Thursday, January 26, 2017

Fixing Domain Trust issues without a reboot

We recently had a domain trust issue involving a production box. Nothing that impacted active users, but a damn annoyance as it restricted access to the server if anything DID go wrong. A reboot would have fixed it, but this is a production box. A reboot wasn't happening during the day.

Fortunately, our network admin had this handy PowerShell command to run to rectify the issue with no service interruptions whatsoever.
Open PowerShell as administrator. Run this command sequence:
$credential = Get-Credential
A window will pop up, type in a Domain administrator account and password.
Then type
Reset-ComputerMachinePassword -Server (Active Directory name).local

Where (Active Directory name) is replaced with the name of your active directory. This required having a local admin account on the system having domain connectivity issues

MSDN has more details on Reset-ComputerMachinePassword.