Windows domains provide network administrators with ways to administer devices and control them from a central location. Domains are generally made up of computers on the same local network. When a computer is joined to a domain, it doesn’t use its own local user accounts. User accounts and passwords are managed on the domain controller. When you log into a computer on that domain. The computer authenticates your user account name and password with the domain controller. This means you can log in with the same username and password on any computer joined to the domain. In this article, you will learn how to fix “the trust relationship between this workstation and the primary domain failed”.
Why was the error ‘The trust relationship between this workstation and the primary domain failed’ prompted?
This often happens when your computer password is “Out of Sync” between the computer and the domain controller. And it reset after some time (30 days). Here is a similar error. “The security database on the server does not have a computer account for this workstation trust relation”. Please see the following link. Here are some similar articles. Active Directory Forest – Trees and Domain and Sites. How to set up a third-party DNS server on a Linux Server, and how to set up a third-party DNS server on a Linux Server. How to enable Hyper-V on a VMware Workstation.
You may want to see the following articles: How to synchronize your on-premises AD with Azure Active Directory using the Azure AD Connect tool, Configure TCP/IP Parameters: Post OS Installation and configuration of Windows Server 2019 properties, and how to fix the trust relationship between this workstation and the primary domain failed.
Here are ways to fix the trust relationship
Method 1: Fix PC and Domain Out of Sync
Try resetting the password of the computer, on your DC (Active Directory Users and Computers) and try again. Most times this fix does not work.
Then locate the machine (isolate it by removing the network cables, and turning off the Wireless etc, so it has no network connections) and log in as an administrator. Click on start, on the search or run box option type the following command
sysdm.cplAnd press enter. On the Computer Name tab. Click on Change and select the workgroup option, and type in Workgroup and press OK.
Note: This involves you leaving your domain, but if this is the case use the Netdom option (method 2) to fix it and reboot as it is easier.
Rerun sysdm.cpl again and re-join it to your domain again and supply the domain user account name.
Note: This step will definitely require a restart.
Please learn how to fix the Security Database on the Server does not have a Computer account for this workstation. How to add a second Domain Controller, What happens when WDS and DNS are installed on the same Windows, and AD Connect Sync Service not running: Cannot proceed because the sync service is not running.
Method 2: Fix PC and DC Out of Sync
This method is a good fix as leaving the Domain is usually not recommended. Ensure to remove all network cables and turn off the Wireless as well.
Type this command below on the Windows command prompt.
netdom.exe resetpwd /s:{domain controller name} /ud:{username} /pd:*I hope you found this blog post helpful on how to fix the Trust relationship between this workstation and the primary domain failed. If you have any questions, please let me know in the comment session.
