w2k unjoin old / join new domain trouble

  • Thread starter Thread starter rattati
  • Start date Start date
R

rattati

Hi folks.

I have an old w2k workstation which was a member of a domain called
"landmat". It was physically removed from that domain without unjoining
it first. That domain is no more (it has ceased to be...) so there is
no way to hook the computer up again and unjoin the domain. Now I have
the envious task of joining it to another domain (w2k). Here´s what I
have accomplished.

1. I log onto the computer (ws) as an administrator. I hook it up to
the network and assign it an IP address.

2. I have established a connection between the old computer (ws) and
the domain. Both can see the other, and ws can access shared folders on
the network.

3. When I try to join my domain (System properties - Network
identification - properties) with domain admin UID and PWD I get the
error message "Your computer could not be joined to the domain because
the following error occurred: The specified service does not exist as
an installed service." The ws computer account is, however, created in
the Active Directory.

After very extensive google'ing I found an article that cites the
Windows timer as the main culprit. Followed the instructions, no luck.
The strangest thing though, is that sometimes (in no apparent order or
for no apparent reason) I get a "Could not join the domain because user
credentials supplied do not match" (can´t remember the exact wording)
appear instead of the "Your computer could not...."

Baffling, to say the least.

What I am trying to do is this.

On this computer is a web server. I have been assigned a public IP
address that will point to our firewall, whic in turn points to this
machine. Pretty straightforward, so far.

This computer will not ultimately be on the domain. It will be alone in
a workgroup. But in order to make it a member of workgroup I need to be
able to unjoin it from the old domain, hence the efforts to make it a
member of another domain which is up and running.

Re-installing the os is not an option. It would however (of course)
eliminate the problem.

That´s my story so far, can anyone give me a hint on how to solve this
problem?

Thanks very much in advance,

rattati

So, my question is.
Can I join a domain even though the computer still believs that it is
in another domain, that is, fooled into accepting the new domain?
 
Before you try to join the new domain, remove the PC from the old domain.
Yes, the PC will believe that the disjoin "failed" since the domain no
longer exists, but that WILL move the PC into a workgroup and most likely
make the process of joining the new domain much easier. Oh yeah, be 100%
positive that you know the name and password of an Administrator-level local
login on the PC before you remove it from the old domain - otherwise you'll
probably never be able to log onto it once it's "removed" from the old
domain.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* PLEASE post all messages and replies in the newsgroups
* for the benefit of all. Private mail is usually not replied to.
* My website, such as it is ... http://rgharper.mvps.org/
* HELP us help YOU ... http://www.dts-l.org/goodpost.htm


Hi folks.

I have an old w2k workstation which was a member of a domain called
"landmat". It was physically removed from that domain without unjoining
it first. That domain is no more (it has ceased to be...) so there is
no way to hook the computer up again and unjoin the domain. Now I have
the envious task of joining it to another domain (w2k). Here´s what I
have accomplished.

1. I log onto the computer (ws) as an administrator. I hook it up to
the network and assign it an IP address.

2. I have established a connection between the old computer (ws) and
the domain. Both can see the other, and ws can access shared folders on
the network.

3. When I try to join my domain (System properties - Network
identification - properties) with domain admin UID and PWD I get the
error message "Your computer could not be joined to the domain because
the following error occurred: The specified service does not exist as
an installed service." The ws computer account is, however, created in
the Active Directory.

After very extensive google'ing I found an article that cites the
Windows timer as the main culprit. Followed the instructions, no luck.
The strangest thing though, is that sometimes (in no apparent order or
for no apparent reason) I get a "Could not join the domain because user
credentials supplied do not match" (can´t remember the exact wording)
appear instead of the "Your computer could not...."

Baffling, to say the least.

What I am trying to do is this.

On this computer is a web server. I have been assigned a public IP
address that will point to our firewall, whic in turn points to this
machine. Pretty straightforward, so far.

