{"id":281,"date":"2007-12-14T16:10:47","date_gmt":"2007-12-14T15:10:47","guid":{"rendered":"https:\/\/www.networknet.nl\/apps\/wp\/archives\/281"},"modified":"2007-12-14T16:12:31","modified_gmt":"2007-12-14T15:12:31","slug":"computer-account-sid-hell-with-virtual-machines-guests-and-gsgetsidexe-and-newsidexe-howto","status":"publish","type":"post","link":"https:\/\/www.networknet.nl\/apps\/wp\/archives\/281","title":{"rendered":"Computer Account SID hell with virtual machines guests and gsgetsid.exe and NewSid.exe howto"},"content":{"rendered":"

Today I configured new VMWare team and installed one domain controller and one other server as file server. I used my masterbuild server image of Win2k3 EE R2 and both images run the sysprep.exe routine. After the dc was setup to run AD and DNS I joined the second guest machine on the domain. The domain join on the second machine worked fine. <\/p>\n

I reboot and tried to logon with a domain account and than with the domain admin. Both accounts generated the Logon Message below. <\/p>\n

\n

The system cannot log you on due the following error: <\/p>\n

The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain. <\/p>\n

Please try again or consult your system administrator.<\/p>\n<\/blockquote>\n

\"clip_image001\"<\/a><\/p>\n

I logged on with the local administrator account and saw the event id 5516 Netlogon error as shown below. <\/p>\n

\"clip_image002\"<\/a><\/p>\n

<\/p>\n

For some reason the sysprep did not work from my masterbuild and both virtual guest machines have the same SID id. <\/p>\n

To verify both sid’s you can go and download the psgetsid.exe from Microsoft website. <\/p>\n

http:\/\/www.microsoft.com\/technet\/sysinternals\/utilities\/psgetsid.mspx<\/a> <\/p>\n

I downloaded the pstools.zip from Microsoft website and run psgetsid.exe \\\\fs-001-cert<\/a> and psgetsid.exe \\\\dc-001-cert<\/a>. As shown below both match. <\/p>\n

\"clip_image003\"<\/a><\/p>\n

To quickly resolve this issue is to run the NewSid.exe tool and generate new SID for this computer account. <\/p>\n

This tool is available at: http:\/\/www.microsoft.com\/technet\/sysinternals\/Utilities\/NewSid.mspx<\/a> <\/p>\n

Run the tool and generate new sid for you guest machine. <\/p>\n

\"clip_image004\"<\/a><\/p>\n

Next <\/p>\n

\"clip_image005\"<\/a><\/p>\n

Next <\/p>\n

\"clip_image006\"<\/a><\/p>\n

Click Next and reboot the machine. <\/p>\n

Logon on the system with the local administrator account and join to the workgroup. Reboot the guest and rejoin to the domain.<\/strong><\/h4>\n

If these steps are not executed than domain membership connectivity will fail! <\/p>\n

\"clip_image007\"<\/a><\/p>\n

After the reboot I was successfully being able to logon as my test user “Finance Manager”. <\/p>\n","protected":false},"excerpt":{"rendered":"

Today I configured new VMWare team and installed one domain controller and one other server as file server. I used my masterbuild server image of Win2k3 EE R2 and both images run the sysprep.exe routine. After the dc was setup to run AD and DNS I joined the second guest machine on the domain. The domain join on the second machine worked fine. I reboot and tried to logon with a domain account and than with the domain admin. Both accounts generated the Logon Message below. The system cannot log you on due the following error: The name or security ID (SID) of the domain specified is inconsistent with the trust information for that domain. Please try again or consult your system administrator. I logged on with the local administrator account and saw the event id 5516 Netlogon error as shown below.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-281","post","type-post","status-publish","format-standard","hentry","category-windows-active-directory"],"_links":{"self":[{"href":"https:\/\/www.networknet.nl\/apps\/wp\/wp-json\/wp\/v2\/posts\/281","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.networknet.nl\/apps\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.networknet.nl\/apps\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.networknet.nl\/apps\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.networknet.nl\/apps\/wp\/wp-json\/wp\/v2\/comments?post=281"}],"version-history":[{"count":0,"href":"https:\/\/www.networknet.nl\/apps\/wp\/wp-json\/wp\/v2\/posts\/281\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.networknet.nl\/apps\/wp\/wp-json\/wp\/v2\/media?parent=281"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.networknet.nl\/apps\/wp\/wp-json\/wp\/v2\/categories?post=281"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.networknet.nl\/apps\/wp\/wp-json\/wp\/v2\/tags?post=281"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}