![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hello Marcus Mostamandi,
Thank you for posting in Microsoft Community forum.
You can try to reset secure channel between problematic DC and its partner DC.
netdom resetpwd /s:<server> /ud:<domain\User> /pd:*
-
/s:<server>is the name of the domain controller to use for setting the machine account password. It's the server where the KDC is running. -
/ud:<domain\User>is the user account that makes the connection with the domain you specified in the/sparameter. It must be in domain\User format. If this parameter is omitted, the current user account is used. -
/pd:*specifies the password of the user account that is specified in the/udparameter. Use an asterisk (*) to be prompted for the password. For example, the local domain controller computer is Server1 and the peer Windows domain controller is Server2. If you run Netdom.exe on Server1 with the following parameters, the password is changed locally and is simultaneously written on Server2. And replication propagates the change to other domain controllers:
Reset domain controller's password with Netdom.exe - Windows Server | Microsoft Learn
Here is a similar thread for your reference.
[f02c-b7a6-58b-6fc0] (microsoft.com)
I hope the information above is helpful.
If you have any question or concern, please feel free to let us know.
Best Regards,
Daisy Zhou