This computer will not ultimately be on the domain. It will be alone in
a workgroup. But in order to make it a member of workgroup I need to be
able to unjoin it from the old domain, hence the efforts to make it a
member of another domain which is up and running.

Re-installing the os is not an option. It would however (of course)
eliminate the problem.

That´s my story so far, can anyone give me a hint on how to solve this
problem?

Thanks very much in advance,

rattati

So, my question is.
Can I join a domain even though the computer still believs that it is
in another domain, that is, fooled into accepting the new domain?
 
Richard said:
Before you try to join the new domain, remove the PC from the old domain.
Yes, the PC will believe that the disjoin "failed" since the domain no
longer exists, but that WILL move the PC into a workgroup and most likely
make the process of joining the new domain much easier. Oh yeah, be 100%
positive that you know the name and password of an Administrator-level local
login on the PC before you remove it from the old domain - otherwise you'll
probably never be able to log onto it once it's "removed" from the old
domain.
Click to expand...



Hi Richard and thank you for the response.

I have already tried to remove it from the domain and into a workgroup.
It always throws up the "The following error occurred attempting to
unjoin the domain "landmat": The specified service does not exist as an
installed service" so I´m back to square one.

I think I seriously have to look at the option of transferring the
website and re-intalling the os, unfeasible as it is...this is a very
critical website (the contents that is, databases and a whole lot of
strange stuff in there...)

BTW, what does that error mean; "The specified service does not exist
as an installed service"?

Thanks in advance, again,

Rattati
 
I'm not sure why you're seeing that error message - it surely is not the
expected result. The computer should say that it was removed from the
domain but that the computer account could not be removed from the domain.
Check the event viewer on the computer and see if you have any other errors
that happen between startup and attempting to remove the PC from the domain,
it sounds like one or more network services aren't starting up correctly.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* PLEASE post all messages and replies in the newsgroups
* for the benefit of all. Private mail is usually not replied to.
* My website, such as it is ... http://rgharper.mvps.org/
* HELP us help YOU ... http://www.dts-l.org/goodpost.htm


Richard said:
Before you try to join the new domain, remove the PC from the old domain.
Yes, the PC will believe that the disjoin "failed" since the domain no
longer exists, but that WILL move the PC into a workgroup and most likely
make the process of joining the new domain much easier. Oh yeah, be 100%
positive that you know the name and password of an Administrator-level
local
login on the PC before you remove it from the old domain - otherwise
you'll
probably never be able to log onto it once it's "removed" from the old
domain.
Click to expand...



Hi Richard and thank you for the response.

I have already tried to remove it from the domain and into a workgroup.
It always throws up the "The following error occurred attempting to
unjoin the domain "landmat": The specified service does not exist as an
installed service" so I´m back to square one.

I think I seriously have to look at the option of transferring the
website and re-intalling the os, unfeasible as it is...this is a very
critical website (the contents that is, databases and a whole lot of
strange stuff in there...)

BTW, what does that error mean; "The specified service does not exist
as an installed service"?

Thanks in advance, again,

Rattati
 
Hi again.

Here is the last entry into the .../debug/Netsetup.LOG file:

08/19 10:00:07 NetpDoDomainJoin

08/19 10:00:07 NetpMachineValidToJoin: 'WS2'

08/19 10:00:07 NetpGetLsaPrimaryDomain: status: 0x0

08/19 10:00:07 NetpMachineValidToJoin: the specified machine is already
joined to 'LANDMAT'!

08/19 10:00:07 NetpMachineValidToJoin: status: 0xa83

08/19 10:00:07 NetpJoinDomain

08/19 10:00:07 Machine: WS2

08/19 10:00:07 Domain: almvrk.local

08/19 10:00:07 MachineAccountOU: (NULL)

08/19 10:00:07 Account: almvrk.local\administrator

08/19 10:00:07 Options: 0x27

08/19 10:00:07 OS Version: 5.0

08/19 10:00:07 Build number: 2195

08/19 10:00:07 ServicePack: Service Pack 4

08/19 10:00:07 NetpValidateName: checking to see if 'almvrk.local' is valid
as type 3 name

