Trust relationship error between the workstation and the primary domain

Share on facebook
Share on twitter
Share on linkedin
Share on pinterest
Share on reddit
Share on whatsapp


When we try to log into our Windows computer in a domain environment and get the message Trust relationship between the workstation and the primary domain fails it’s too annoying. So let’s see how we can fix it in a few minutes.

This error is generated due to a “password mismatch”. In “Active Directory” environments, each computer has an internal password; If we copy this password from the account of the computer that stores the server, it does not synchronize with the domain controller and the error appears.

Solution to approve the relationship error between the workstation and the primary domain

Therefore, the first thing we need to do is apply a series of solutions which we will comment on a bit below. It is not necessary to apply them in order.

  • We will reconnect the computer to the domain
  • We restore trust.
  • We add a domain controller to the credential manager.
  • Reset the computer account.
  • We will see each of these points in more detail below and so we can resolve the unfortunate error in the trust relationship between the workstation and the main domain.

    Connect the computer to the domain

    The solution that the guys at Microsoft recommend is to simply reconnect the computer that failed to connect. For this, we will see what to do as follows:

  • We log in with a local administrator account on the computer.
  • We go to Team and we right click on it, a new menu opens where we will have to search for “Properties”.
  • We will have to choose the option that says “Change configuration” which we can find to the right of the team name.
  • We go to the tab that says “Team name” and we will have to click on “Edit”.
  • Where it says “Member of”, we will have to choose “Workgroup” and write it a name, then we will select “Accept”.
  • It will ask us if we want to restart the computer, which we will have to do, we click “OK” again.
  • In the “Team name” tab we come back to “Edit”.
  • In “Member of”, we will have to choose “Domain” and write the domain name.
  • Click “Accept” and we need to enter the credentials of the user who has permissions in the domain.
  • Again it will ask us if we want to restart the computer and we click “OK”.
  • Restore confidence

    In order to solve the problem of trust relationship between this workstation and the main domain, we will have to restore trust between the domain and the client.

    We press Windows key + X or right click on the “Start” menu and we will have to start “PowerShell” as administrator. A command console opens where we will have to copy and paste the following command: $ Credential = Get-Credential then we press “Enter”.

    Now we will need to enter the domain administrator username and password in the login pop-up window and click “OK”.

    Then we will have to copy and paste the command that we will leave a little lower in the PowerShell window and press “Enter”: Reset-ComputerMachinePassword -Credential $ identification

    When the command is finished, we can quit PowerShell and we will need to restart the computer.

    Add the domain controller to the credential manager

    In this case, it suffices to add the domain controller to Credential Manager. For this we will have to follow the steps that we will leave you a little below.

  • The first thing we’re going to do is press “Windows + R” to open the “Run” window.
  • Here we will write “control” and we give it “Enter” to enter the “Control Panel”, we can also do this by pressing Start and writing “Control Panel”.
  • We will have to go to User Accounts> Credentials Manager.
  • In this section, we will select “Windows credentials”.
  • We click on “Add Windows ID”.
  • A window will open where we will need to add the website address or network location with the credentials.
  • To save all changes, just click “OK” and then restart the computer.
  • Reset computer account

    In this method, we will test by resetting the account of the computer on which we received the error message.

  • We press Windows + R to open the “Run” window.
  • Then we write “dsa.msc” without the quotes in the “Run” window and give it “Enter”.
  • The “Active Directory Users and Computers” window opens where we will have to double-click on the domain name to expand it.
  • We choose the computer.
  • On the right side, we will have to right click on the account of the computer that could not connect to the domain.
  • Here we will select “Reset Account”.
  • We click “Yes” to confirm and restart the computer.
  • Share this with your friends!



    Source link

    Leave a Reply

    Table of Contents