7,023 questions
Simplest solution for these one-offs is generally to stand up a new one for replacement (as above) and move on.
--please don't forget to upvote and Accept as answer if the reply is helpful--
Unable to log in to domain controller
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 79%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKS%3C/text%3E%3C/svg%3E)
Kenny Stern
141
Reputation points
I've promoted two different 2019 servers to domain controllers in an AD domain that consists of 2012R2 domain controllers. On both servers, after adding the ADDS role and running DCPROMO I am unable to log in to the servers. The error I'm getting is "The User Profile Service service failed the sign-in. User profile cannot be loaded."
We get his regardless of what account we try to log in with.
I've never seen this issue before with newly promoted DC's. Does anyone have any suggestions on how to resolve this?
Thanks
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Accepted answer
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous2022-10-07T13:49:34.867+00:00 -
Anonymous
2022-10-10T12:46:44.223+00:00 Just checking if there's any progress or updates?
--please don't forget to
upvoteandAccept as answerif the reply is helpful--
Sign in to comment -
1 additional answer
Sort by: Most helpful
-
Anonymous
2022-10-06T21:47:36.597+00:00 Hard to say what has happened, may need to rebuild it from scratch.
The two prerequisites to introducing the first 2019 or 2022 domain controller are that domain functional level needs to be 2008 or higher and older sysvol FRS replication needs to have been migrated to DFSR
https://techcommunity.microsoft.com/t5/Storage-at-Microsoft/Streamlined-Migration-of-FRS-to-DFSR-SYSVOL/ba-p/425405I'd use dcdiag / repadmin tools to verify health
correcting all errors foundbefore startinganyoperations. Then stand up the new 2019 or 2022, patch it fully, license it, join existing domain, add active directory domain services, promote it also making it a GC (recommended), transfer FSMO roles over (optional), transfer pdc emulator role (optional), use dcdiag / repadmin tools to again verify health, when all is good you can decommission / demote old one.--please don't forget to
upvoteandAccept as answerif the reply is helpful---
Anonymous
2022-10-07T13:22:00.223+00:00 Just checking if there's any progress or updates?
--please don't forget to
upvoteandAccept as answerif the reply is helpful-- -
Kenny Stern 141 Reputation points
2022-10-07T13:44:39.817+00:00 The server is functioning. The problem is when I try to log in to it I get that error about the profile service. I was able to get past that by changing the value for State to zero in my profile in the registry. However, Instead of the profile service error I now just get a black screen. Checking event viewer remotely does not reveal any issues. And using the command quser from a different server I can see that I am logged in to the server.
I can't run DCDiag because all I get is a black screen.
Thanks
Sign in to comment -