08/19 10:00:08 NetpCheckDomainNameIsValid [ Exists ] for 'almvrk.local'
returned 0x0

08/19 10:00:08 NetpValidateName: name 'almvrk.local' is valid for type 3

08/19 10:00:08 NetpDsGetDcName: trying to find DC in domain 'almvrk.local',
flags: 0x1020

08/19 10:00:08 NetpDsGetDcName: found DC '\\kvika.almvrk.local' in the
specified domain

08/19 10:00:08 NetpJoinDomain: status of connecting to dc
'\\kvika.almvrk.local': 0x0

08/19 10:00:08 NetpGetLsaPrimaryDomain: status: 0x0

08/19 10:00:08 NetpLsaOpenSecret: status: 0x0

08/19 10:00:08 NetpGetLsaPrimaryDomain: status: 0x0

08/19 10:00:08 NetpLsaOpenSecret: status: 0x0

08/19 10:00:08 NetpManageMachineAccountWithSid: NetUserAdd on
'\\kvika.almvrk.local' for 'WS2$' failed: 0x8b0

08/19 10:00:08 NetpManageMachineAccountWithSid: status of attempting to set
password on '\\kvika.almvrk.local' for 'WS2$': 0x0

08/19 10:00:08 NetpJoinDomain: status of creating account: 0x0

08/19 10:00:08 NetpJoinDomain: status of setting netlogon cache: 0x0

08/19 10:00:08 NetpGetLsaPrimaryDomain: status: 0x0

08/19 10:00:08 NetpSetLsaPrimaryDomain: for 'ALMVRK' status: 0x0

08/19 10:00:08 NetpJoinDomain: status of setting LSA pri. domain: 0x0

08/19 10:00:09 NetpJoinDomain: status of managing local groups: 0x0

08/19 10:00:09 NetpJoinDomain: status of setting
ComputerNamePhysicalDnsDomain to 'almvrk.local': 0x0

08/19 10:00:09 NetpControlServices: open service 'NETLOGON' failed: 0x424

08/19 10:00:09 NetpJoinDomain: status of enabling Netlogon: 0x424

08/19 10:00:09 NetpJoinDomain: initiaing a rollback due to earlier errors

08/19 10:00:10 NetpJoinDomain: rollback: local group management: 0x0

08/19 10:00:10 NetpSetLsaPrimaryDomain: for 'LANDMAT' status: 0x0

08/19 10:00:10 NetpJoinDomain: rollback: status of setting NULL domain sid:
0x0

08/19 10:00:10 NetpGetLsaPrimaryDomain: status: 0x0

08/19 10:00:10 NetpManageMachineAccountWithSid: status of disabling account
'WS2$' on '\\kvika.almvrk.local': 0x0

08/19 10:00:10 NetpJoinDomain: rollback: status of deleting computer
account: 0x0

08/19 10:00:10 NetpLsaOpenSecret: status: 0x0

08/19 10:00:11 NetpJoinDomain: rollback: status of restoring secret: 0x0

08/19 10:00:11 NetpJoinDomain: status of disconnecting from
'\\kvika.almvrk.local': 0x0

08/19 10:00:11 NetpDoDomainJoin: status: 0x424



Hope this clarifies my problem.



Rattati
 
Okay, but have you checked the Event Viewer to see if there are any relevant
entries? Any network services not starting up?

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* PLEASE post all messages and replies in the newsgroups
* for the benefit of all. Private mail is usually not replied to.
* My website, such as it is ... http://rgharper.mvps.org/
* HELP us help YOU ... http://www.dts-l.org/goodpost.htm


Rattati said:
Hi again.

Here is the last entry into the .../debug/Netsetup.LOG file:

08/19 10:00:07 NetpDoDomainJoin

08/19 10:00:07 NetpMachineValidToJoin: 'WS2'

08/19 10:00:07 NetpGetLsaPrimaryDomain: status: 0x0

08/19 10:00:07 NetpMachineValidToJoin: the specified machine is already
joined to 'LANDMAT'!

