation
Running enterprise tests on : MYDOMAIN.COM
Starting test: LocatorCheck