08/19 10:00:07 NetpMachineValidToJoin: status: 0xa83

08/19 10:00:07 NetpJoinDomain

08/19 10:00:07 Machine: WS2

08/19 10:00:07 Domain: almvrk.local

08/19 10:00:07 MachineAccountOU: (NULL)

08/19 10:00:07 Account: almvrk.local\administrator

08/19 10:00:07 Options: 0x27

08/19 10:00:07 OS Version: 5.0

08/19 10:00:07 Build number: 2195

08/19 10:00:07 ServicePack: Service Pack 4

08/19 10:00:07 NetpValidateName: checking to see if 'almvrk.local' is
valid as type 3 name

08/19 10:00:08 NetpCheckDomainNameIsValid [ Exists ] for 'almvrk.local'
returned 0x0

08/19 10:00:08 NetpValidateName: name 'almvrk.local' is valid for type 3

08/19 10:00:08 NetpDsGetDcName: trying to find DC in domain
'almvrk.local', flags: 0x1020

08/19 10:00:08 NetpDsGetDcName: found DC '\\kvika.almvrk.local' in the
specified domain

08/19 10:00:08 NetpJoinDomain: status of connecting to dc
'\\kvika.almvrk.local': 0x0

08/19 10:00:08 NetpGetLsaPrimaryDomain: status: 0x0

08/19 10:00:08 NetpLsaOpenSecret: status: 0x0

08/19 10:00:08 NetpGetLsaPrimaryDomain: status: 0x0

08/19 10:00:08 NetpLsaOpenSecret: status: 0x0

08/19 10:00:08 NetpManageMachineAccountWithSid: NetUserAdd on
'\\kvika.almvrk.local' for 'WS2$' failed: 0x8b0

08/19 10:00:08 NetpManageMachineAccountWithSid: status of attempting to
set password on '\\kvika.almvrk.local' for 'WS2$': 0x0

08/19 10:00:08 NetpJoinDomain: status of creating account: 0x0

08/19 10:00:08 NetpJoinDomain: status of setting netlogon cache: 0x0

08/19 10:00:08 NetpGetLsaPrimaryDomain: status: 0x0

08/19 10:00:08 NetpSetLsaPrimaryDomain: for 'ALMVRK' status: 0x0

08/19 10:00:08 NetpJoinDomain: status of setting LSA pri. domain: 0x0

08/19 10:00:09 NetpJoinDomain: status of managing local groups: 0x0

08/19 10:00:09 NetpJoinDomain: status of setting
ComputerNamePhysicalDnsDomain to 'almvrk.local': 0x0

08/19 10:00:09 NetpControlServices: open service 'NETLOGON' failed: 0x424

08/19 10:00:09 NetpJoinDomain: status of enabling Netlogon: 0x424

08/19 10:00:09 NetpJoinDomain: initiaing a rollback due to earlier errors

08/19 10:00:10 NetpJoinDomain: rollback: local group management: 0x0

08/19 10:00:10 NetpSetLsaPrimaryDomain: for 'LANDMAT' status: 0x0

08/19 10:00:10 NetpJoinDomain: rollback: status of setting NULL domain
sid: 0x0

08/19 10:00:10 NetpGetLsaPrimaryDomain: status: 0x0

08/19 10:00:10 NetpManageMachineAccountWithSid: status of disabling
account 'WS2$' on '\\kvika.almvrk.local': 0x0

08/19 10:00:10 NetpJoinDomain: rollback: status of deleting computer
account: 0x0

08/19 10:00:10 NetpLsaOpenSecret: status: 0x0

08/19 10:00:11 NetpJoinDomain: rollback: status of restoring secret: 0x0

08/19 10:00:11 NetpJoinDomain: status of disconnecting from
'\\kvika.almvrk.local': 0x0

08/19 10:00:11 NetpDoDomainJoin: status: 0x424



Hope this clarifies my problem.



Rattati
Click to expand...
 
Back
Top